Here you can see the full list of changes between each Flask-OAuthlib release.
Released on Mar 9, 2015
- Improve on security.
- Fix on contrib client.
Released on Feb 3, 2015
- New feature for contrib client, which will become the official client in the future via #136 and #176.
- Add appropriate headers when making POST request for access toke via #169.
- Use a local copy of instance 'request_token_params' attribute to avoid side effects via #177.
- Some minor fixes of contrib by Hsiaoming Yang.
Released on Dec 3, 2014
.. module:: flask_oauthlib.provider.oauth2
- New feature for generating refresh tokens
- Add new function :meth:`OAuth2Provider.verify_request` for non vanilla Flask projects
- Some small bugfixes
Released on Aug 20, 2014
.. module:: flask_oauthlib.client
- Deprecated :meth:`OAuthRemoteApp.authorized_handler` in favor of :meth:`OAuthRemoteApp.authorized_response`.
- Add revocation endpoint via #131.
- Handle unknown exceptions in providers.
- Add PATCH method for client via #134.
Released on Jul 29, 2014
- Compatible with OAuthLib 0.6.2 and 0.6.3
- Add invalid_response decorator to handle invalid request
- Add error_message for OAuthLib Request.
Released on May 13, 2014
- Add
contrib.apps
module, thanks for tonyseek via #94. - Status code changed to 401 for invalid access token via #93.
- Security bug for access token via #92.
- Fix for client part, request token params for OAuth1 via #91.
- API change for
oauth.require_oauth
via #89. - Fix for OAuth2 provider, support client authentication for authorization-code grant type via #86.
- Fix client_credentials logic in validate_grant_type via #85.
- Fix for client part, pass access token method via #83.
- Fix for OAuth2 provider related to confidential client via #82.
API for OAuth providers oauth.require_oauth
has changed.
Before the change, you would write code like:
@app.route('/api/user') @oauth.require_oauth('email') def user(req): return jsonify(req.user)
After the change, you would write code like:
from flask import request @app.route('/api/user') @oauth.require_oauth('email') def user(): return jsonify(request.oauth.user)
Thanks Stian Prestholdt and Jiangge Zhang.
Released on Feb 18, 2014
- OAuthlib released 0.6.1, which caused a bug in oauth2 provider.
- Validation for scopes on oauth2 right via #72.
- Handle empty response for application/json via #69.
Released on Jan 3, 2014
Happy New Year!
Released on Nov 25, 2013
Released on Nov 12, 2013
- Redesign contrib library.
- A new way for lazy loading configuration via #51.
- Some bugfixes.
Released on Oct 31, 2013
Released on Oct 4, 2013
- Support for token generator in OAuth2 Provider via #42.
- Improve client part, improve test cases.
- Fix scope via #44.
Released on Sep 13, 2013
- Upgrade oauthlib to 0.6
- A quick bugfix for request token params via #40.
Released on Aug 22, 2013
- Add contrib module via #15. We are still working on it, take your own risk.
- Add example of linkedin via #35.
- Compatible with new proposals of oauthlib.
- Bugfix for client part.
- Backward compatible for lower version of Flask via #37.
Released on July 10, 2013.
- OAuth1 Provider available. Documentation at :doc:`oauth1`. :)
- Add
before_request
andafter_request
via #22. - Lazy load configuration for client via #23. Documentation at :ref:`lazy-configuration`.
- Python 3 compatible now.
Released on June 19, 2013.
- OAuth2 Provider available. Documentation at :doc:`oauth2`. :)
- Make client part testable.
- Change extension name of client from
oauth-client
tooauthlib.client
.
Released on May 23, 2013.
- Fix setup.py
First public preview release on May 18, 2013.