ContainerImage.Pinniped

Commit Graph

Author	SHA1	Message	Date
Matt Moyer	8527c363bb	Rename the "pinniped.sts.unrestricted" scope to "pinniped:request-audience". This is a bit more clear. We're changing this now because it is a non-backwards-compatible change that we can make now since none of this RFC8693 token exchange stuff has been released yet. There is also a small typo fix in some flag usages (s/RF8693/RFC8693/) Signed-off-by: Matt Moyer <moyerm@vmware.com>	2020-12-16 14:24:13 -06:00
Matt Moyer	5f1bd5ec31	Update TestNullStorage_GetClient with adjusted pinniped-cli scopes. Signed-off-by: Matt Moyer <moyerm@vmware.com>	2020-12-09 09:12:32 -06:00
Margo Crawford	f103c02408	Add check for grant type in tokenexchangehandler, - also started writing a test for the tokenexchangehandler, skipping for now Signed-off-by: Ryan Richard <rrichard@vmware.com>	2020-12-08 17:33:08 -08:00
Ryan Richard	c090eb6a62	Supervisor token endpoint returns refresh tokens when requested	2020-12-08 11:47:39 -08:00
Aram Price	d91baba240	authorize and callback endpoints now handle the offline_access scope - This is in preparation for the token endpoint to support the refresh grant Signed-off-by: Ryan Richard <richardry@vmware.com>	2020-12-07 17:22:34 -08:00
Andrew Keesler	8e4c85d816	WIP: get linting and unit tests passing after token endpoint first draft Signed-off-by: Andrew Keesler <akeesler@vmware.com>	2020-12-02 11:16:02 -05:00
Monis Khan	db6fc234b7	Add NullStorage for the authorize endpoint to use We want to run all of the fosite validations in the authorize endpoint, but we don't need to store anything yet because we are storing what we need for later in the upstream state parameter. Signed-off-by: Ryan Richard <richardry@vmware.com>	2020-11-11 14:49:24 -08:00

7 Commits