kyy/swagger-ui
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
3,968 Commits 1 Branch 0 Tags
a5568f9e1642f5ce286cd2b4927a4ce3fa663ba2
Commit Graph

41 Commits

Author SHA1 Message Date
kyle
a5568f9e16 improve: OAuth2 UI and test suite (via #5066) 
* create `features` folder

* add base oauth2 server

* continue implementing OAuth tests

* WIP

* add password flow tests

* modify Password flow credential types

* remove query string credential type

* add test case for Authorization flow

* add specific Authorization value for Password flow test

* WIP

* fix linter issues
 2018-12-07 20:54:29 +01:00
Scott O'Hara
054d450a45 fix: add client_id and client_secret to form when type is request-body (via #4213) 2018-09-28 20:40:38 -05:00
Martin Danielsson
85cf0dccac improve: include more error data from authorization call (via #4801) 
* Additional fix of #4048, more error messages from authorization call
  Inspect the error and error_description properties of the response, if available
* Fixed linter errors
 2018-08-08 14:03:36 -07:00
kyle
3efdf1223e fix: add additionalQueryStringParams to auth requests (#4419) 
* tests: add failing unit tests

* fix: add additionalQueryStringParams to auth requests
 2018-04-06 20:00:10 -07:00
Luka Žitnik
e2d8a4e396 Fix(auth): improper resolution of relative token urls (#4180) 
* fix(auth): improper resolution of relative token urls

* revert cc58ba7 for OAS2

In OAS2, relative token URLs are resolved against the host that serves the specs.
 2018-04-05 19:20:20 -07:00
kyle
245428e7cd feat: preauthorization (#4339) 
* feat: swagger 2.0 preauthorization methods
* tests: add cases for oas3 preauthorization
* docs: add new preauth docs; touch up existing auth docs
* tests: add `rootInject` tests
* docs: remove unfinished sentence
 2018-03-16 22:25:04 -07:00
Drew Ballance
286c0e0f72 fix: execution error in IE (#4128) 2018-01-18 21:35:43 -06:00
Kyle Shockey
9d48c4751a Refactor afterLoad interface to expose raw plugin context 2017-12-28 16:26:18 -06:00
Kyle Shockey
2dd25abbdd Move initOAuth attacher out of core constructor 2017-12-15 14:16:44 -08:00
Kyle Shockey
2325118540 Add responseInterceptor as well 2017-11-29 15:55:15 -06:00
Kyle Shockey
ade47ca40e Add requestInterceptor to OAuth2 request authorization calls 2017-11-29 15:54:17 -06:00
kyle
6041c419c9 Merge branch 'master' into uri-encoded-scopes-fix 2017-11-14 15:18:41 -08:00
Kyle Shockey
8f7b582f95 Improve junk data handling 2017-11-06 22:09:20 -08:00
Kyle Shockey
533fd75501 Deprecate authSelectors.getDefinitionsByNames 2017-11-06 21:53:57 -08:00
Kyle Shockey
cfc030d07d Rework filtering logic for definitionsForRequirements 2017-11-06 21:13:14 -08:00
Kyle Shockey
21bf5919a9 Rewire AuthorizeOperationBtn; create new selector for filtering definitions 2017-11-06 20:42:47 -08:00
Jeremy Epstein
a5193a5b5b Don't URI-encode scopes when posting in oauth2 password flow 2017-10-29 12:04:43 +11:00
Kyle Shockey
c9674a1fc5 Refactor Auths component flow; create component that supports HTTP auths 2017-10-18 21:23:28 -07:00
Kyle Shockey
8b81bcac48 OAS3 Auth MVP 2017-10-11 16:58:24 -07:00
Aaron Loo
700d547529 merge master 2017-08-03 07:32:32 -07:00
Kyle
b329b03464 Merge branch 'master' into support-basic-auth-for-authorization-code-grant 2017-08-01 16:52:04 -07:00
Aaron Loo
860d356178 remove CORS header in request 2017-07-28 10:15:05 -07:00
TANAKA Koichi
0bc382b78a Fix oauth2 password flow 
fix filed name for scope of grant request body.
 2017-07-18 16:52:29 +09:00
Eric Turcotte
badfea61c3 Renamed authorizeAccessCodeWithQueryParams->authorizeAccessCodeWithFormParams 
since that is technically correct
 2017-07-13 10:53:36 -05:00
Eric Turcotte
fc8ad8168d Renamed authorizeAccessCode() to authorizeAccessCodeWithQueryParams() 
Added authorizeAccessCodeWithBasicAuthentication() that sends the client_id and
client_secret using HTTP basic authentication

    Authorization: Basic base64encoded[client_id:client_secret]

According to the OAuth2 spec, this is the preferred method.  It also enables
Authorization Servers that only support basic authentication during the
authorization_code grant.

https://tools.ietf.org/html/rfc6749#section-2.3.1
 2017-07-12 23:32:29 -05:00
Anna Bodnia
bbf93c5e1f #3172 added Access-Control-Allow-Origin for auth requests 2017-06-08 14:06:30 +03:00
Anna Bodnia
36b263e230 fixes #3172 2017-06-08 12:19:47 +03:00
Anna Bodnia
5f2eaffbc3 fix #3128 2017-05-31 17:31:29 +03:00
Furkan Ayhan
0c7119e855 Send redirect url when authenticating with oauth2-authorization_code 
also fix indentations of files
 2017-05-16 16:50:13 +03:00
Anna Bodnia
8aebea34c4 add configuration of auth: scope separator, client id, client secret, app name, reaml, additionalQueryParams 2017-05-11 16:30:30 +03:00
Anna Bodnia
374ac9cbbb fix #2870 2017-04-27 20:09:05 +03:00
Anna Bodnia
87a23c7c9e fix eslint errors 2017-04-27 19:01:27 +03:00
Anna Bodnia
d013e7a05c #2844 fix accessCode flow 2017-04-27 18:55:25 +03:00
Anna Bodnia
bb73dd49d8 fixes password, application oauth2 flows 2017-04-26 17:50:09 +03:00
Kyle Shockey
f2ae188722 Fix #2763 2017-04-10 13:50:51 -07:00
Mészáros Mihály
81abe37a31 add fn.fetch instead of native fetch 2017-04-06 14:46:04 +02:00
Mészáros Mihály
4066d1920e move out the code according @bodnia guide 2017-04-06 13:12:28 +02:00
Anna Bodnia
59ecaf40ee fix #2456 2017-04-04 16:09:28 +03:00
Anna Bodnia
432cd7f965 #2774 display scopes for oauth2 password flow 2017-03-30 17:49:32 +03:00
Kyle Shockey
e1fcbfbf09 Linter error fixes 2017-03-23 16:36:45 -07:00
Ron
f22a628934 in with the new 2017-03-17 21:17:53 -07:00