Paths

Table of Contentst

Begin cleaning up OAuth scope handling
60133b6fa5d5
Actions

Description

Begin cleaning up OAuth scope handling

Summary:
Ref T7303. OAuth scope handling never got fully modernized and is a bit of a mess.

Also introduce implicit "ALWAYS" and "NEVER" scopes.

Always give tokens access to meta-methods like conduit.getcapabilities and conduit.query. These do not expose user information.

Test Plan:

Used a token to call user.whoami.
Used a token to call conduit.query.
Used a token to try to call user.query, got rebuffed.

Reviewers: chad

Reviewed By: chad

Maniphest Tasks: T7303

Differential Revision: https://secure.phabricator.com/D15593

Details

Provenance

epriestley	Authored on Apr 3 2016, 3:25 PM
epriestley	Pushed on Apr 4 2016, 4:11 PM

Reviewer

chad

Differential Revision

D15593: Begin cleaning up OAuth scope handling

Parents

rP694a8543d809: Modernize some OAuth Server code

Branches

Unknown

Tags

Unknown

Tasks

T7303: Provide OAuth access to Conduit

Build Status

Buildable 11480
Build 14321: Run Core Tests

Event Timeline

epriestley committed rP60133b6fa5d5: Begin cleaning up OAuth scope handling (authored by epriestley).Apr 4 2016, 4:11 PM

epriestley added a task: T7303: Provide OAuth access to Conduit.

Harbormaster completed building B11480: rP60133b6fa5d5: Begin cleaning up OAuth scope handling.Apr 4 2016, 4:12 PM

Changes (11)

Path

Size

src/

applications/

conduit/

call/

ConduitCall.php

controller/

PhabricatorConduitAPIController.php

PhabricatorConduitConsoleController.php

method/

ConduitAPIMethod.php

ConduitGetCapabilitiesConduitAPIMethod.php

ConduitQueryConduitAPIMethod.php

oauthserver/

PhabricatorOAuthServer.php

PhabricatorOAuthServerScope.php

controller/

PhabricatorOAuthServerTokenController.php

query/

PhabricatorOAuthClientAuthorizationQuery.php

storage/

PhabricatorOAuthServerAccessToken.php

rP60133b6fa5d5

View Options

src/applications/conduit/call/ConduitCall.php

View Options

src/applications/conduit/controller/PhabricatorConduitAPIController.php

View Options

src/applications/conduit/controller/PhabricatorConduitConsoleController.php

View Options

src/applications/conduit/method/ConduitAPIMethod.php

View Options

src/applications/conduit/method/ConduitGetCapabilitiesConduitAPIMethod.php

View Options

src/applications/conduit/method/ConduitQueryConduitAPIMethod.php

View Options

src/applications/oauthserver/PhabricatorOAuthServer.php

View Options

src/applications/oauthserver/PhabricatorOAuthServerScope.php

View Options

src/applications/oauthserver/controller/PhabricatorOAuthServerTokenController.php

View Options

src/applications/oauthserver/query/PhabricatorOAuthClientAuthorizationQuery.php

View Options

src/applications/oauthserver/storage/PhabricatorOAuthServerAccessToken.php

Begin cleaning up OAuth scope handling60133b6fa5d5Actions

Description

Details

Event Timeline

Changes (11)

rP60133b6fa5d5

src/applications/conduit/call/ConduitCall.php

src/applications/conduit/controller/PhabricatorConduitAPIController.php

src/applications/conduit/controller/PhabricatorConduitConsoleController.php

src/applications/conduit/method/ConduitAPIMethod.php

src/applications/conduit/method/ConduitGetCapabilitiesConduitAPIMethod.php

src/applications/conduit/method/ConduitQueryConduitAPIMethod.php

src/applications/oauthserver/PhabricatorOAuthServer.php

src/applications/oauthserver/PhabricatorOAuthServerScope.php

src/applications/oauthserver/controller/PhabricatorOAuthServerTokenController.php

src/applications/oauthserver/query/PhabricatorOAuthClientAuthorizationQuery.php

src/applications/oauthserver/storage/PhabricatorOAuthServerAccessToken.php

Begin cleaning up OAuth scope handling
60133b6fa5d5
Actions