Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

oauth2: Require consent for OAuth 2.0 public clients #692

Closed
aeneasr opened this issue Dec 9, 2017 · 1 comment
Closed

oauth2: Require consent for OAuth 2.0 public clients #692

aeneasr opened this issue Dec 9, 2017 · 1 comment
Labels
feat New feature or request. help wanted We are looking for help on this one. package/oauth2
Milestone
1.0.0-alpha.1

Comments

@aeneasr
Copy link
Member

aeneasr commented Dec 9, 2017

This is currently up to the implementation of the consent app but should be baked into the consent protocol. See https://tools.ietf.org/html/rfc6819#section-5.2.3.2
@aeneasr aeneasr added feat New feature or request. help wanted We are looking for help on this one. package/oauth2 labels Dec 9, 2017
@aeneasr aeneasr modified the milestones: 1.0.0-alpha1, 0.11.0 Dec 9, 2017
aeneasr pushed a commit that referenced this issue Dec 16, 2017
oauth2: Adds ability to detect previous consent
3da8bc3 
This commit aims at improving OpenID Connect conformity whilst making it
as easy as possible to implement the consent app.

For that reason, ORY Hydra is now capable of remembering user sessions
and previous consent requests, and properly handles OpenID Connect's
maxAge and prompt parameters.

Additionally, public OAuth 2.0 clients always require the full consent
flow.

Closes #692
Closes #697
@aeneasr aeneasr mentioned this issue Dec 16, 2017
Closed
5 tasks
@aeneasr aeneasr modified the milestones: 0.12.0, 1.0.0-alpha1 Jan 15, 2018
@aeneasr aeneasr mentioned this issue Feb 8, 2018
Closed
6 tasks
@aeneasr
Copy link
Member Author

aeneasr commented May 20, 2018

This is resolved on master

@aeneasr aeneasr closed this as completed May 20, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
feat New feature or request. help wanted We are looking for help on this one. package/oauth2
Projects
None yet
Milestone
1.0.0-alpha.1
Development

No branches or pull requests
1 participant
@aeneasr