Preston_PLB
/
oauth2
forked from Mirrors/oauth2
1
0
Fork 0
Code Pull Requests Activity
Fork of oauth 2 to allow the exposing of token refresher
210 Commits 1 Branch 14 Tags 1.7 MiB
Go 100%
Go to file
robnorman d5ff5ab876 jwt: allow setting a custom expiry time for JWT tokens 
The current implementation of JWS/JWT in this package uses a fixed
1 hour expiry time for JWT tokens.

Some services do not accept such a long expiry time, e.g. Salesforce,
which defaults to a 5 minute expiry.
https://help.salesforce.com/HTViewHelpDoc?id=remoteaccess_oauth_jwt_flow.htm

This change adds an Expires time.Duration property to the jwt.Config
struct that, if set, will be used to calculate the jws.ClaimSet Exp property.
It allows a custom expiry to be set on a JWT token.

This change is backward compatible and will revert to previous behaviour if
the Expires property is not set.

Fixes golang/oauth2#151

Change-Id: I3159ac2a5711ef10389d83c0e290bfc7a9f54015
Reviewed-on: https://go-review.googlesource.com/14681
Reviewed-by: Burcu Dogan <jbd@google.com>
 		2015-09-21 17:56:07 +00:00
bitbucket bitbucket: add end points 2015-09-17 03:41:47 +00:00
clientcredentials oauth2: add support for client credential grant type 2015-04-18 00:13:27 +00:00
facebook oauth2: new endpoints 2015-03-21 03:45:11 +00:00
github github: new package with Github's Endpoint 2014-12-16 06:37:13 +00:00
google google: Re-enable AppEngineTokenSource to be used from Managed VMs. 2015-09-16 01:14:15 +00:00
internal oauth2: add api.netatmo.net to the broken providers 2015-07-01 21:58:07 +00:00
jws jwt: allow setting a custom expiry time for JWT tokens 2015-09-21 17:56:07 +00:00
jwt jwt: allow setting a custom expiry time for JWT tokens 2015-09-21 17:56:07 +00:00
linkedin oauth2: new endpoints 2015-03-21 03:45:11 +00:00
odnoklassniki oauth2: new endpoints 2015-03-21 03:45:11 +00:00
paypal oauth2: new endpoints 2015-03-21 03:45:11 +00:00
vk oauth2: new endpoints 2015-03-21 03:45:11 +00:00
.travis.yml oauth2: don't require the appengine package during go-get 2015-01-17 18:51:33 +00:00
AUTHORS Reverting the license back to the original. 2014-05-17 17:26:57 +02:00
CONTRIBUTING.md doc: fix the issues link 2015-03-25 02:00:22 +00:00
CONTRIBUTORS Reverting the license back to the original. 2014-05-17 17:26:57 +02:00
LICENSE Reverting the license back to the original. 2014-05-17 17:26:57 +02:00
README.md doc: fix typo 2015-05-27 20:54:32 +00:00
client_appengine.go Remove use of appenginevm build tag. 2015-09-02 21:49:11 +00:00
example_test.go oauth2: drop pre-1.4 workaround 2015-02-26 04:22:16 +00:00
oauth2.go oauth2: add StaticTokenSource to return static tokens 2015-05-11 20:37:49 +00:00
oauth2_test.go oauth2: add support for client credential grant type 2015-04-18 00:13:27 +00:00
token.go oauth2: ensure case sensitivity for Bearer, MAC, and Basic in auth header 2015-05-26 02:24:55 +00:00
token_test.go oauth2: expire the tokens 10 seconds earlier 2015-01-26 21:59:20 +00:00
transport.go oauth2: add support for client credential grant type 2015-04-18 00:13:27 +00:00
transport_test.go oauth2: ensure case sensitivity for Bearer, MAC, and Basic in auth header 2015-05-26 02:24:55 +00:00

README.md

OAuth2 for Go

Build Status

oauth2 package contains a client implementation for OAuth 2.0 spec.

Installation

go get golang.org/x/oauth2

See godoc for further documentation and examples.

App Engine

In change 96e89be (March 2015) we removed the oauth2.Context2 type in favor of the context.Context type from the golang.org/x/net/context package

This means its no longer possible to use the "Classic App Engine" appengine.Context type with the oauth2 package. (You're using Classic App Engine if you import the package "appengine".)

To work around this, you may use the new "google.golang.org/appengine" package. This package has almost the same API as the "appengine" package, but it can be fetched with go get and used on "Managed VMs" and well as Classic App Engine.

See the new appengine package's readme for information on updating your app.

If you don't want to update your entire app to use the new App Engine packages, you may use both sets of packages in parallel, using only the new packages with the oauth2 package.

import (
	"golang.org/x/net/context"
	"golang.org/x/oauth2"
	"golang.org/x/oauth2/google"
	newappengine "google.golang.org/appengine"
	newurlfetch "google.golang.org/appengine/urlfetch"

	"appengine"
)

func handler(w http.ResponseWriter, r *http.Request) {
	var c appengine.Context = appengine.NewContext(r)
	c.Infof("Logging a message with the old package")

	var ctx context.Context = newappengine.NewContext(r)
	client := &http.Client{
		Transport: &oauth2.Transport{
			Source: google.AppEngineTokenSource(ctx, "scope"),
			Base:   &newurlfetch.Transport{Context: ctx},
		},
	}
	client.Get("...")
}