OAuthLib v0.7.0 Release Notes
Release Date: 2014-10-27 // over 9 years ago-
- โ (Change) OAuth2 clients will not raise a Warning on scope change if
the environment variable
OAUTHLIB_RELAX_TOKEN_SCOPEis set. The token will now be available as an attribute on the error,error.token. Token changes will now also be announced using blinker. - ๐ (Fix/Feature) Automatic fixes of non-compliant OAuth2 provider responses (e.g. Facebook).
- ๐ฒ (Fix) Logging is now tiered (per file) as opposed to logging all under
oauthlib. - (Fix) Error messages should now include a description in their message.
- ๐ (Fix/Feature) Optional support for jsonp callbacks after token revocation.
- (Feature) Client side preparation of OAuth 2 token revocation requests.
- (Feature) New OAuth2 client API methods for preparing full requests.
- (Feature) OAuth1 SignatureOnlyEndpoint that only verifies signatures and client IDs.
- (Fix/Feature) Refresh token grant now allow optional refresh tokens.
- (Fix) add missing state param to OAuth2 errors.
- (Fix) add_params_to_uri now properly parse fragment.
- (Fix/Feature) All OAuth1 errors can now be imported from oauthlib.oauth1.
- ๐ (Fix/Security) OAuth2 logs will now strip client provided password, if present.
- ๐ Allow unescaped @ in urlencoded parameters.
- โ (Change) OAuth2 clients will not raise a Warning on scope change if
the environment variable