Use per client usage rules by nsklikas · Pull Request #110 · IdentityPython/oidcendpoint

nsklikas · Apr 21, 2021

The current code would overwrite the per client usage_rules. E.g.:

# The grant created here will take the usage_rules defined in the client
sid = endpoint_context.session_manager.create_session(
    ..., 
    token_usage_rules=endpoint_context.authz.usage_rules(auth_req.get("client_id")
)
# This calls endpoint_context.authz(...), which would overwrite the usage_rules (with the 
# global ones)
endpoint_context.endpoint["authorization"].authz_part2(auth_req, sid)

This PR fixes this behaviour.

rohe · Apr 21, 2021

I'm working on a oidc-op version that includes oidcendpoint which will make the oidcendpoint package vanish.
I've applied your changes to the oidc-op branch (incl_oidcendpoint) I'm working on.

Use per client usage rules

b340846

nsklikas requested review from angelakis and rohe April 21, 2021 09:51

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Use per client usage rules#110

Use per client usage rules#110
nsklikas wants to merge 1 commit intoIdentityPython:developIdentityPython/oidcendpoint:developfrom
nsklikas:feature-per-client-usage-rulesnsklikas/oidcendpoint:feature-per-client-usage-rulesCopy head branch name to clipboard

nsklikas commented Apr 21, 2021

Uh oh!

rohe commented Apr 21, 2021

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Search code, repositories, users, issues, pull requests...

Conversation

nsklikas commented Apr 21, 2021

Uh oh!

rohe commented Apr 21, 2021

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants