ory/fosite

Issues

• Allow revoking access token without revoking refresh token

  #748 opened 2 years ago by apexskier
  4

• Building v0.47.0 fails - cannot use generic type ristretto.Cache[K z.Key, V any] without instantiation

  #825 opened 2 months ago by verkaufer
  5

• Rich authorization request (RFC 9396)

  #822 opened 3 months ago by vivshankar
  3

• Is there a plan to implement RFC 9449 (DPoP: Demonstrating Proof of Possession)

  #829 opened a month ago by ghiyastfarisi
  2

• Consider upgrading to github.com/go-jose/go-jose/v4

  #797 opened 8 months ago by mitar
  6

• Make prefix used in HMACSHAStrategy configurable

  #789 opened 2 months ago by mitar
  2

• Investigate missing `redirect_uri` check when performing OIDC flows

  #685 opened 2 months ago by aeneasr
  4

• Consider upgrading to go.opentelemetry.io/otel/trace@1.27.0

  #809 opened 6 months ago by zzzzzztt
  3

• Is there a plan to support custom redirect_uri matching rules.

  #820 opened 3 months ago by gitsang
  5

• Vulnerability: Please upgrade dependences

  #818 opened 4 months ago by digitive
  0

• Support audience matching strategy in the RFC7523 handler

  #817 opened 4 months ago by elainaRenee
  0

• Concurrent requests for token endpoint on auth-code flow with same code succeed.

  #778 opened a year ago by tn185075
  8

• RFC7523: Allow associating an audience allow list to a public key trust.

  #736 opened 8 months ago by trondhauge85
  1

• `iat` field in access token (JWT) issued as part of `refresh_token` grant.

  #774 opened a year ago by tn185075
  8

• Why does HMACStrategy.Generate uses a lock?

  #803 opened 8 months ago by mitar
  3

• Unable to obtain expiration time of refresh tokens

  #801 opened 8 months ago by mitar
  1

• private_key_jwt assetion tokens can have unbounded expiration which can fill data store

  #792 opened 8 months ago by mitar
  3

• openid session storage should be deleted when the authcode is exchanged

  #790 opened 9 months ago by cfryanr
  9

• id_token_hint should not persist to storage

  #798 opened 8 months ago by mitar
  2

• NewDefaultSession's SetSubject should set IDTokenClaims as well

  #796 opened 9 months ago by mitar
  0

• Changelog is out of sync

  #745 opened 9 months ago by mitar
  0

• Failing to fetch a PKCE request session fails requests even when PKCE is not enforced

  #743 opened 9 months ago by jgresty
  3

• clientCredentialsFromRequest should not expect Basic Authorization terms being URL Escaped

  #753 opened 9 months ago by it9gamelog
  2

• upstream reference closed: github.com/square/go-jose/issues/353

  #735 opened 9 months ago by github-actions
  1

• Support per-client signing algorithm

  #788 opened 10 months ago by mitar
  8

• Add custom form_post response writer

  #730 opened 10 months ago by levkohimins
  1

• DefaultSigner should support key rotation

  #786 opened 10 months ago by mitar
  0

• OIDC callback is always HTTPS, even when entered as HTTP

  #784 opened 10 months ago by Forceu
  1

• Improve documentation for storage implementers

  #723 opened a year ago by gonzojive
  1

• Can not run the example code

  #779 opened a year ago by liuyangc3
  0

• upstream reference closed: github.com/ory/fosite/pull/187

  #716 opened a year ago by github-actions
  1

• upstream reference closed: github.com/ory/fosite/pull/242

  #717 opened a year ago by github-actions
  1

• Failed to decode `id_token_hint` when using different signer for `id_token` and others

  #769 opened a year ago by hijiki51
  0

• use mattn/go-sqlite3 v2.0.3+incompatible no the new version

  #768 opened a year ago by wuxingzhong
  6

• authorize_helper.isLoopbackAddress has flaws

  #750 opened a year ago by it9gamelog
  1

• github.com/square/go-jose is deprecated

  #734 opened a year ago by mitar
  3

• During refresh token grant if token is invalid or expired return status code should be 400

  #747 opened 2 years ago by love-bhardwaj
  3

• Refresh token flow handler does not set the original request ID in the handler early enough

  #754 opened a year ago by vivshankar
  0

• redirect_uri matching does not follow RFC3986

  #744 opened 2 years ago by jgresty
  2

• Auth Req omitted response_mode does not validate the default response_mode against the ResponseModeClient

  #742 opened 2 years ago by james-d-elliott
  0

• RFC7523: Store the payload of the supplied JWT for later use in token hook in Hydra

  #729 opened 2 years ago by sgal
  6

• Best way to replicate a refresh_token flow using Fosite.

  #728 opened 2 years ago by tn185075
  5

• Invalid token (base64 error) isn't mapped to an RFC6749Error error

  #727 opened 2 years ago by Philio
  0

• Add support for custom client secret validation

  #693 opened 2 years ago by hilariocoelho
  1

• Example in documentation mistake

  #692 opened 2 years ago by MatteoGioioso
  1

• Need to increase the scope(`openid`) inspection in openid `CanHandleTokenEndpointRequest`

  #702 opened 2 years ago by yiuiua
  1

• Unable to request narrower scopes in OAuth2 Refresh Token Exchange

  #696 opened 2 years ago by silverspace
  10

• Add changelog into release info

  #715 opened 2 years ago by aldas
  5

• Error messages with status 503 and message temporarily_unavailable when revoking access and refresh tokens sequentially

  #709 opened 2 years ago by mih-kopylov
  0

• Trouble using JWT for auth code flow

  #681 opened 2 years ago by tn185075
  1