1. David Larlet
  2. django-oauth-plus

Wiki

Clone wiki

django-oauth-plus / changelist

Changelist

List of all changes

2.2.9 (2016-06-02)

Fixes:

2.2.8 (2015-06-26)

Fixes:

2.2.7 (2015-06-19)

Fixes:

Notes:

  • django-oauth-plus now passes tests on django1.8 so it should be compatible with this release.

2.2.6 (2015-03-02)

Changes:

  • updated tests requirements

Fixes:

2.2.5 (2014-10-13)

Changes:

Fixes:

2.2.4 (2014-01-24)

Fixes:

2.2.3 (2013-12-10)

Fixes:

  • fixed issue #45 related to custom user models (thanks Changhwan Song)
  • fixed requirements for tests

Changes:

  • updated tox test matrix with new minor versions of django

2.2.2 (2013-11-21)

Fixes:

  • fixed issue #44 introduced in 2.1.3

2.2.1 (2013-10-28)

Fixes:

  • fixed nonce checking when no timestamp provided
  • tz aware (UTC) now for timestamp checking.

2.2.0 (2013-10-21)

Changes:

  • Nonce model has now time-indexed field.
  • optional setting OAUTH_NONCE_VALID_PERIOD added.
  • Resource model renamed to Scope. Resource still can be used (as proxy model) but now is deprecated and will be removed in future versions.
  • Scopes/Resources are now fully optional. There is no need for creating 'all' resource.

Fixes:

  • oauth_required decorator has now timestamp field
  • added missing nonces tests

Notes:

  • This release includes some migrations and requires additional settings. Internal API has changed.

2.1.5 (2013-09-24)

  • fixed issue #41 - use 'X-Forwarded-Proto' header to verify signatures when request was forwarded (e.g. by loadbalancer) in different protocol.

2.1.4 (2013-08-14)

Fixes:

  • fixed security issue allowing client to access any scope without proper user authorization (details).

2.1.3 (2013-07-31)

Fixes:

  • fixed south migrations for custom user models in django>=1.5
  • fixed south version requirement
  • @oauth_required decorator sets now request.user to token.user if auth is successful
  • more protocol tests added (thanks to Andrei Kopats)
  • added XAuth test case
  • get_oauth_request doesn't include parameters from request body if it is POST with content-type: application/x-www-form-urlencoded and request includes OAuth authorization header.

2.1.2 (2013-06-18)

New features:

  • tox tests
  • oauth_required decorator can now be used with and without parameters like was described in docs (issue #11)

Fixes:

  • fixed issue with parsing non-url scheme (issue #2)
  • fixed issue #24 (thanks to Atle Frenvik Sveen)
  • minor code and testing suite improvements
  • removed duplicated code (issue #3)
  • fixed migrations when SECRET SIZE is set to something else than 'factory default'

2.1.0 (2013-03-18)

New features:

  • configured tox tests to test against different python (2.6, 2.7) and django (1.3, 1.4, 1.5) versions
  • tests totally rewritten (now able to run them with simple tox command)
  • merged Twitter xAuth support (thanks to Andy Mroczkowski pull request)
  • support for django==1.5
  • support for Class Based Views

Fixes:

  • fixed issues when using custom user model in django>=1.5
  • fixed vcs revision tree issue (multiple heads in default) - now pull requests should be easier to merge within bitbucket
  • fixed authorization with 'oob' callback

Updated