90cb1bf012
Fix typo in the first README sentence
2016-12-23 00:30:54 +02:00
b32204bd91
Merge pull request #682 from wilsonge/patch-1
...
Fix middleware example fatal error
2016-11-08 13:18:13 +00:00
518c1fcec5
Fix middleware example fatal error
2016-11-08 12:27:49 +00:00
6946592553
Merge pull request #671 from duncan3dc/patch-1
...
[Travis] Test on PHP 7.1
2016-10-16 16:58:15 +01:00
25580b98b7
[Travis] Test on PHP 7.1
2016-10-16 16:48:44 +01:00
f78dc2eca0
Updated README
2016-10-12 15:08:15 +01:00
105b3116dc
Merge pull request #669 from jeremykendall/fix/www-authenticate-header
...
Fix WWW-Authenticate entry in $headers array
2016-10-12 15:05:19 +01:00
01677a564e
Fix WWW-Authenticate entry in $headers array
...
In this context the header name should be the array key and the header
value the array value.
2016-10-11 22:27:24 -05:00
4c4b0633b1
Merge pull request #668 from er0k/increase-ssl-key-length
...
Increase the recommended RSA key length from 1024 to 2048 bits
2016-10-11 14:27:16 +01:00
c4a75b2880
Increase the recommended RSA key length from 1024 to 2048 bits
2016-10-11 09:24:27 -04:00
e091d48127
Changelog bump
2016-09-19 10:23:42 +01:00
a798cfdc5d
Merge pull request #656 from thephpleague/issue-650-fix
...
Fix for #650
2016-09-19 10:19:05 +01:00
56e8d374fb
Fix broken tests
2016-09-19 10:06:00 +01:00
b1bfff7325
Don't pass in user because we don't know who user is
2016-09-19 10:05:55 +01:00
32cde01ab2
Merge pull request #657 from thephpleague/analysis-86wPg4
...
Applied fixes from StyleCI
2016-09-13 15:19:56 +01:00
11ccc305d0
Applied fixes from StyleCI
2016-09-13 14:17:09 +00:00
d7df2f7e24
Fix for #650
2016-09-13 15:16:58 +01:00
b8b92e5925
Changelog update
2016-07-26 15:42:03 -04:00
0ebdcd2ab8
Merge pull request #614 from lookyman/better-tests
...
Improved tests
2016-07-25 12:17:28 -04:00
9dee08ba3d
Merge pull request #625 from juliangut/key-file
...
Key file auto-generation from string
2016-07-19 17:24:12 +01:00
065ef5db99
CryptKey tests
2016-07-19 17:15:36 +02:00
039537ebe2
touch!
2016-07-19 15:06:32 +02:00
d8930af5ee
key file auto-generation from string
2016-07-19 15:01:31 +02:00
ada8d20be6
Merge pull request #624 from iansltx/bearer-token-response-params
...
Allow easy addition of custom fields to Bearer token response
2016-07-16 16:38:23 +01:00
090c01d3d1
Allow easy addition of custom fields to Bearer token response
2016-07-16 10:27:33 -05:00
4b6ba5859c
Merge pull request #621 from pounard/master
...
while(array_shift()) makes the AuthorizationServer class configuratio…
2016-07-13 11:02:26 +01:00
57323f38f7
while(array_shift()) makes the AuthorizationServer class configuration mutable
2016-07-13 12:03:05 +02:00
46cd448a47
Merge pull request #616 from lookyman/phpdoc
...
Updated PHPDoc
2016-07-10 09:32:13 +01:00
c874c59b9c
Explicitly compare to false when checking not instanceof
2016-07-09 12:09:21 +02:00
c3a4670c11
Updated PHPDoc
2016-07-09 02:01:53 +02:00
17b6e2a207
tests: Fix missing redirect uri test, add redirect uri mismatch test
2016-07-08 16:04:14 +02:00
54422a244f
tests: AuthCodeGrantTest additional tests
2016-07-08 15:31:29 +02:00
9899aa1f99
tests: ImplicitGrantTest additional tests
2016-07-08 15:30:59 +02:00
32efd091a1
tests: use MockBuilder everywhere
2016-07-08 15:29:21 +02:00
68e4b1d390
Updated changelog
2016-06-28 09:03:41 +01:00
5ee1583c5b
Ensure state is in access denied redirect. Fixes #597
2016-06-28 09:03:01 +01:00
66de05a395
Merge pull request #605 from jfilla/master
...
Added catch Runtime exception when parsing JWT string
2016-06-28 08:49:29 +01:00
df20da1235
Merge pull request #601 from zerkms/ISSUE-596_UNIQUE_ACCESS_TOKEN
...
Added a check for unique access token constraint violation
2016-06-28 08:48:38 +01:00
7321622104
Merge pull request #606 from GrahamCampbell/patch-2
...
Allow random compat 2.x
2016-06-28 08:46:57 +01:00
84187041bd
Allow random compat 2.x
2016-06-27 19:31:35 +01:00
9eccc40eb6
Added catch Runtime exception when parsing JWT string
2016-06-22 12:38:03 +02:00
8b865cc523
Merge pull request #604 from iansltx/http-basic-from-header
...
Look at Authorization header directly for HTTP Basic auth checks
2016-06-22 08:42:30 +01:00
9775c0076b
Look at Authorization header directly for HTTP Basic auth check
...
Should allow for better compatibility with server implementations that aren't sitting on top of a standard SAPI (e.g. persistent web servers building a PSR-7 compatible request from a socket-received message).
One catch here is that I've seen Apache hijack the HTTP Authorization header in the past, though that would probably impact the other aspects of the server just as much as it would this, so I think that risk is manageable.
Added tests to cover all paths through the new code, so the AbstractGrant type still has 100% coverage :)
Did notice that, as of the latest versions of PHPUnit, the mock creation method is deprecated. Maybe that needs to be updated? Haven't checked to see whether the replacements are PHPUnit 4.8 compatible though, so maybe they need to stay in order to test on older PHP versions?
2016-06-21 21:08:38 -05:00
b68ef973df
Added a check for unique access token constraint violation
2016-06-20 20:19:03 +12:00
c6e5f12a7c
Merge pull request #600 from zerkms/ISSUE-598_REDUNDANT_IS_EXPIRED
...
Removed isExpired() from interfaces and traits
2016-06-17 09:14:38 +01:00
6b88cbeb13
Removed isExpired() from interfaces and traits
2016-06-17 19:50:04 +12:00
64a0fcb3a6
Updated examples. Fixes #589
2016-06-02 09:35:27 +01:00
78dbb267ed
Merge pull request #578 from juliangut/master
...
unify middleware exception responses
2016-05-12 09:53:42 +01:00
22e6a350dd
unify middleware exception responses
2016-05-11 14:13:58 +02:00
c0936cc320
Updated commercial support statement
2016-05-10 13:23:56 +01:00
Sam Stenvall
Alex Bilbie
George Wilson
Craig Duncan
Alex Bilbie
jeremykendall
er0k
Julián Gutiérrez
Ian Littman
Pierre Rineau
Lukáš Unger
Graham Campbell
Jakub Filla
Ian Littman
Ivan Kurnosov