oauth2server: redirect uri validation fix
1f291cfb2742
Actions

Authored by Lars Holm Nielsen <lars.holm.nielsen@cern.ch> on Sep 1 2014, 11:03.

Description

oauth2server: redirect uri validation fix

Fixes security issue where redirect URIs was not correctly validated against the values provided by the client. (closes #2175)

Signed-off-by: Lars Holm Nielsen <lars.holm.nielsen@cern.ch>

Committed

Lars Holm Nielsen <lars.holm.nielsen@cern.ch>

Sep 2 2014, 07:51

Parents

Branches

Unknown

Tags

Unknown

Lars Holm Nielsen <lars.holm.nielsen@cern.ch> committed R3600:1f291cfb2742: oauth2server: redirect uri validation fix (authored by Lars Holm Nielsen <lars.holm.nielsen@cern.ch>).Sep 2 2014, 07:51

				Path
	M			invenio/modules/oauth2server/config.py
	P			invenio/modules/oauth2server/errors.py Copied from invenio/modules/tags/bundles.py
	M			invenio/modules/oauth2server/forms.py
	M			invenio/modules/oauth2server/models.py
	M			invenio/modules/oauth2server/registry.py
	A			invenio/modules/oauth2server/testsuite/test_models.py
	M			invenio/modules/oauth2server/testsuite/test_provider.py
	A			invenio/modules/oauth2server/validators.py
	M			invenio/modules/oauth2server/views/settings.py