You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/misc/migrating-v2-to-v3.rst
+9-9Lines changed: 9 additions & 9 deletions
Original file line number
Diff line number
Diff line change
@@ -28,17 +28,17 @@ The naming of the exposed middlewares has changed to match the OAuth2 _RFC_ more
28
28
Server options
29
29
--------------
30
30
31
-
The following server options can be set when instantiating the OAuth service:
31
+
The following server options can be set when instantiating the OAuth service:
32
32
33
33
* `addAcceptedScopesHeader`: **default true** Add the `X-Accepted-OAuth-Scopes` header with a list of scopes that will be accepted
34
34
* `addAuthorizedScopesHeader`: **default true** Add the `X-OAuth-Scopes` header with a list of scopes that the user is authorized for
35
35
* `allowBearerTokensInQueryString`: **default false** Determine if the bearer token can be included in the query string (i.e. `?access_token=`) for validation calls
36
36
* `allowEmptyState`: **default false** If true, `state` can be empty or not passed. If false, `state` is required.
37
-
* `authorizationCodeLifetime`: **default 300** Default number of milliseconds that the authorization code is active for
38
-
* `accessTokenLifetime`: **default 3600** Default number of milliseconds that an access token is valid for
39
-
* `refreshTokenLifetime`: **default 1209600** Default number of milliseconds that a refresh token is valid for
37
+
* `authorizationCodeLifetime`: **default 300** Default number of seconds that the authorization code is active for
38
+
* `accessTokenLifetime`: **default 3600** Default number of seconds that an access token is valid for
39
+
* `refreshTokenLifetime`: **default 1209600** Default number of seconds that a refresh token is valid for
40
40
* `allowExtendedTokenAttributes`: **default false** Allows additional attributes (such as `id_token`) to be included in token responses.
41
-
* `requireClientAuthentication`: **default true for all grant types** Allow ability to set client/secret authentication to `false` for a specific grant type.
41
+
* `requireClientAuthentication`: **default true for all grant types** Allow ability to set client/secret authentication to `false` for a specific grant type.
42
42
43
43
The following server options have changed behavior in v3.0.0:
44
44
@@ -60,7 +60,7 @@ Model specification
60
60
* `generateAuthorizationCode()` is **optional** and should return a `String`.
61
61
* `generateRefreshToken(client, user, scope)` is **optional** and should return a `String`.
62
62
* `getAccessToken(token)` should return an object with:
63
-
63
+
64
64
* `accessToken` (`String`)
65
65
* `accessTokenExpiresAt` (`Date`)
66
66
* `client` (`Object`), containing at least an `id` property that matches the supplied client
@@ -75,7 +75,7 @@ Model specification
75
75
* `user` (`Object`)
76
76
77
77
* `getClient(clientId, clientSecret)` should return an object with, at minimum:
78
-
78
+
79
79
* `redirectUris` (`Array`)
80
80
* `grants` (`Array`)
81
81
@@ -88,11 +88,11 @@ Model specification
88
88
* `user` (`Object`)
89
89
90
90
* `getUser(username, password)` should return an object:
91
-
91
+
92
92
* No longer requires that `id` be returned.
93
93
94
94
* `getUserFromClient(client)` should return an object:
95
-
95
+
96
96
* No longer requires that `id` be returned.
97
97
98
98
* `grantTypeAllowed()` was **removed**. You can instead:
0 commit comments