Comments (5)
lepture
commented on May 18, 2024
1
Thanks for your report. I believe it is a typo, the grant_type should be client_credentials, not client_credential. I will fix it asap.
from authlib.
lepture
commented on May 18, 2024
1
Fixed.
from authlib.
jperras
commented on May 18, 2024
The current workaround is pretty simple: I simply set the pluralized config valueOAUTH2_EXPIRES_CLIENT_CREDENTIALS, which does get picked up and used for the expiration time of the client credential grant.
The issue, as described above, is that the currently specified default in the code base is not being used, and if you change the default bearer token expiration time then the default client credential grant expiration time will pick up the same value as a result.
from authlib.
jperras
commented on May 18, 2024
If the grant type should be client_credentials, might I suggest also changing the documentation to reflect that the config variable name should be OAUTH2_EXPIRES_CLIENT_CREDENTIALS to match as well?
from authlib.
jperras
commented on May 18, 2024
Thanks!
from authlib.
Related Issues (20)
- JWTBearerTokenGenerator.generate - can not able to generate token with expires_in=0
- JWTBearerTokenValidator don't send parameters now and leeway to claim.validate
- ask to transform inline function "load_key" to method of OpenIDMixin
- Documentation for FastAPI/Starlette for Oauth2 is incorrect/misleading/confusing? HOT 3
- Drop `starlette.config.Config` from the Starlette integration
- Support for OIDC4VC standards
- 1.3.0: sphinx warnings `reference target not found` HOT 3
- 1.3.0: pytest dails in few units HOT 1
- import importlib.metadata missing from authlib.integrations.flask_oauth2.errors.py? HOT 2
- Missing Dependencies (httpx & itsdangerous) HOT 3
- Support async functions in compliance hooks.
- httpx OAuth2 client has incorrect oauth_error_class
- Documentation: Missing OIDC client documentation on custom claims HOT 1
- Session cookie grows indefinitely, results in CSRF Warning. HOT 3
- Have a WSGI integration example
- rfc7519 JsonWebEncryption is initialized with an incorrect list of algorhythms.
- Incorrect check for insecure transport on OAuth1.0
- Have special character encoding be optional
- Quoting (URL-encoding) Base authentication username / password is incorrect
- JWT authentication issue HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from authlib.