| Age | Commit message (Expand) | Author |
|---|---|---|
| 2024-10-09 | Update application's allowed scopes•••The `register-client` and `migrate-data` scopes are not supported for end-user clients. | Frederick Muriuki Muriithi |
| 2024-10-09 | Pass the scope from the token, not application•••There are at times when a token's scope could be attenuated for whatever reason from the full scope allowed to the application. In those instances, it is necessary to use the token's scope rather than the full scope. | Frederick Muriuki Muriithi |
| 2024-08-05 | Fix URL | Frederick Muriuki Muriithi |
| 2024-08-05 | Override 'client_secret_post' auth with a JSON equivalent•••In order to use JSON consistently across the board, we make even the authentication method use JSON rather than FORMDATA. | Frederick Muriuki Muriithi |
| 2024-08-01 | Use JWKs from auth server public endpoint•••* Fetch keys from auth server * Validate token is signed with one of the keys from server * Ensure refreshing of token is still synchronised | Frederick Muriuki Muriithi |
| 2024-07-31 | Synchronise token refreshes•••The application can be run in a multi-threaded server, leading to a situation where the multiple threads attempt to get a new JWT using the exact same refresh token. This synchronises the various threads ensuring only a single thread is able to retrieve the new JWT that all the rest of the threads then use. | Frederick Muriuki Muriithi |
| 2024-07-17 | Fix premature session expiration•••With the change to JWTs the time-to-live for each token is severely curtailed to help with security in case of a token theft. We, therefore, can no longer rely on the TTL for session expiration, rather, we will rely of the token-refresh mechanism to expire a token after a long while. | Frederick Muriuki Muriithi |
| 2024-06-10 | Set default headers for OAuth2Client requests. | Frederick Muriuki Muriithi |
| 2024-05-14 | Consistently use the same OAuthSession client | Frederick Muriuki Muriithi |
| 2024-05-14 | Enable client to automatically request a refresh token. | Frederick Muriuki Muriithi |
| 2024-04-30 | Make returning an json object from oauth2_get optional.•••* gn2/wqflask/oauth2/client.py (oauth2_get): Add a jsonify_p key word that defaults to False. Signed-off-by: Munyoki Kilyungi <me@bonfacemunyoki.com> | Munyoki Kilyungi |
| 2024-03-26 | Use correct variable name.•••* gn2/wqflask/oauth2/client.py (no_token_post): "uri" does not exist. Replace it with "uri_path." Signed-off-by: Munyoki Kilyungi <me@bonfacemunyoki.com> | Munyoki Kilyungi |
| 2024-03-26 | Remove unused imports.•••Signed-off-by: Munyoki Kilyungi <me@bonfacemunyoki.com> | Munyoki Kilyungi |
| 2024-03-06 | Bug: Break circular import | Frederick Muriuki Muriithi |
| 2024-03-05 | configs: Fetch configs from app not `gn2.utility.tools`•••Fetch configurations from the application, rather than from the `gn2.utility.tools` module that does not get the updated values from the secrets file. | Frederick Muriuki Muriithi |
| 2024-01-30 | Create framework for error handling and handle connection errors | Frederick Muriuki Muriithi |
| 2023-12-29 | Namespace all modules under gn2.•••We move all modules under a gn2 directory. This is important for "correct" packaging and deployment as a Guix service. | Arun Isaac |
 |
index : genenetwork2 | |
| GeneNetwork (2nd generation) |
| aboutsummaryrefslogtreecommitdiff |