HomePhabricator

Begin cleaning up OAuth scope handling

Authored by epriestley on Apr 3 2016, 3:25 PM.

Description

Begin cleaning up OAuth scope handling

Summary:
Ref T7303. OAuth scope handling never got fully modernized and is a bit of a mess.

Also introduce implicit "ALWAYS" and "NEVER" scopes.

Always give tokens access to meta-methods like conduit.getcapabilities and conduit.query. These do not expose user information.

Test Plan:

  • Used a token to call user.whoami.
  • Used a token to call conduit.query.
  • Used a token to try to call user.query, got rebuffed.

Reviewers: chad

Reviewed By: chad

Maniphest Tasks: T7303

Differential Revision: https://secure.phabricator.com/D15593

Details

Committed
epriestleyApr 4 2016, 4:11 PM
Pushed
epriestleyApr 4 2016, 4:11 PM
Reviewer
chad
Differential Revision
D15593: Begin cleaning up OAuth scope handling
Parents
rP694a8543d809: Modernize some OAuth Server code
Branches
Unknown
Tags
Unknown
Tasks
T7303: Provide OAuth access to Conduit
Build Status
Buildable 11480
Build 14321: Run Core Tests