Begin cleaning up OAuth scope handling
60133b6fa5d5
Actions

Authored by epriestley <git@epriestley.com> on Apr 3 2016, 17:25.

Description

Begin cleaning up OAuth scope handling

Summary:
Ref T7303. OAuth scope handling never got fully modernized and is a bit of a mess.

Also introduce implicit "ALWAYS" and "NEVER" scopes.

Always give tokens access to meta-methods like conduit.getcapabilities and conduit.query. These do not expose user information.

Test Plan:

Reviewers: chad

Reviewed By: chad

Maniphest Tasks: T7303

Committed

epriestley <git@epriestley.com>

Apr 4 2016, 18:11

Pushed

aubort

Jan 31 2017, 17:16

Parents

rPH694a8543d809: Modernize some OAuth Server code

Branches

Unknown

Tags

Unknown

epriestley <git@epriestley.com> committed rPH60133b6fa5d5: Begin cleaning up OAuth scope handling (authored by epriestley <git@epriestley.com>).Apr 4 2016, 18:11

				Path
	M			src/applications/conduit/call/ConduitCall.php
	M			src/applications/conduit/controller/PhabricatorConduitAPIController.php
	M			src/applications/conduit/controller/PhabricatorConduitConsoleController.php
	M			src/applications/conduit/method/ConduitAPIMethod.php
	M			src/applications/conduit/method/ConduitGetCapabilitiesConduitAPIMethod.php
	M			src/applications/conduit/method/ConduitQueryConduitAPIMethod.php
	M			src/applications/oauthserver/PhabricatorOAuthServer.php
	M			src/applications/oauthserver/PhabricatorOAuthServerScope.php
	M			src/applications/oauthserver/controller/PhabricatorOAuthServerTokenController.php
	M			src/applications/oauthserver/query/PhabricatorOAuthClientAuthorizationQuery.php
	M			src/applications/oauthserver/storage/PhabricatorOAuthServerAccessToken.php