This repository was archived by the owner on Jan 20, 2024. It is now read-only.

mulesoft-labs/js-client-oauth2Public archive

NotificationsYou must be signed in to change notification settings
Fork146
Star539

Fixes #98: Do not send empty scopes to an auth server#154

Merged

postatum merged 6 commits intomasterfromi98_omit_empty_scopes

Aug 3, 2020

Merged

Fixes #98: Do not send empty scopes to an auth server#154

postatum merged 6 commits intomasterfromi98_omit_empty_scopes

Aug 3, 2020

Conversation

Copy link

Contributor

postatum commentedJul 27, 2020

Fixes#98

postatum added5 commits

July 24, 2020 14:15

Do not send scopes when they are empty

2b71bcc

Merge fresh master

c1f902b

Fix tests

4327241

Add tests for empty scopes

333f8d2

Remove log call

371ad5c

postatum requested a review fromjstoiko

July 27, 2020 08:04

jstoiko suggested changes

Jul 29, 2020

View reviewed changes

Copy link

Contributor

jstoiko left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others.Learn more.

I think we should let the user have control over the value ofscope that is sent to the server. Ifscopes is set to"" or[] then we should send an empty string (that's whatsanitizeScope() currently does). Ifscopes is undefined (not set), then we shouldn't send it at all (that part is what needs to be fixed).

test/owner.js OutdatedShow resolvedHide resolved

Do not send undefined scopes. Send empty scopes

56f04a5

Copy link

ContributorAuthor

postatum commentedJul 30, 2020

I think we should let the user have control over the value ofscope that is sent to the server. Ifscopes is set to"" or[] then we should send an empty string (that's whatsanitizeScope() currently does). Ifscopes is undefined (not set), then we shouldn't send it at all (that part is what needs to be fixed).

Reworked.

postatum requested a review fromjstoiko

July 30, 2020 09:49

jstoiko approved these changes

Aug 2, 2020

View reviewed changes

postatum merged commita237644 intomaster

Aug 3, 2020

postatum deleted the i98_omit_empty_scopes branch

August 3, 2020 07:16

postatum mentioned this pull request

Aug 3, 2020

Release 4.3.3#156

Merged

clancy-au pushed a commit to digiwise/js-client-oauth2 that referenced this pull request

Apr 21, 2021

Fixesmulesoft-labs#98: Do not send empty scopes to an auth server (m…

d87114e

…ulesoft-labs#154)If `scopes` is set to `""` or `[]` then we should send an empty string.If `scopes` is undefined (not set), then we don't send it at all.

Labels

None yet

2 participants

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Fixes #98: Do not send empty scopes to an auth server#154

Fixes #98: Do not send empty scopes to an auth server#154

Uh oh!

Conversation

postatum commentedJul 27, 2020

Uh oh!

jstoiko left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!

postatum commentedJul 30, 2020

Uh oh!

Uh oh!