Public

Project privacy set to public. By default, its content is available to everyone (authenticated or not). Please note that more restrictive permissions might exist on some items.

stable

Clone or download

Read-only

The authorization page should not be cached or accessed without TLS

Download Browse

This page is part of the authorization server the same constraints than for the endpoint creating the OAuth2 access token must be applied. In order to reuse the same code between the two pages, the controller of the authorize page can now be used with PSR-15 middlewares. The integration is however not really pretty due to the way the themes are currently rendered. This is part of story #14542: have OAuth2 flow Change-Id: Idcf40cca32330dbd26ff959f05950abdeaec4892

+128 −42
Thomas Gerbet (tgerbet) 2020-02-24 17:38
Thomas Gerbet (tgerbet) 2020-02-24 17:38
5664794783519311f1f14689009926fd53183c6b
8971b33891d8591ba75bcdf03b8662d77b55f0b9
git #tuleap/stable/5664794783519311f1f14689009926fd53183c6b

Modified Files

Side by side diff
Inline diff
Name
M plugins/oauth2_server/include/AuthorizationServer/AuthorizationEndpointGetController.php +61 −21 Go to diff View file
M plugins/oauth2_server/include/oauth2_serverPlugin.php +9 −1 Go to diff View file
M plugins/oauth2_server/phpunit/AuthorizationServer/AuthorizationEndpointGetControllerTest.php +38 −18 Go to diff View file
M src/common/Request/DispatchablePSR15Compatible.php +1 −0 Go to diff View file
M tests/phpunit/common/Request/DispatchablePSR15CompatibleTest.php +19 −2 Go to diff View file