micropub-flask-gitea/CHANGELOG.md

51 lines
1.6 KiB
Markdown
Raw Normal View History

# Change Log
All notable changes to this project will be documented in this file.
2016-03-18 19:28:00 +00:00
## 0.2.7 - 2016-03-18
### Changed
- Allow all 2xx responses to indicate success.
## 0.2.6 - 2016-03-18
### Changed
- Support discovering endpoints from HTTP Link headers in addition
to searching the body of the page.
## 0.2.5 - 2016-01-27
### Changed
- Bugfix: authorization_handler was burning the auth code by
delegating to authentication_handler. This broke authorization for
endpoints that only allow codes to be used once. A side effect of
this is that authorization no longer falls back to authentication
when there is no token_endpoint or the token_endpoint request fails.
## 0.2.4 - 2015-12-13
### Changed
- Replace `next_url` parameter with more general `state`
(though we're keeping `next_url` for backward compatibility for now)
2015-06-22 06:40:44 +01:00
## 0.2.3
### Changed
2015-06-22 06:40:44 +01:00
- Fix; fall back to indieauth.com when no authorization_endpoint is
specified (previous fix broke this).
## 0.2.2
### Changed
- Fix vulnerability; re-discover the authorization_endpoint and
token_endpoint at each stage in the flow. Prevents a buggy or
malicious authorization_endpoint from giving you credentials for
another user's domain name.
## 0.2.1 - 2015-02-07
### Changed
- Updated setup.py, no functional changes
## 0.2.0 - 2015-02-07
### Changed
- Started keeping a changelog!
- Added a separate 'authenticate' flow to provide explicit support for
calling out to indieauth without requesting any sort of access
token.
- Redirect_url is now determined automatically based on the
authenticated_handler or authorized_handler annotations