Elm Oauth2 Versions Save

OAuth 2.0 client-side utils in Elm

8.0.1

2 years ago

  • Softly deprecate Implicit and put AuthorizationCode and AuthorizationCode w/ PKCE more in the spotlights, as per security recommendations.

  • Documentation tweaks and improvements (better cross-link references, better code highlights, links to examples).

8.0.0

2 years ago

  • Allow more advanced control for tweaking parsers, decoders and url builders. This is particularly useful for applications integrating with systems which are either not strictly following the OAuth2.0 specifications, or, systems who introduce custom fields of some importance for the underlying application. (see #29, #23, #21)

  • Update dependencies for base64 encoding

Diff

OAuth - MINOR

  • Added:

    type GrantType
    = AuthorizationCode
    | Password
    | ClientCredentials
    | RefreshToken
    | CustomGrant String

grantTypeToString : GrantType -> String

    type ResponseType
    = Code
    | Token
    | CustomResponse String

responseTypeToString : ResponseType -> String

OAuth.Implicit - MAJOR

  • Added:

    makeAuthorizationUrlWith :
    ResponseType
    -> Dict String String
    -> Authorization
    -> Url

  • Changed:

    -- type alias Parsers =
--     { tokenParser :
--           Query.Parser (Maybe Token)
--     , errorParser :
--           Query.Parser (Maybe ErrorCode)
--     , authorizationSuccessParser :
--           String -> Query.Parser AuthorizationSuccess
--     , authorizationErrorParser :
--           ErrorCode -> Query.Parser AuthorizationError
--     }

type alias Parsers error success =
    { tokenParser :
          Query.Parser (Maybe Token)
    , errorParser :
          Query.Parser (Maybe ErrorCode)
    , authorizationSuccessParser :
          String -> Query.Parser success
    , authorizationErrorParser :
          ErrorCode -> Query.Parser error
    }

    -- defaultParsers : Parsers
defaultParsers : Parsers AuthorizationError AuthorizationSuccess

    -- parseTokenWith : Parsers -> Url -> AuthorizationResult
parseTokenWith : Parsers error success -> Url -> AuthorizationResultWith error success

OAuth.AuthorizationCode - MAJOR

  • Added:

    makeAuthorizationUrlWith :
    ResponseType
    -> Dict String String
    -> Authorization
    -> Url

    makeTokenRequestWith :
    OAuth.GrantType
    -> Json.Decoder success
    -> Dict String String
    -> (Result Http.Error success -> msg)
    -> Authentication
    -> RequestParts msg

  • Changed:

    -- type AuthorizationResult
--     = Empty
--     | Error AuthorizationError
--     | Success AuthorizationSuccess

type alias AuthorizationResult =
    AuthorizationResultWith AuthorizationError AuthorizationSuccess

type AuthorizationResultWith error success
    = Empty
    | Error error
    | Success success

    -- type alias Parsers =
--     { codeParser :
--           Query.Parser (Maybe String)
--     , errorParser :
--           Query.Parser (Maybe ErrorCode)
--     , authorizationSuccessParser :
--           String -> Query.Parser AuthorizationSuccess
--     , authorizationErrorParser :
--           ErrorCode -> Query.Parser AuthorizationError
--     }

type alias Parsers error success =
    { codeParser :
          Query.Parser (Maybe String)
    , errorParser :
          Query.Parser (Maybe ErrorCode)
    , authorizationSuccessParser :
          String -> Query.Parser success
    , authorizationErrorParser :
          ErrorCode -> Query.Parser error
    }

    -- defaultParsers : Parsers
defaultParsers : Parsers AuthorizationError AuthorizationSuccess

    -- parseCodeWith : Parsers -> Url -> AuthorizationResult
parseCodeWith : Parsers error success -> Url -> AuthorizationResultWith error success

OAuth.AuthorizationCode.PKCE - MAJOR

  • Added:

    makeAuthorizationUrlWith :
    ResponseType
    -> Dict String String
    -> Authorization
    -> Url

    makeTokenRequestWith :
    OAuth.GrantType
    -> Json.Decoder success
    -> Dict String String
    -> (Result Http.Error success -> msg)
    -> Authentication
    -> RequestParts msg

  • Changed:

    -- type AuthorizationResult
--     = Empty
--     | Error AuthorizationError
--     | Success AuthorizationSuccess

type alias AuthorizationResult =
    AuthorizationResultWith AuthorizationError AuthorizationSuccess

type AuthorizationResultWith error success
    = Empty
    | Error error
    | Success success

    -- type alias Parsers =
--     { codeParser :
--           Query.Parser (Maybe String)
--     , errorParser :
--           Query.Parser (Maybe ErrorCode)
--     , authorizationSuccessParser :
--           String -> Query.Parser AuthorizationSuccess
--     , authorizationErrorParser :
--           ErrorCode -> Query.Parser AuthorizationError
--     }

type alias Parsers error success =
    { codeParser :
          Query.Parser (Maybe String)
    , errorParser :
          Query.Parser (Maybe ErrorCode)
    , authorizationSuccessParser :
          String -> Query.Parser success
    , authorizationErrorParser :
          ErrorCode -> Query.Parser error
    }

    -- defaultParsers : Parsers
defaultParsers : Parsers AuthorizationError AuthorizationSuccess

    -- parseCodeWith : Parsers -> Url -> AuthorizationResult
parseCodeWith : Parsers error success -> Url -> AuthorizationResultWith error success

OAuth.ClientCredentials - MINOR

  • Added:

    makeTokenRequestWith :
    GrantType
    -> Json.Decoder success
    -> Dict String String
    -> (Result Http.Error success -> msg)
    -> Authentication
    -> RequestParts msg

OAuth.Password - MINOR

  • Added:

    makeTokenRequestWith :
    GrantType
    -> Json.Decoder success
    -> Dict String String
    -> (Result Http.Error success -> msg)
    -> Authentication
    -> RequestParts msg

OAuth.Refresh - MINOR

  • Added:

    makeTokenRequestWith :
    GrantType
    -> Json.Decoder success
    -> Dict String String
    -> (Result Http.Error success -> msg)
    -> Authentication
    -> RequestParts msg

7.0.1

3 years ago

7.0.0

4 years ago

Diff

---- ADDED MODULES - MINOR ----

    OAuth.AuthorizationCode.PKCE


---- OAuth.AuthorizationCode - MAJOR ----

    Added:
        type alias AuthorizationCode = String.String
    
    Changed:
      - type alias AuthorizationSuccess =
            { code : String, state : Maybe String }
      + type alias AuthorizationSuccess =
            { code : OAuth.AuthorizationCode.AuthorizationCode
            , state : Maybe.Maybe String.String
            }

Commits

  • f1f648a76fcc0e8e33ef06cd9867600164d709d7 add support for RFC7636 - Proof Key for Code Exchange

    Auth 2.0 public clients utilizing the Authorization Code Grant are susceptible to the authorization code interception attack. This specification describes the attack as well as a technique to mitigate against the threat through the use of Proof Key for Code Exchange (PKCE, pronounced "pixy").

  • 3dc3c9d6a0aa6d20b84d8ffc79e55aec06beb683 remove double dependency on base64 and favor only one

  • 6199c78126d59fe0da5ed491f04835087285188a several doc revision on all grants (diagrams, type description etc ...)

  • 0d969a08dd90079933f747c24cea8c13b9954a07 put PKCE as recommended in README and start reviewing demos / guides

  • b712fcdec341bb3b07a95fbcf5e77c6794f7da01 rework examples

    • Add auth0 example with authorization code and PKCE support
    • Add facebook example
    • Make them more readable and avoid unrelated code in examples
    • Add README to summarize information

  • 68383cfa0d22c29733a219a2849db3cfc2731e63 revise deployment scripts, in particular examples

5.0.0

5 years ago
  • (d74016e, 333d6ea, 849d985, 78caba7) Upgrade elm/http to new major version 2.0.0

2.0.1

5 years ago
  • Enhance documentation about response parameters

2.0.2

5 years ago
  • Fix bug about empty scope parameter being sent when Nothing is provided as a scope

2.0.3

5 years ago
  • Update LICENSE's information
  • Fix broken links and examples in README

2.1.0

5 years ago
  • Expose internal Json decoders
  • Enable users to adjust requests made to the Authorization Server to cope with possible implementation quirks (like GitHub API v3)

2.2.0

5 years ago
  • (oversight) Actually expose 'authenticateWithOpts' functions from modules