Movatterモバイル変換

[0]ホーム
URL:

Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly

 Sign up
Appearance settings
/hydraPublic

feat: for expired challenges return HTTP 410 and redirect url#3802

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to ourterms of service andprivacy statement. We’ll occasionally send you account related emails.

Already on GitHub?Sign in to your account

Open
terev wants to merge1 commit intoory:master
base:master
Choose a base branch
Loading
fromterev:expired-challenge-redir

Conversation

@terev
Copy link
Contributor

Return HTTP 410 and initial auth url for consent app to redirect user agent to when an expired challenge is supplied. This implements the same mechanism provided for consent apps to handle previously utilized challenges#2473 .

BREAKING CHANGES: This patch changes the response status code for expired challenges from 401 to 410. It also changes the schema of the response from fosite.RFC6749Error to flow.OAuth2RedirectTo.

Related issue(s)

Closes#3772

Checklist

  • I have read thecontributing guidelines.
  • I have referenced an issue containing the design document if my change
    introduces a new feature.
  • I am following the
    contributing code guidelines.
  • I have read thesecurity policy.
  • I confirm that this pull request does not address a security
    vulnerability. If this pull request addresses a security vulnerability, I
    confirm that I got the approval (please contact
    security@ory.sh) from the maintainers to push
    the changes.
  • I have added tests that prove my fix is effective or that my feature
    works.
  • I have added or changedthe documentation.

@terevterev changed the titlefeat: return HTTP 410 and initial auth url for consent app to redirect user agentfeat: for expired challenges return HTTP 410 and redirect urlJul 24, 2024
…t the user agent to when an expired challenge is supplied
@terevterevforce-pushed theexpired-challenge-redir branch from4441c17 to783d954CompareJuly 25, 2024 17:40
Sign up for freeto join this conversation on GitHub. Already have an account?Sign in to comment

Reviewers

@aeneasraeneasrAwaiting requested review from aeneasraeneasr is a code owner

@hperlhperlAwaiting requested review from hperl

@alnralnrAwaiting requested review from alnr

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Expired Login/Consent Challenge Should be Resolvable for Consent App

1 participant

@terev
[8]ページ先頭
©2009-2025 Movatter.jp