Public

Project privacy set to public. By default, its content is available to everyone (authenticated or not). Please note that more restrictive permissions might exist on some items.

stable

Clone or download

Read-only

Explicitely disable caching on the endpoint creating OAuth2 access tokens

Download Browse

Requests done against /plugins/oauth2_server/access_token receive a response with the headers Cache-Control and Pragma to disable the cache [0]. You can test with: shell> curl -I -X POST \ -H 'Content-Type: application/x-www-form-urlencoded' \ --data 'grant_type=authorization_code' \ https://tuleap.example.com/plugins/oauth2_server/access_token This is part of story #14542: have OAuth2 flow [0] https://tools.ietf.org/html/rfc6749#section-5.1 Change-Id: I864d5384977bfe485c68bcd92b38f55547440cf3

+83 −1
Thomas Gerbet (tgerbet) 2020-02-24 14:23
Thomas Gerbet (tgerbet) 2020-02-24 15:08
7abe26fbb647bf6fe9b044553bb3530c7704168e
b665d71347c40040975a30c5dc7fadd585e7a48a
git #tuleap/stable/7abe26fbb647bf6fe9b044553bb3530c7704168e

Modified Files

Side by side diff
Inline diff
Name
M plugins/oauth2_server/include/oauth2_serverPlugin.php +3 −1 Go to diff View file
A src/common/Http/Server/DisableCacheMiddleware.php +38 −0 Go to diff View file
A tests/phpunit/common/Http/Server/DisableCacheMiddlewareTest.php +42 −0 Go to diff View file