Zach Copley
a548861dbf
OAuth - proper callback handling and better styling for authorization
...
page when in desktop mode
2010-10-21 14:45:42 -07:00
Zach Copley
648f79be10
Change OAuth authorization page's action name to be inline with
...
other web page action names so the body id outputs correctly. Fix
some other bugs.
2010-10-21 13:00:59 -07:00
Zach Copley
bab012bd67
New "desktop" mode for the OAuth authorization page. If mode=deskstop
...
is specified in the request the page is probably meant to be displayed
in a small webview of another application, so suppress header, aside
and footer.
2010-10-21 12:23:04 -07:00
Siebrand Mazeland
fb12094f61
i18n/L10n updates, translator docs updated, superfluous whitespace removed.
2010-10-21 03:10:46 +02:00
Zach Copley
bfdb8385ec
Merge branch '0.9.x' of gitorious.org:statusnet/mainline into 0.9.x
...
Conflicts:
actions/apioauthauthorize.php
lib/apioauthstore.php
2010-10-20 17:28:28 -07:00
Zach Copley
e56385a7bb
Use a new table (oauth_token_association) to associate authorized
...
request tokins with OAuth client applications and profiles.
2010-10-20 17:21:04 -07:00
Brion Vibber
c24f4ddfdb
Pretty up the OpenID variant of the OAuth login form a bit; change the 'Allow' button to 'Continue' so we're not confused why we get the form again after authenticating.
2010-10-20 16:14:32 -07:00
Brion Vibber
bcc06d05e8
Initial OpenID+OAuth thingy.
2010-10-20 15:59:27 -07:00
Siebrand Mazeland
dc62cf1c0b
* i18n/L10n fixes.
...
* translator documentation updated/added.
* superfluous whitespace removed.
2010-10-20 19:34:27 +02:00
Zach Copley
e8b6d7c946
Add support for an anonymous OAuth consumer. Note: this requires a
...
small DB tweak. Oauth_application_user needs to have the primary
compound key: (profile_id, application_id, token).
http://status.net/open-source/issues/2761
This should also make it possible to have multiple access tokens
per application.
http://status.net/open-source/issues/2788
2010-10-19 20:54:53 -07:00
Zach Copley
5866493cae
OAuth - better log messages
2010-10-19 12:07:59 -07:00
Zach Copley
f8808b0761
Added a comment about an open question: Should we allow pin-based
...
workflow for clients registered as web applications?
2010-10-07 14:19:42 -07:00
Zach Copley
b8f2cc4e6f
Make the verifier pin display a little nicer
2010-10-07 13:51:47 -07:00
Zach Copley
69e621a3e8
- Update ApiOauthAuthorizeAction to 1.0a
...
- Fix enumerable bugs
- New page for displaying 1.0a verifier (still needs work)
2010-10-06 19:20:47 -07:00
Zach Copley
77609e0c4a
Fix for ticket 2756 - Calls to OAuth endpoints are redirected to the
...
login page when a site is in private mode
2010-09-22 23:30:50 +00:00
Zach Copley
c03883fc88
Suppress notice input box on OAuth authorization page
2010-02-02 07:59:28 +00:00
Zach Copley
f1094185e4
Better token revocation
2010-02-02 07:35:54 +00:00
Evan Prodromou
779204b194
Merge branch 'testing' into 0.9.x
...
Conflicts:
actions/apioauthauthorize.php
2010-01-31 15:27:58 -05:00
Zach Copley
5182cc686d
Numbered format specifiers
2010-01-28 01:39:18 +00:00
Siebrand Mazeland
fcc48155ed
L10n updates:
...
* app -> application
* number parameters when using more than one in a message
2010-01-28 01:32:48 +01:00
Sarven Capadisli
dbcbc2fe7f
Changed legend text from Login to Account because it is not really
...
logging iny
2010-01-24 16:36:05 -08:00
Sarven Capadisli
6d58ef4abb
Updated apioauthauthorize markup and styles
2010-01-24 16:36:05 -08:00
Zach Copley
c0eee277d1
Make sure applications are really looked up by consumer key
2010-01-24 16:36:05 -08:00
Zach Copley
8da5e98cba
OAuth 1.0 working now
2010-01-24 16:36:04 -08:00
Zach Copley
c473a39a7d
Associate request tokens with OAuth apps and app users
2010-01-24 16:36:02 -08:00
Zach Copley
e9e448bcee
Workflow for request tokens and authorizing request tokens
2010-01-24 16:36:02 -08:00
Zach Copley
6472331be5
Stubs for API OAuth token exchange stuff
2010-01-24 16:36:02 -08:00