-
-
Notifications
You must be signed in to change notification settings - Fork 2.1k
MSC2918 Refresh tokens implementation #9450
Commits on Apr 9, 2021
-
Configuration menu - View commit details
-
Copy full SHA for fe80ef5 - Browse repository at this point
Copy the full SHA fe80ef5View commit details -
MSC2918: implement refresh tokens
Signed-off-by: Quentin Gliech <quentingliech@gmail.com>
Configuration menu - View commit details
-
Copy full SHA for 523d8cf - Browse repository at this point
Copy the full SHA 523d8cfView commit details -
Configuration menu - View commit details
-
Copy full SHA for 358da22 - Browse repository at this point
Copy the full SHA 358da22View commit details -
Configuration menu - View commit details
-
Copy full SHA for f53466e - Browse repository at this point
Copy the full SHA f53466eView commit details -
Configuration menu - View commit details
-
Copy full SHA for 324d7bf - Browse repository at this point
Copy the full SHA 324d7bfView commit details -
MSC2918: do not invalidate refresh token immediately & fix tests
This checks for child token usage to validate the refresh token validity. This means that a token can be refreshed multiple times until one of the child tokens gets used. Signed-off-by: Quentin Gliech <quentingliech@gmail.com>
Configuration menu - View commit details
-
Copy full SHA for 450a962 - Browse repository at this point
Copy the full SHA 450a962View commit details -
Signed-off-by: Quentin Gliech <quentingliech@gmail.com>
Configuration menu - View commit details
-
Copy full SHA for 022485e - Browse repository at this point
Copy the full SHA 022485eView commit details
Commits on Apr 22, 2021
-
Configuration menu - View commit details
-
Copy full SHA for 51ba1c3 - Browse repository at this point
Copy the full SHA 51ba1c3View commit details -
Configuration menu - View commit details
-
Copy full SHA for d281f7e - Browse repository at this point
Copy the full SHA d281f7eView commit details
Commits on May 5, 2021
-
MSC2918: merge SQLite and PostgreSQL schema deltas
This also rolls back the SCHEMA_VERSION to 59 since this does not introduce any breaking database change. Signed-off-by: Quentin Gliech <quentingliech@gmail.com>
Configuration menu - View commit details
-
Copy full SHA for f499d63 - Browse repository at this point
Copy the full SHA f499d63View commit details -
Signed-off-by: Quentin Gliech <quentingliech@gmail.com>
Configuration menu - View commit details
-
Copy full SHA for e402a07 - Browse repository at this point
Copy the full SHA e402a07View commit details -
MSC2918: use parse_boolean to get query parameter value
Signed-off-by: Quentin Gliech <quentingliech@gmail.com>
Configuration menu - View commit details
-
Copy full SHA for adc6eab - Browse repository at this point
Copy the full SHA adc6eabView commit details -
MSC2918: use attr.s instead of TypedDict
Signed-off-by: Quentin Gliech <quentingliech@gmail.com>
Configuration menu - View commit details
-
Copy full SHA for 6963fe0 - Browse repository at this point
Copy the full SHA 6963fe0View commit details -
MSC2918: remove unused sequence in refresh_tokens
Signed-off-by: Quentin Gliech <quentingliech@gmail.com>
Configuration menu - View commit details
-
Copy full SHA for 318b74c - Browse repository at this point
Copy the full SHA 318b74cView commit details -
MSC2918: try fixing port_db script when a table references itself
Signed-off-by: Quentin Gliech <quentingliech@gmail.com>
Configuration menu - View commit details
-
Copy full SHA for 29806b4 - Browse repository at this point
Copy the full SHA 29806b4View commit details -
Configuration menu - View commit details
-
Copy full SHA for 72e5c25 - Browse repository at this point
Copy the full SHA 72e5c25View commit details -
Revert "MSC2918: use attr.s instead of TypedDict"
This reverts commit 6963fe0.
Configuration menu - View commit details
-
Copy full SHA for eb9f680 - Browse repository at this point
Copy the full SHA eb9f680View commit details
Commits on May 20, 2021
-
Configuration menu - View commit details
-
Copy full SHA for 417a34a - Browse repository at this point
Copy the full SHA 417a34aView commit details -
Configuration menu - View commit details
-
Copy full SHA for 45177a6 - Browse repository at this point
Copy the full SHA 45177a6View commit details
Commits on May 27, 2021
-
Configuration menu - View commit details
-
Copy full SHA for e37f53a - Browse repository at this point
Copy the full SHA e37f53aView commit details -
Configuration menu - View commit details
-
Copy full SHA for 262d1ab - Browse repository at this point
Copy the full SHA 262d1abView commit details -
Configuration menu - View commit details
-
Copy full SHA for 75ce9e5 - Browse repository at this point
Copy the full SHA 75ce9e5View commit details -
Configuration menu - View commit details
-
Copy full SHA for 6f2cc61 - Browse repository at this point
Copy the full SHA 6f2cc61View commit details -
Configuration menu - View commit details
-
Copy full SHA for b7b17ed - Browse repository at this point
Copy the full SHA b7b17edView commit details -
MSC2918: use secrets.token_bytes instead of random.randbytes
random.randbytes isn't available in python < 3.9 while secrets.token_bytes is available starting python 3.6 Also remove some leftover in the macaroon generator
Configuration menu - View commit details
-
Copy full SHA for c7eab51 - Browse repository at this point
Copy the full SHA c7eab51View commit details -
Configuration menu - View commit details
-
Copy full SHA for 088e023 - Browse repository at this point
Copy the full SHA 088e023View commit details -
Configuration menu - View commit details
-
Copy full SHA for 6247228 - Browse repository at this point
Copy the full SHA 6247228View commit details
Commits on May 28, 2021
-
Configuration menu - View commit details
-
Copy full SHA for 67d4c9e - Browse repository at this point
Copy the full SHA 67d4c9eView commit details -
Configuration menu - View commit details
-
Copy full SHA for 2ec853c - Browse repository at this point
Copy the full SHA 2ec853cView commit details -
Configuration menu - View commit details
-
Copy full SHA for 9e7ce1f - Browse repository at this point
Copy the full SHA 9e7ce1fView commit details -
Configuration menu - View commit details
-
Copy full SHA for 45e2eaf - Browse repository at this point
Copy the full SHA 45e2eafView commit details -
Configuration menu - View commit details
-
Copy full SHA for c20f94a - Browse repository at this point
Copy the full SHA c20f94aView commit details -
Configuration menu - View commit details
-
Copy full SHA for 790baac - Browse repository at this point
Copy the full SHA 790baacView commit details
Commits on Jun 3, 2021
-
Also applies some of richvdh's suggestions
Configuration menu - View commit details
-
Copy full SHA for 01b0740 - Browse repository at this point
Copy the full SHA 01b0740View commit details -
Configuration menu - View commit details
-
Copy full SHA for 797e0d3 - Browse repository at this point
Copy the full SHA 797e0d3View commit details -
Configuration menu - View commit details
-
Copy full SHA for 8f8f369 - Browse repository at this point
Copy the full SHA 8f8f369View commit details -
Configuration menu - View commit details
-
Copy full SHA for 6024ed8 - Browse repository at this point
Copy the full SHA 6024ed8View commit details -
MSC2918: temp: mark the access token as used only once
This is a temporary fix to work around the cache. It's only there to confirm it broke tests, and check if CI passes with this fix.
Configuration menu - View commit details
-
Copy full SHA for 908c279 - Browse repository at this point
Copy the full SHA 908c279View commit details
Commits on Jun 4, 2021
-
MSC2918: explicit cast on access_tokens.used
Boolean handling seems to be broken with older versions of sqlite making the py3-old environment fail in CI. This explicitely casts the `access_tokens.used` column to INTEGER then compares it with "1" when querying it.
Configuration menu - View commit details
-
Copy full SHA for cdfd871 - Browse repository at this point
Copy the full SHA cdfd871View commit details -
Revert "MSC2918: explicit cast on access_tokens.used"
This reverts commit cdfd871.
Configuration menu - View commit details
-
Copy full SHA for b169a62 - Browse repository at this point
Copy the full SHA b169a62View commit details -
Configuration menu - View commit details
-
Copy full SHA for e07ef9b - Browse repository at this point
Copy the full SHA e07ef9bView commit details -
Configuration menu - View commit details
-
Copy full SHA for 4cf49a6 - Browse repository at this point
Copy the full SHA 4cf49a6View commit details -
Configuration menu - View commit details
-
Copy full SHA for ef0e051 - Browse repository at this point
Copy the full SHA ef0e051View commit details
Commits on Jun 10, 2021
-
Configuration menu - View commit details
-
Copy full SHA for 7adfe0c - Browse repository at this point
Copy the full SHA 7adfe0cView commit details
Commits on Jun 17, 2021
-
MSC2918: add comments as suggested by richvdh
Signed-off-by: Quentin Gliech <quentingliech@gmail.com>
Configuration menu - View commit details
-
Copy full SHA for ab443a3 - Browse repository at this point
Copy the full SHA ab443a3View commit details -
Configuration menu - View commit details
-
Copy full SHA for 0060bc9 - Browse repository at this point
Copy the full SHA 0060bc9View commit details
Commits on Jun 18, 2021
-
MSC2918: make access_tokens.used nullable
This avoids rewriting the whole table on disk on Postgres < 11 Signed-off-by: Quentin Gliech <quentingliech@gmail.com>
Configuration menu - View commit details
-
Copy full SHA for 18628fc - Browse repository at this point
Copy the full SHA 18628fcView commit details -
MSC2918: 403 when using a refresh token twice
This could help differenciate errors where the refresh token was never valid from errors where it is not valid anymore Signed-off-by: Quentin Gliech <quentingliech@gmail.com>
Configuration menu - View commit details
-
Copy full SHA for bcc33e2 - Browse repository at this point
Copy the full SHA bcc33e2View commit details -
MSC2918: clarify comment about access_token_lifetime and session_life…
…time interaction in config Co-authored-by: Richard van der Hoff <1389908+richvdh@users.noreply.github.com>
Configuration menu - View commit details
-
Copy full SHA for ddfc2a4 - Browse repository at this point
Copy the full SHA ddfc2a4View commit details -
Configuration menu - View commit details
-
Copy full SHA for a013064 - Browse repository at this point
Copy the full SHA a013064View commit details -
MSC2918: fix refresh token invalidation test
Signed-off-by: Quentin Gliech <quentingliech@gmail.com>
Configuration menu - View commit details
-
Copy full SHA for 9fe5556 - Browse repository at this point
Copy the full SHA 9fe5556View commit details