Wed Sep 5 18:05:41 PDT 2007 Kevin Turner tagged openid-2.0-draft12 Wed Sep 5 16:48:08 PDT 2007 http://j3h.us/ * Use a common function to render XRDS documents for the server and the consumer Wed Sep 5 16:30:52 PDT 2007 http://j3h.us/ * Only allow the example server to return positive assertions for the URL that it controls Wed Sep 5 16:29:57 PDT 2007 http://j3h.us/ * Remove the URL mapping for generic identity pages, since the server is not serving them Wed Sep 5 16:28:44 PDT 2007 http://j3h.us/ * Add a test for cancel in djopenid processTestResult Wed Sep 5 15:23:08 PDT 2007 http://j3h.us/ * Add relying party verification support to the Django example consumer Wed Sep 5 15:23:02 PDT 2007 http://j3h.us/ * whitespace Wed Sep 5 15:20:45 PDT 2007 http://j3h.us/ * Fix the extraction of return_to URLs for relying party verification Wed Sep 5 14:42:13 PDT 2007 http://j3h.us/ * Remove sendResponse decorator We were using it to do basically the same thing that django.views.generic.simple.direct_to_template does. Wed Sep 5 14:03:34 PDT 2007 Kevin Turner * examples/djopenid/server: added RP verification Wed Sep 5 14:02:41 PDT 2007 Kevin Turner * server.trustroot.verifyReturnTo: verifyReturnTo needed a return_to Wed Sep 5 14:00:26 PDT 2007 Kevin Turner * yadis.services.getServiceEndpoints: catch XRDSError, transform it to a DiscoveryFailure Tue Sep 4 16:54:55 PDT 2007 Josh Hoyt * Make the Django example behave when run outside the root of a webserver. Tue Sep 4 16:04:44 PDT 2007 http://j3h.us/ * Remove hard-coded URLs from the Django example Fri Aug 31 16:49:10 PDT 2007 Kevin Turner tagged openid-2.0-draft12 Fri Aug 31 16:34:00 PDT 2007 Kevin Turner * consumer.consumer: OpenID 2 draft 12 fragment handling Fri Aug 31 15:22:58 PDT 2007 Kevin Turner * add docstring Fri Aug 31 15:11:04 PDT 2007 Kevin Turner * consumer.consumer: put more debugging information in TypeURIMismatch Tue Aug 28 13:44:41 PDT 2007 Kevin Turner * cryputil: s/OSError/IOError/ on /dev/urandom. Fri Aug 31 14:55:31 PDT 2007 http://j3h.us/ * Remove fragments as part of normalization Fri Aug 31 12:05:01 PDT 2007 http://j3h.us/ * whitespace Wed Aug 29 16:34:34 PDT 2007 http://j3h.us/ * Better error message for example server assertion Wed Aug 29 15:56:15 PDT 2007 http://j3h.us/ * Use socket.fqdn for test_examples Wed Aug 29 15:25:57 PDT 2007 http://j3h.us/ * Spec draft 12 compliance: use www in place of * for realm verification Between drafts 11 and 12, the specified behaviour was to use the return-to URL's domain. Wed Aug 29 12:41:43 PDT 2007 http://j3h.us/ * Add permission-fixing script Wed Aug 29 12:15:35 PDT 2007 http://j3h.us/ * flow long line Wed Aug 22 14:42:22 PDT 2007 Josh Hoyt * Added builddiscover.py to build discovery test files from our test suite Mon Aug 27 15:14:53 PDT 2007 Kevin Turner * resolve conflicts caused by late merging of the 1.2.0 release tag Fri Dec 8 13:25:20 PST 2006 Kevin Turner * Set version number to 1.2.0 Fri Dec 8 11:18:14 PST 2006 Kevin Turner * drop obsolete epydoc parameter Wed Jul 4 16:41:30 PDT 2007 Kevin Turner * consumer.consumer.GenericConsumer._discoverAndVerify: add missing self. (Oops.) Sun Jul 1 22:21:23 PDT 2007 Kevin Turner * consumer.consumer.GenericConsumer._verifyDiscoveredServices: split from _discoverAndVerify [async] and yes, there are far, far too many things with "verify" and "discovery" in the name. Sun Jul 1 20:33:42 PDT 2007 Kevin Turner * consumer.consumer.GenericConsumer._extractSupporedAssociationType: factored out from _negotiateAssociation [async] Sun Jul 1 17:37:12 PDT 2007 Kevin Turner * consumer.consumer.GenericConsumer._negotiateAssociation docstring It says it propagates exceptions from the fetcher, but the underlying _requestAssociation catches HTTPFetchingError. Sun Jul 1 14:44:48 PDT 2007 Kevin Turner * consumer.consumer.SuccessResponse.__eq__: added Sun Jul 1 14:43:22 PDT 2007 Kevin Turner * consumer.consumer.GenericConsumer: docstring additions Sat Jun 30 21:32:58 PDT 2007 Kevin Turner * openid.consumer.consumer._httpResponseToMessage: split from makeKVPost [async] Mon Jun 25 17:03:30 PDT 2007 Josh Hoyt * Allow all-caps constants in the PyLint config Mon Jun 25 17:00:41 PDT 2007 Josh Hoyt * Added Provider Authentication Policy implementation It needs unit tests. It was implemented against version 1.0, draft 1 Mon Jun 25 16:56:10 PDT 2007 Josh Hoyt * Add openid.extensions package to hold bundled OpenID extensions Wed Sep 27 09:38:02 PDT 2006 cygnus@janrain.com * Fixed psycopg[2] PostgreSQL store blobEncode Fri Jun 22 21:41:29 PDT 2007 Kevin Turner tagged release-2.0.1 Fri Jun 22 21:41:13 PDT 2007 Kevin Turner * Set version number to 2.0.1 Fri Jun 22 21:25:08 PDT 2007 Kevin Turner * examples/server.py ServerHandler.isAuthorized: add missing 'id/' to url comparsion thanks to Frederic Pauget for finding this. Fri Jun 22 21:17:26 PDT 2007 Kevin Turner * examples/server.py: make assumption that urls match explicit with an assert. test.test_examples: use 'localhost' in the endpoint base URL, not '127.0.0.1' Fri Jun 22 20:02:49 PDT 2007 Kevin Turner * openid.sreg: update documentation and __all__ to match current API thanks to Boris Erdmann for catching this. Fri Jun 22 20:01:07 PDT 2007 Kevin Turner * examples/server.py: add /id to 'logged in as' link Fri Jun 22 19:26:43 PDT 2007 Kevin Turner * NEWS: can't say "OpenID 2.0" yet, it's still a draft spec. Fri Jun 22 19:18:06 PDT 2007 Kevin Turner * rsplit doesn't exist in python2.3 Fri Jun 22 18:51:03 PDT 2007 Kevin Turner * admin/runtests: invoke djopenid example tests examples are not in a package in sys.path; beware the import hacking. Fri Jun 22 18:44:41 PDT 2007 Kevin Turner * examples djopenid.server.tests: added test for processTrustResult Fri Jun 22 18:41:39 PDT 2007 Kevin Turner * examples djopenid.server.views.processTrustResult: fix sreg call Fri Jun 22 16:25:42 PDT 2007 Kevin Turner * admin/runtests: add test_examples Fri Jun 22 16:22:47 PDT 2007 Kevin Turner * examples/server.py: add missing request reference to addSRegResponse Fri Jun 22 16:21:15 PDT 2007 Kevin Turner * tests.test_examples: cleanup/whitespace Wed Jun 20 16:42:13 PDT 2007 Kevin Turner * test.test_examples: use response headers instead of installing a custom RedirectHandler (I found where they were hiding.) Wed Jun 20 16:22:08 PDT 2007 Kevin Turner * openid.test.test_examples: added to test examples/server.py. Depends on Twill. Super-hacky at the moment, needs work to reduce the number of private twill and mechanize attributes it abuses. Tue Jun 19 15:07:56 PDT 2007 Josh Hoyt * Whitespace Mon Jun 18 16:46:29 PDT 2007 Josh Hoyt * Added returnToVerified method of CheckIDRequest Passes the appropriate data to trustroot.verifyReturnTo Thu Jun 14 13:39:44 PDT 2007 Josh Hoyt * Added support for httplib2 fetcher httplib2 supports caching. Also, a little bit of refactoring of the fetcher test Thu Jun 14 13:38:54 PDT 2007 Josh Hoyt * whitespace Thu Jun 14 13:36:04 PDT 2007 Josh Hoyt * Whitespace Thu Jun 14 13:34:48 PDT 2007 Josh Hoyt * Remove unit test helper module It was only used in two test modules, and it wasn't really helping anymore. Thu Jun 7 16:48:48 PDT 2007 Josh Hoyt * Added function to openid.yadis.etxrd that parses the Expires date out of an XRD Wed Jun 6 15:10:45 PDT 2007 Josh Hoyt * Completed realm verification Wed May 30 17:07:37 PDT 2007 Josh Hoyt * Added relying party discovery URL building to trustroot Wed May 30 16:53:10 PDT 2007 Josh Hoyt * Added __all__ to openid.consumer.discover Fri May 25 15:28:29 PDT 2007 Kevin Turner * consumer.consumer.GenericConsumer.complete: dispatch mode-specific logic to individual methods because I need to override one of them and don't want to duplicate all of it. Fri May 25 14:02:15 PDT 2007 Kevin Turner * consumer.discover.OpenIDServiceEndpoint.from*: docstrings Fri May 25 13:00:09 PDT 2007 Kevin Turner * consumer.discover.discoverYadis: simplify a bit, use .fromXRDS Fri May 25 12:52:26 PDT 2007 Kevin Turner * consumer.discover.OpenIDServiceEndpoint.fromXRDS, fromDiscoveryResult: added siblings for .fromHTML() Fri May 11 15:25:37 PDT 2007 Kevin Turner tagged release-2.0.0 Fri May 11 15:25:21 PDT 2007 Kevin Turner * Set version number to 2.0.0 Fri May 11 14:24:05 PDT 2007 Kevin Turner * store.*: remove getExpired [#3667] Fri May 11 14:18:46 PDT 2007 Kevin Turner * test.test_fetchers.failUnlessResponseExpected: provide more information on failure Wed May 9 19:33:05 PDT 2007 Kevin Turner * store.interface.OpenIDStore.cleanupAssociations,cleanup: added Wed May 9 19:31:44 PDT 2007 Kevin Turner * store.sqlstore.SQLStore.cleanupAssociations: added Wed May 9 19:05:42 PDT 2007 Kevin Turner * store.filestore.FileOpenIDStore.cleanupAssociations: added Wed May 9 19:03:03 PDT 2007 Kevin Turner * store.memstore.MemoryStore.cleanupAssociations: added Wed May 9 18:39:54 PDT 2007 Kevin Turner * test.storetest: add test for cleanupAssociations() Wed May 9 18:14:11 PDT 2007 Kevin Turner * store.filestore.FileStore._allAssocs: filename must include directory Wed May 9 18:03:13 PDT 2007 Kevin Turner * store.interface.OpenIDStore.cleanupNonces: simpifly docstring Wed May 9 17:57:20 PDT 2007 Kevin Turner * store.interface.OpenIDStore.getAssociation: change docstring to match test storetest says: # More recent, and expires earlier than assoc2 or assoc. Make sure # that we're picking the one with the latest issued date and not # taking into account the expiration. and that seems like as reasonable a policy as the other. Wed May 9 17:46:37 PDT 2007 Kevin Turner * store.filestore.FileOpenIDStore._allAssocs: log error instead of silently passing. this except/pass was masking serious bugs. Wed May 9 15:26:55 PDT 2007 Kevin Turner * test.storetest: more comments Wed May 9 15:24:02 PDT 2007 Kevin Turner * store.sqlstore.SQLStore.cleanupNonces: added Wed May 9 15:14:14 PDT 2007 Kevin Turner * openid.filestore.FileOpenIDStore.cleanupNonces: added Wed May 9 15:08:04 PDT 2007 Kevin Turner * store.memstore.MemoryStore.cleanupNonces: added Wed May 9 15:01:46 PDT 2007 Kevin Turner * store.interface.OpenIDStore.cleanupNonces: added Wed May 9 14:58:48 PDT 2007 Kevin Turner * store.memstore: rejigger SKEW import to always use current value of nonce.SKEW (red flag: globals are bad) Wed May 9 14:53:51 PDT 2007 Kevin Turner * docstring nits Wed May 9 13:09:44 PDT 2007 Kevin Turner * store.nonce.NONCE_CHARS: s/letters/ascii_letters/ Wed May 9 12:54:47 PDT 2007 Kevin Turner * test.storetest: remove unused allowed_nonce Wed May 9 12:44:03 PDT 2007 Kevin Turner * openid.server.server.OpenIDResponse.addExtension: more docstring Wed May 9 12:43:08 PDT 2007 Kevin Turner * examples/consumer.py: remove unused import Tue May 8 15:39:54 PDT 2007 cygnus@janrain.com * Remove duplicate test Tue May 8 15:30:59 PDT 2007 cygnus@janrain.com * Encode indirect OpenID 2 responses as POSTs when length exceeds OpenID 1 limit Mon May 7 15:56:44 PDT 2007 cygnus@janrain.com * Fix rogue name in example consumer Mon May 7 12:32:16 PDT 2007 cygnus@janrain.com * Removed sendSRegFields, added OpenIDResponse.addExtension Mon May 7 12:29:09 PDT 2007 cygnus@janrain.com * Docstring nit Mon Apr 9 15:27:31 PDT 2007 cygnus@janrain.com * Add eu to trustroot TLD list Fri May 4 13:57:28 PDT 2007 Kevin Turner tagged release-2.0.0-rc3b Fri May 4 13:57:16 PDT 2007 Kevin Turner * Set version number to 2.0.0-rc3b Fri May 4 13:52:28 PDT 2007 Kevin Turner * setup.py: set canonical download URL to use bz2 archive Fri May 4 13:44:14 PDT 2007 Kevin Turner * openid.oidutil.elementtree_modules: remove lxml Jonathan says: "It looks like lxml should be removed from elementtree_modules. I can't find any evidence that it has supported or will support XMLTreeBuilder." Thu May 3 18:24:47 PDT 2007 Kevin Turner tagged release-2.0.0-rc3 Thu May 3 18:24:35 PDT 2007 Kevin Turner * Set version number to 2.0.0-rc3 Thu May 3 15:37:32 PDT 2007 Kevin Turner * examples/djopenid/templates/server/xrds.html: update 2.0 Type URI, add 1.0 Type. Thu May 3 15:36:38 PDT 2007 Kevin Turner * examples/server.py: add /signon/1.0 type to user XRDS Thu May 3 15:02:47 PDT 2007 Kevin Turner * consumer.consumer: remove unused imports time and kvform Thu May 3 16:21:52 PDT 2007 Josh Hoyt * Complete implementation, up to draft 5 fetch and store, request and response, with decent (but not perfect) test coverage, pylint clean Thu May 3 16:10:22 PDT 2007 Josh Hoyt * pylint cleanups for openid/sreg.py Thu May 3 15:53:14 PDT 2007 Josh Hoyt * Call the Extension constructor from the SRegRequest constructor Thu May 3 15:42:54 PDT 2007 Josh Hoyt * Disable spurious pylint warnings in sreg module Thu May 3 15:42:10 PDT 2007 Josh Hoyt * Wrap long line Thu May 3 15:39:19 PDT 2007 Josh Hoyt * Added pylint configuration file It mostly matches our coding conventions. Most things have tons of errors. See openid/ax.py for an example of silencing a warning. Thu May 3 15:12:33 PDT 2007 Josh Hoyt * Added test clarifying that the wildcard is only in the authority section of the trust root Wed May 2 17:09:52 PDT 2007 Kevin Turner * test.storetest.testStore: test useNonce for timestamp checking Wed May 2 16:57:00 PDT 2007 Kevin Turner * store.sqlstore.SQLStore.txn_useNonce: check timestamp Wed May 2 16:51:32 PDT 2007 Kevin Turner * store.filestore.FileOpenIDStore.useNonce: add timestamp check Wed May 2 16:45:23 PDT 2007 Kevin Turner * store.interface.OpenIDStore.useNonce: should return False if the timestamp is not current. Wed May 2 16:42:35 PDT 2007 Kevin Turner * store.memstore: remove unused cryptutil import Wed May 2 16:39:37 PDT 2007 Kevin Turner * store.memstore: add nonce timestamp checking Wed May 2 17:00:47 PDT 2007 Kevin Turner * test.storetest: no import * Wed May 2 16:54:45 PDT 2007 Kevin Turner * store.sqlstore: remove unused cryptutil import Wed May 2 16:50:54 PDT 2007 Kevin Turner * store.filestore.FileOpenIDStore.clean: fix bad reference to checkTimestamp Wed May 2 16:41:52 PDT 2007 Kevin Turner * store.memstore: add module docstring Wed May 2 14:17:24 PDT 2007 Kevin Turner * NEWS: mention store API changes more people have custom stores than I thought. Wed May 2 14:12:50 PDT 2007 Kevin Turner * store.interface: note removal of isDumb in @change notes Wed May 2 13:56:47 PDT 2007 Kevin Turner * examples/README: correct example ID URL Mon Apr 16 16:04:51 PDT 2007 cygnus@janrain.com * Do not send openid.ns values in OpenID 1 messages Mon Apr 16 14:16:33 PDT 2007 cygnus@janrain.com * Remove stale global registered_aliases Mon Apr 16 14:16:08 PDT 2007 cygnus@janrain.com * Fix simple registration API to use toMessage() Thu Apr 12 17:14:38 PDT 2007 Kevin Turner * examples/consumer.py: remove reference to HTTPFetchingError and openid.yadis these may be treated as implementation details the caller doesn't need to know about. Thu Apr 12 17:13:15 PDT 2007 Kevin Turner * update copyright Tue Apr 3 14:57:32 PDT 2007 Kevin Turner tagged release-2.0.0-rc2 Tue Apr 3 14:57:16 PDT 2007 Kevin Turner * Set version number to 2.0.0-rc2 Thu Apr 5 14:53:47 PDT 2007 cygnus@janrain.com * Fix reference bug in example server Thu Apr 5 14:50:47 PDT 2007 cygnus@janrain.com * Use type URI constants to generate XRDS Wed Apr 4 16:22:32 PDT 2007 Josh Hoyt * Added initial attribute exchange fetch implementation The tests are not finished. There are a couple of documentation issues. It's not been tried actually attached to an OpenID authentication request. But I think it's overall OK. Tue Apr 3 13:59:48 PDT 2007 Kevin Turner * consumer.discover.OpenIDServiceEndpoint.supportsType: clarification Tue Apr 3 13:55:36 PDT 2007 Kevin Turner * test.test_consumer.IDPDrivenTest: update mock verifyDiscoveryResults (the sig of the real implementation changed) Tue Apr 3 13:51:13 PDT 2007 Kevin Turner * openid/test/data/test_discover/yadis_idp_last.xml: remove unused test data file Tue Apr 3 13:49:52 PDT 2007 Kevin Turner * test.test_consumer.IDPDrivenTest.setUp: remove obsolete type_uri This value is outdated and the test still passed. Turns out the tests still pass if I remove it entirely. Tue Apr 3 13:48:20 PDT 2007 Kevin Turner * test.test_consumer.TestDiscoveryVerification: fix OPENID2_NS/TYPE confusion These tests were still passing, but they were passing because failUnlessRaises(ProtocolError) was too broad. Tue Apr 3 12:28:56 PDT 2007 Kevin Turner * openid.message, openid.consumer.discover: update 2.0 URIs for spec rev 295 Also correct a number of places in the code that confused OPENID_2_0_TYPE and OPENID2_NS. These used to be the same string, but they are no longer. Mon Apr 2 17:07:13 PDT 2007 Kevin Turner * openid.message.OPENID1_NS: 'signon', not 'sso' This agrees with spec rev 294, LJ yadis, 2idi XRDS, and PIP. Not sure how we got openid.net/sso/1.0 in there. Mon Apr 2 16:39:48 PDT 2007 Kevin Turner * examples/consumer: SetupNeededResponse.setup_url is None in OpenID 2.0. Fri Mar 30 18:15:07 PDT 2007 Kevin Turner tagged release-2.0.0-rc1 Fri Mar 30 18:06:57 PDT 2007 Kevin Turner * MANIFEST.in: add examples/*.html -- needed for django templates Fri Mar 30 17:44:09 PDT 2007 Kevin Turner * MANIFEST.in: add contrib/ Fri Mar 30 17:36:56 PDT 2007 Kevin Turner * Set version number to 2.0.0-rc1 Fri Mar 30 17:35:22 PDT 2007 Kevin Turner * MANIFEST.in: add background-associations.txt Fri Mar 30 17:27:47 PDT 2007 Kevin Turner * NEWS: updated for 2.0 Fri Mar 30 15:38:02 PDT 2007 Josh Hoyt * Make server example send an sreg response if one is requested It only returns the nickname field, but I think that's good enough to get the point across. Also: * Fix username "id/" mangling bug * Fix behaviour of approve once Fri Mar 30 15:35:04 PDT 2007 Josh Hoyt * Fix sreg display (to match sreg api change) Fri Mar 30 14:53:57 PDT 2007 Josh Hoyt * Updated examples/README to point to the Django code and explain the scope of the examples a little better Fri Mar 30 15:37:00 PDT 2007 Kevin Turner * README: updated with requirements, fixes #2291. Fri Mar 30 15:33:09 PDT 2007 Kevin Turner * INSTALL - removed, see README. Wasn't enough content to worth splitting up in to two files. Fri Mar 30 13:41:15 PDT 2007 Kevin Turner * fetchers: add user-agent Fri Mar 30 13:00:57 PDT 2007 Kevin Turner * consumer.consumer: Update the store overview, talk about sessions. Fixes #3074. Thu Mar 29 14:05:21 PDT 2007 Josh Hoyt * refactoring and documentation Very minor refactoring. As suggested by pylint Thu Mar 29 13:20:14 PDT 2007 Josh Hoyt * Added test for adding an extension to an auth request Thu Mar 29 12:51:59 PDT 2007 Josh Hoyt * Unit test for _discoverAndVerify in consumer Thu Mar 29 12:50:19 PDT 2007 Josh Hoyt * Unit test for failure when calling begin with anonymous set to True Thu Mar 29 12:17:27 PDT 2007 Josh Hoyt * Make discovery be performed by a method on the consumer This allows the discovery method to be safely overridden (for unit testing) Tue Mar 27 19:07:56 PDT 2007 Josh Hoyt * Added documentation for negotiator instance variable of the Server Tue Mar 27 17:27:48 PDT 2007 Josh Hoyt * Added documentation and API for controlling consumer association negotiation Tue Mar 27 17:02:14 PDT 2007 Josh Hoyt * Fixed the API for the store interface's "useNonce" method Tue Mar 27 16:49:00 PDT 2007 Josh Hoyt * Fix documentation cross reference for AuthRequest.redirectURL Tue Mar 27 16:29:53 PDT 2007 Josh Hoyt * Added log message every time that 'invalidate_handle' is received by the consumer It's not an error condition, but it should be so rare that you want to know that it's happening when it happens. Tue Mar 27 16:18:17 PDT 2007 Josh Hoyt * Added comment to Django consumer code about logging the failure reason in a real application Mon Mar 26 16:19:11 PDT 2007 Josh Hoyt * Documentation for openid.association negotiator stuff Tue Mar 27 14:06:51 PDT 2007 cygnus@janrain.com * Add OpenID library failure message to template Tue Mar 27 14:06:35 PDT 2007 cygnus@janrain.com * Make settings module warn and exit if OpenID library cannot be imported Tue Mar 27 14:06:02 PDT 2007 cygnus@janrain.com * Remove handling of HTTPFetchingError Fri Mar 23 15:03:58 PDT 2007 Josh Hoyt * Include more test data files in the manifest *really* fixes #2308 (confirmed by unpacking the tarball and running the tests) Fri Mar 23 14:59:21 PDT 2007 Josh Hoyt * Add test data directory to the setuptools MANIFEST.in This includes the test data in the distribution tarball. Fixes #2308 Fri Mar 23 14:12:01 PDT 2007 Josh Hoyt * update consumer example to match current sreg API Fri Mar 23 14:08:05 PDT 2007 Josh Hoyt * typo fix for sreg documentation Fri Mar 23 14:06:50 PDT 2007 Josh Hoyt * Documentation for oidutil.appendArgs Fri Mar 23 14:04:29 PDT 2007 Josh Hoyt * User documentation for oidutil.log() Fixes #3009 Wed Mar 21 17:03:21 PDT 2007 Josh Hoyt * Implement signed-fields-only operation for SRegResponse It now implements fromSuccessResponse instead of fromOpenIDResponse Thu Mar 22 15:23:16 PDT 2007 cygnus@janrain.com * Update djopenid README Wed Mar 21 16:30:46 PDT 2007 Josh Hoyt * Use None instead of DumbStore to trigger stateless operation * added (some) tests for stateless operation * removed DumbStore * Started to pyunitify storetest Mon Mar 19 17:07:49 PDT 2007 Josh Hoyt * Wording in docs for openid.store.dumbstore.DumbStore.useNonce Wed Mar 21 16:13:57 PDT 2007 cygnus@janrain.com * Update djopenid README Wed Mar 21 16:11:48 PDT 2007 cygnus@janrain.com * Added default view for djopenid Wed Mar 21 13:19:54 PDT 2007 cygnus@janrain.com * Remove unnecessary return Wed Mar 21 13:18:38 PDT 2007 cygnus@janrain.com * Fix POST redirect template in django example consumer Wed Mar 21 13:14:20 PDT 2007 cygnus@janrain.com * Add convention info and fix variable names Wed Mar 21 13:06:42 PDT 2007 cygnus@janrain.com * Django example server tweaks Wed Mar 21 13:05:48 PDT 2007 cygnus@janrain.com * Django example server docs Wed Mar 21 12:53:20 PDT 2007 cygnus@janrain.com * Update django examples README (2) Wed Mar 21 12:51:48 PDT 2007 cygnus@janrain.com * Update django examples README Wed Mar 21 12:48:17 PDT 2007 cygnus@janrain.com * Augment django example server with idSelect support and sreg usage Wed Mar 21 12:47:47 PDT 2007 cygnus@janrain.com * Update docs and sendSRegFields in openid.sreg Wed Mar 21 12:00:53 PDT 2007 cygnus@janrain.com * Change server reference to op_endpoint to avoid pickling and copying problems Wed Mar 21 11:48:18 PDT 2007 cygnus@janrain.com * Added django example server code Tue Mar 20 15:53:03 PDT 2007 cygnus@janrain.com * Fix django consumer import Tue Mar 20 18:21:25 PDT 2007 Kevin Turner * store.filestore: s/exception[0]/exception.errno/ Because at least on Windows, args[0] is a windows error code, not a POSIX errno. Thanks to GabeW for catching this. Tue Mar 20 15:24:32 PDT 2007 cygnus@janrain.com * Update comment in djopenid.util Tue Mar 20 15:19:07 PDT 2007 cygnus@janrain.com * Add django example code README Tue Mar 20 15:18:59 PDT 2007 Kevin Turner * consumer.consumer.__doc__: remove documentation describing session as optional Tue Mar 20 15:17:49 PDT 2007 Kevin Turner * consumer.consumer.__doc__: remove reference to user_setup_url Tue Mar 20 15:15:04 PDT 2007 Kevin Turner * consumer.consumer.__doc__: prefer the term "OpenID provider" over "server." Tue Mar 20 15:13:20 PDT 2007 Kevin Turner * admin/makedoc: discard flags not recognized by new epydoc, use find instead of listing all .py files Tue Mar 20 15:11:26 PDT 2007 cygnus@janrain.com * Improve format of auto-generated namespace aliases Tue Mar 20 15:09:01 PDT 2007 cygnus@janrain.com * Fix message and extension handling of sreg namespace and alias Tue Mar 20 15:07:56 PDT 2007 cygnus@janrain.com * Added docs to example django consumer Tue Mar 20 15:07:22 PDT 2007 cygnus@janrain.com * Added simple registration functionality to django example consumer Tue Mar 20 12:21:58 PDT 2007 cygnus@janrain.com * Add submit button to django example consumer form Tue Mar 20 12:15:40 PDT 2007 cygnus@janrain.com * Complete example Django consumer Mon Mar 19 14:39:48 PDT 2007 cygnus@janrain.com * Added initial Django example code tree Mon Mar 19 16:25:52 PDT 2007 Josh Hoyt * Make elementtree importing in openid.yadis.etxrd more robust * Use the importElementTree function in oidutil * Handle exceptions from any kind of elementtree library Mon Mar 19 16:23:07 PDT 2007 Josh Hoyt * Fix the warning-silencing code in test_discover to reference the correct line number Mon Mar 19 14:14:32 PDT 2007 Josh Hoyt * Simple-registration-related updates to the example consumer and server Mon Mar 19 12:29:40 PDT 2007 Josh Hoyt * Add __nonzero__ method on sreg response Makes it evaluate as False if no registration data was received in the response Mon Mar 19 11:41:02 PDT 2007 Josh Hoyt * Whitespace in server example Fri Mar 16 17:18:09 PDT 2007 Josh Hoyt * Make sure that everything has the expected encoding when doing kvform generation and parsing Previously, we were not decoding the pairs when parsing KVForm. Fri Mar 16 17:02:41 PDT 2007 Josh Hoyt * Silence warnings when converting unicode to string in kvform Fri Mar 16 16:28:36 PDT 2007 Josh Hoyt * Update simple registration namespace handling code so that it will not silently recover from highly unlikely scenarios When the 'sreg' alias is in use, but the sreg namespaces have not been found, it will always fail, since this likely indicates that the namespace URI has been mistyped. Thu Mar 15 17:10:38 PDT 2007 Josh Hoyt * Added basestring Python 2.2 compatibility Thu Mar 15 16:54:07 PDT 2007 Josh Hoyt * Added simple registration module with request and response objects Thu Mar 15 16:46:37 PDT 2007 Josh Hoyt * Add Python <2.4 URL parsing compatibility for URLs with no path Tue Mar 13 10:36:14 PDT 2007 Josh Hoyt * Fixed bug for matching trust_roots with no path against return_to URLs with no path Wed Mar 7 21:02:06 PST 2007 Kevin Turner * [#2290] consumer.AuthRequest: docstrings for getMessage and redirectURL. Wed Mar 7 20:26:55 PST 2007 Kevin Turner * consumer.Consumer.begin: document "anonymous" parameter Fri Mar 2 16:13:43 PST 2007 cygnus@janrain.com * Call auth_req.setAnonymous instead of setting attribute Wed Feb 28 20:40:40 PST 2007 Kevin Turner * store.sqlstore: add example to docstring of a one-liner for store creation This should really probably be a script and/or incorporated into the install documentation. Wed Feb 28 20:36:48 PST 2007 Kevin Turner * [#1041] NEWS: Add new Upgrading from 1.2 section referencing upgrade-store script. Wed Feb 28 19:50:20 PST 2007 Kevin Turner * openid/test/data/openid-1.2-consumer-sqlitestore.db: added, for testing upgrade script Thu Feb 15 16:24:28 PST 2007 Kevin Turner * [async] openid.yadis.discover.discover: factor out some logic to whereIsYadis() Thu Feb 15 15:27:43 PST 2007 Kevin Turner * openid.test.test_yadis_discover: use dir and getattr instead of __dict__ Thu Feb 15 14:37:16 PST 2007 Kevin Turner * openid.yadis.discover: fix test-case-name Thu Feb 8 16:26:08 PST 2007 Kevin Turner * store.interface.OpenIDStore: document interface changes introduced by one-way nonces. storeNonce is gone. Thu Feb 8 15:38:02 PST 2007 Kevin Turner * contrib/upgrade-store: gratuitous code style tweaks. Thu Feb 8 15:08:15 PST 2007 Kevin Turner * contrib/ add store upgrade script Fri Aug 11 15:11:27 PDT 2006 cygnus@janrain.com * Fixed password kwarg for pgsql Fri Aug 11 15:11:18 PDT 2006 cygnus@janrain.com * conn -> db_conn again Fri Aug 11 12:35:43 PDT 2006 cygnus@janrain.com * Added strip() to test in askForConfirmation Fri Aug 11 12:26:37 PDT 2006 cygnus@janrain.com * Connection error handling Fri Aug 11 12:23:11 PDT 2006 cygnus@janrain.com * Hidden password input with getpass Fri Aug 11 12:18:51 PDT 2006 cygnus@janrain.com * Fixed MySQL connection Fri Aug 11 12:18:41 PDT 2006 cygnus@janrain.com * conn -> db_conn Fri Aug 11 12:18:26 PDT 2006 cygnus@janrain.com * Changed exit to sys.exit(1) Fri Aug 11 12:09:19 PDT 2006 cygnus@janrain.com * PostgreSQL capitalization nit-picking Fri Aug 11 12:06:10 PDT 2006 cygnus@janrain.com * Removed trailing crud Fri Aug 11 12:04:46 PDT 2006 cygnus@janrain.com * Added usage output when argv = [] Fri Aug 11 12:02:11 PDT 2006 cygnus@janrain.com * Indentation changes Fri Aug 11 12:01:02 PDT 2006 cygnus@janrain.com * Added code to close connection Fri Aug 11 11:57:54 PDT 2006 dag@janrain.com * fix dumb mistakes Fri Aug 11 11:48:15 PDT 2006 dag@janrain.com * db upgrade script Thu Feb 15 17:15:00 PST 2007 Josh Hoyt * Added document about making associations offline Thu Feb 15 16:01:59 PST 2007 Josh Hoyt * Make the example server not remember the decision by default Thu Feb 15 16:00:17 PST 2007 Josh Hoyt * Make example consumer use redirects for OpenID 1 Thu Feb 15 15:59:28 PST 2007 Josh Hoyt * Fix import in example consumer so that it imports with Python <2.4 Thu Feb 15 15:58:47 PST 2007 Josh Hoyt * Make the example consumer use a MemoryStore by default Thu Feb 15 14:40:37 PST 2007 Josh Hoyt * Added method that users can use to tell if this request should be responded to with a redirect or a POST Some OpenID 1 servers will fail if a POST is used. Thu Feb 15 14:38:04 PST 2007 Josh Hoyt * Make the verification step for OpenID 1 work whether the type URI has 1.0 or 1.1 at the end This was causing LiveJournal and VeriSign PIP to fail the verification step. There is no difference between services that use 1.0 and 1.1. OpenID 1 did not really have a version number, which lead to this havoc. Thu Feb 15 13:18:06 PST 2007 Josh Hoyt * Fix consumer check_authentication to work properly with extensions Thu Feb 15 13:14:45 PST 2007 Josh Hoyt * Added getAliasedArg method to Message It lets you look up arguments by their aliased form (e.g. sreg.fullname) without knowing the namespace URI. This was necessary for building check_authentication requests in the consumer. Thu Feb 15 12:35:34 PST 2007 Josh Hoyt * Added getExpired call to all stores Returns all server URLs that are in the associations table that do not have a good association Thu Feb 15 12:13:34 PST 2007 Josh Hoyt * Removed auth_key stuff from memstore Thu Feb 15 11:52:07 PST 2007 Josh Hoyt * Make the GenericConsumer a parameter to Consumer so that the GenericConsumer can be used with GenericConsumers that have special behaviour Thu Feb 15 11:34:47 PST 2007 Josh Hoyt * Make check_authentication handle signed ns field properly Thu Feb 15 10:37:59 PST 2007 Josh Hoyt * Moved MemoryStore from the unit test directory to the library proper So that it's usable for e.g. Twisted Thu Feb 15 10:29:57 PST 2007 Josh Hoyt * Remove isDumb interface and dumbstore test Wed Jan 10 16:47:53 PST 2007 Josh Hoyt * Tests for id_res required fields Thu Feb 8 16:39:52 PST 2007 cygnus@janrain.com * Make test less confusing Wed Jan 17 16:11:13 PST 2007 Kevin Turner tagged release-2.0.0-b0 Wed Jan 17 16:10:43 PST 2007 Kevin Turner * Set version number to 2.0.0-b0 Wed Jan 17 16:09:43 PST 2007 Kevin Turner * LICENSE: really added this time Wed Jan 17 16:00:38 PST 2007 Kevin Turner * consumer.discover: add module-level docstring Wed Jan 17 16:00:03 PST 2007 Kevin Turner * consumer.consumer: minor doc tweaks Wed Jan 17 15:58:23 PST 2007 Kevin Turner * setup.py: remove reference to COPYING, replace with Apache license boilerplate. Wed Jan 17 15:47:35 PST 2007 Kevin Turner * admin/combo-setup.py: goodbye (other packages are now openid subpackages) Wed Jan 17 13:05:41 PST 2007 Kevin Turner * examples/consumer: unicode, fixes #2284 ask for UTF-8 in the form element, and decode as UTF-8 when building self.query. Mon Jan 15 16:11:51 PST 2007 Kevin Turner * openid.server: documentation updates Mon Jan 15 15:42:54 PST 2007 Kevin Turner * epydoc syntax Mon Jan 15 15:31:58 PST 2007 Kevin Turner * epydoc syntax Mon Jan 15 15:30:13 PST 2007 Kevin Turner * epydoc syntax Mon Jan 15 15:29:59 PST 2007 Kevin Turner * epydoc syntax Mon Jan 15 15:28:15 PST 2007 Kevin Turner * epydoc syntax Mon Jan 15 15:28:09 PST 2007 Kevin Turner * epydoc syntax Mon Jan 15 15:27:51 PST 2007 Kevin Turner * epydoc syntax Mon Jan 15 15:26:41 PST 2007 Kevin Turner * epydoc syntax Mon Jan 15 15:26:29 PST 2007 Kevin Turner * epydoc syntax Mon Jan 15 14:51:44 PST 2007 Kevin Turner * Apache License Mon Jan 15 13:54:24 PST 2007 Kevin Turner * examples/server: server advertises itself as v2, so replace openid:Delegate with LocalID Mon Jan 15 13:41:18 PST 2007 Kevin Turner * consumer.GenericConsumer._verifyDiscoverySingle: use endpoint.getLocalID, closes #2258. Fri Jan 12 18:47:43 PST 2007 Kevin Turner * examples/server: reorganize to pass endpoint url to server.Server. a chicken-and-egg situation here, httpserver wanted oidserver to be constructed first, and oidserver wanted httpserver to be constructed first. Is that going to be a common problem? Fri Jan 12 18:43:24 PST 2007 Kevin Turner * examples/server.main: remove unused code Fri Jan 12 18:42:00 PST 2007 Kevin Turner * consumer.discover.OpenIDServiceEndpoint.__str__: added Fri Jan 12 18:35:35 PST 2007 Kevin Turner * x is y is z, wtf? Fri Jan 12 17:35:19 PST 2007 Kevin Turner * [API] server.CheckIDRequest.answer: include op_endpoint in response [#2221] server.Server: take op_endpoint in constructor server.CheckIDRequest.fromMessage: also take Server The story: There were several things about the URL argument when it first appeared in the signature to CheckIDRequest.answer. It was only required in this weird little corner case, and we weren't really sure how it was going to be used, and user_setup_url might have been different every time. So I added it to answer() and made it optional except in the case where it actually needed to be there, and if people thought it was weird, well, maybe they'd chime in and help remove it from the protocol. Then, based on feedback from library users, it changed from being the user_setup_url to just the server URL, which we would use to construct a plausable-looking user_setup_url from, as nobody was going to do anything else with it anyway. But it was still optional but for that one corner case. Now we need the URL for *every* id_res response, and it's the server's endpoint URL, not some weird poorly-understood thing that might vary with each request. Given that it's the server's endpoint URL, I'm putting it on the Server object, and doing some internal reference-passing where needed. (I hope I didn't create any reference cycles, but given that Servers don't hold references to their Requests, I'm pretty sure we're okay.) The result: Server() takes a second parameter, op_endpoint, which is optional for backwards compatibility but is actually required if you ever want to reply to a version 2.0 message. It uses warnings.warn to throw a warning if you leave it out. OpenIDRequest.fromMessage takes a second parameter, server, which most of the concrete implementations of OpenIDRequest don't use, but is not optional for CheckIDRequest. This does break compatibility, but I'll be pretty surprised if anyone is using fromMessage() directly instead of going through Decoder.decode(). Fri Jan 12 15:02:58 PST 2007 Kevin Turner * server.server.CheckIDRequest.answer: immediate mode negative response is now mode=setup_needed Fri Jan 12 14:41:01 PST 2007 cygnus@janrain.com * Fix SessionNegotiator: unavailable session types properly handled Fri Jan 12 14:30:04 PST 2007 Kevin Turner * [API] server.server.CheckIDRequest.answer: add a claimed_id parameter. This is an API change; please review on #2222. Fri Jan 12 11:58:40 PST 2007 Kevin Turner * server.server.CheckIDRequest.answer: include claimed_id in response Fri Jan 12 11:49:16 PST 2007 Kevin Turner * server.server.CheckIDRequest.fromMessage: add a claimed_id attribute Fri Jan 12 11:32:29 PST 2007 Kevin Turner * server.server.CheckIDRequest: mention that trust_root AKA realm in the docstring. Fri Jan 12 11:23:54 PST 2007 Kevin Turner * flag some undocumented exceptions with FIXME Fri Jan 12 11:20:38 PST 2007 Kevin Turner * test.test_server: add claimed_id to where it was missing from some OpenID 2 messages Thu Jan 11 17:11:22 PST 2007 Kevin Turner * test_server.TestCheckID: add some FIXMEs Wed Jan 10 16:02:08 PST 2007 Josh Hoyt * Added test for return_to missing when parsing the nonce from an OpenID 1 response Wed Jan 10 15:52:37 PST 2007 Josh Hoyt * Change consumer.ServerError API to be a little cleaner Wed Jan 10 15:35:30 PST 2007 Josh Hoyt * Removed code in consumer that was trying to handle None returns from fetchers The fetcher API stopped supporting None return values a while ago Wed Jan 10 15:32:07 PST 2007 Josh Hoyt * Added test for complete's OpenID 1 setup needed handling Wed Jan 10 15:26:31 PST 2007 Josh Hoyt * Added test for discovery returning no services Wed Jan 10 15:18:43 PST 2007 Josh Hoyt * Add a command that finds all of the Python source that constitutes the library, excluding tests. Wed Jan 10 15:13:25 PST 2007 Josh Hoyt * Added test for HTTP errors when fetching in the high-level consumer, and refined the implementation Wed Jan 10 15:12:13 PST 2007 Josh Hoyt * Added more discovery verification tests Wed Jan 10 15:11:05 PST 2007 Josh Hoyt * Clean up verification test to make it easier to understand Tue Jan 9 16:40:14 PST 2007 Josh Hoyt * organization of private methods in consumer.consumer Tue Jan 9 16:24:20 PST 2007 Josh Hoyt * Add test for using pre-discovered information in discovery for OpenID2 Tue Jan 9 16:16:20 PST 2007 Josh Hoyt * Add discovery verification tests and break up the logic in _verifyDiscoveryResults into a function for OpenID1 and a function for OpenID2 Tue Jan 9 15:20:44 PST 2007 Josh Hoyt * Implement OpenID 2.0 Auth spec svn rev 277, openid.mode=setup_needed Replaces bare "id_res" response for cancellation of immediate mode Tue Jan 9 14:49:16 PST 2007 Josh Hoyt * Add support for OpenID 2.0's op_endpoint URL, bare responses, and discovery verification when there is a mismatch between discovered information Tue Jan 9 14:46:51 PST 2007 Josh Hoyt * Change the discover function in the consumer's discovery module to work for either kind of identifier Tue Jan 9 14:46:15 PST 2007 Josh Hoyt * Added a supportsType method with smarts for OP identifiers Tue Jan 9 13:26:41 PST 2007 cygnus@janrain.com * API CHANGE: Reinstate SuccessResponse.extensionResponse() and implement support for requiring args to be signed Mon Jan 8 16:51:31 PST 2007 Josh Hoyt * Fixed (and tested) behaviour of OP identifier service endpoints and compatibility mode Mon Jan 8 16:53:05 PST 2007 Josh Hoyt * Added fromOPEndpointURL to OpenIDServiceEndpoint Thu Jan 4 17:22:17 PST 2007 Josh Hoyt * whitespace Thu Jan 4 17:17:39 PST 2007 Josh Hoyt * Switched a lot of the internal logic in Consumer to raise ProtocolErrors instead of returning FailureResponse and/or logging This change is not as complete as it could be. It's possible that users will want to catch ProtocolErrors, so maybe we should not be converting it to a FailureResponse Thu Jan 4 16:37:56 PST 2007 Josh Hoyt * raise ValueError -> raise ProtocolError in consumer internals Mon Jan 8 14:58:45 PST 2007 cygnus@janrain.com * Fix delArg test Fri Jan 5 21:40:16 PST 2007 Kevin Turner tagged heraldry-493420 Wed Jan 3 14:44:13 PST 2007 cygnus@janrain.com * Add failure response message to example consumer failure output Tue Jan 2 16:02:17 PST 2007 cygnus@janrain.com * FIX #1563: Make return_to optional in OpenID2; responding to return_to-less checkid requests now raises NoReturnToError Tue Jan 2 15:16:13 PST 2007 cygnus@janrain.com * Fix NS in return_to test Tue Jan 2 15:10:20 PST 2007 cygnus@janrain.com * Add third optional return_to arg to Consumer.complete() which results in return_to verification and possibly FailureResponse Fri Dec 15 19:08:27 PST 2006 Kevin Turner * test.test_server.TestSignatory.test_getAssocNormalVsDumb: fixes #1590 Fri Dec 15 19:05:57 PST 2006 Kevin Turner * test.test_consumer.TestCheckAuthResponse.test_invalidate*: docstrings, fixes #1592 Fri Dec 15 18:24:39 PST 2006 Kevin Turner * test.test_server.TestSignatory.test_signExpired: docstring fixes #1587 Fri Dec 15 18:12:48 PST 2006 Kevin Turner * test.test_consumer.CheckNonceTest.test_badNonce: docstring, fixes #1583. Fri Dec 15 18:01:16 PST 2006 Kevin Turner * test.test_server.TestCheckAuth.test_replay: docstring, fixes #1582. Fri Dec 15 16:16:30 PST 2006 Kevin Turner * server.server: s/openid.nonce/openid.response_nonce/ [#1564] Thu Dec 28 16:30:12 PST 2006 cygnus@janrain.com * Test comments Thu Dec 28 16:28:32 PST 2006 cygnus@janrain.com * Check for user_setup_url in both protocol cases (current behavior) Thu Dec 28 15:57:05 PST 2006 cygnus@janrain.com * Look for openid.trust_root/realm based on OpenID version Thu Dec 28 15:27:25 PST 2006 cygnus@janrain.com * OpenID 1 should return HTTP 400 in answerUnsupported Thu Dec 28 15:26:22 PST 2006 cygnus@janrain.com * Make session_type required in OpenID 2 Wed Dec 27 17:29:03 PST 2006 Josh Hoyt * Do not accept blank or missing session types for OpenID 2 requests in the server Wed Dec 27 17:20:26 PST 2006 cygnus@janrain.com * Fix #1611: Server does not accept OpenID1 checkid_* without identity, and requires identity to be present in response Wed Dec 27 17:18:51 PST 2006 Josh Hoyt * Move nonce checking into _idRes various other small changes happened in consumer, including: * Remove getNonce from response, since it's not necessary * Parameterize the name of the query argument that is used for the OpenID 1 nonce * Update tests to test new function Wed Dec 27 16:39:30 PST 2006 cygnus@janrain.com * Docs for test_negotiation Wed Dec 27 16:24:58 PST 2006 cygnus@janrain.com * Moved negotiation tests into separate module Wed Dec 27 16:12:59 PST 2006 cygnus@janrain.com * Add OpenID1-specific session negotiation tests Wed Dec 27 16:07:27 PST 2006 cygnus@janrain.com * Use CatchLogs in session negotiation tests, fixed consumer Wed Dec 27 16:06:42 PST 2006 cygnus@janrain.com * Add CatchLogs fail* methods to check log messages Wed Dec 27 15:44:29 PST 2006 cygnus@janrain.com * Add successful _negotiateAssociation test Wed Dec 27 15:39:30 PST 2006 cygnus@janrain.com * Move CatchLogs from test_consumer to support Wed Dec 27 15:36:45 PST 2006 cygnus@janrain.com * Add consumer-side session negotiation tests, and consumer fixes Wed Dec 27 14:41:33 PST 2006 cygnus@janrain.com * Comment typo Wed Dec 27 15:23:01 PST 2006 Josh Hoyt * Add allowable slop to checking of expires_in field The test was failing occasionally because it was being run on the edge of a second, so it can be off by up to one second. Wed Dec 27 14:36:10 PST 2006 cygnus@janrain.com * Make answerUnsupported require message arg, and make tests expect openid.error in unsupported-type responses Wed Dec 27 14:30:02 PST 2006 cygnus@janrain.com * Make tests use cryptutil.SHA256_AVAILABLE Wed Dec 27 14:12:42 PST 2006 Josh Hoyt * Move generic test support stuff to openid.test.support Wed Dec 27 12:51:46 PST 2006 cygnus@janrain.com * Add SHA1/256 association session response tests for OpenID 1/2 Wed Dec 27 12:51:13 PST 2006 cygnus@janrain.com * Use custom DH to make consumer tests much faster Wed Dec 27 12:50:34 PST 2006 cygnus@janrain.com * Add cryptutil.SHA256_AVAILABLE Wed Dec 27 12:34:33 PST 2006 cygnus@janrain.com * Add session type secret_size attribute Wed Dec 27 11:49:05 PST 2006 cygnus@janrain.com * Refactor test_auth_request, check identifier presence, check required message fields Wed Dec 27 11:27:39 PST 2006 cygnus@janrain.com * Check assoc_handle against assoc object Wed Dec 27 11:23:58 PST 2006 cygnus@janrain.com * Improve failUnlessAnonymous Wed Dec 27 11:20:35 PST 2006 cygnus@janrain.com * Make test_auth_request try immediate mode, too Wed Dec 27 11:16:57 PST 2006 cygnus@janrain.com * Refactor test_auth_request methods, fix typos, add test_auth_request to test lineup Wed Dec 27 10:32:55 PST 2006 Josh Hoyt * Added claimed_id to the consumer's checkid_* request Started adding tests for the form of a request Tue Dec 26 16:54:06 PST 2006 Josh Hoyt * Added support for omitting the return_to URL from a request Tue Dec 26 16:38:14 PST 2006 Josh Hoyt * Test that OpenID 1 responses will fail if the nonce is missing, even if there is a valid OpenID-2-style nonce. Tue Dec 26 16:33:44 PST 2006 Josh Hoyt * Differentiate nonce handling for OpenID 1 and 2 relying parties Tue Dec 26 16:32:31 PST 2006 Josh Hoyt * Meaning-neutral changes to test_consumer boilerplate reduction ("openid.") Tue Dec 26 16:02:12 PST 2006 Josh Hoyt * Handle OpenID 1 and 2 cancel responses to checkid_immediate requests Tue Dec 26 15:30:21 PST 2006 Josh Hoyt * trust_root -> realm for OpenID2 Tue Dec 26 15:28:06 PST 2006 Josh Hoyt * Further normalization of test_auth_request hopefully it's easier to read/change now Tue Dec 26 12:43:13 PST 2006 Josh Hoyt * Remove code duplication in discover.py Tue Dec 26 12:40:48 PST 2006 Josh Hoyt * Added tests for checking whether or not a Service Endpoint is for an OP identifier Tue Dec 26 12:21:59 PST 2006 Josh Hoyt * FIX #1599: openid.identifier MUST be sent when it's an OpenID 1 request also moved auth request tests to their own file for simplicity Sat Dec 23 07:45:00 PST 2006 Josh Hoyt * Internal API changes to use Message object Also: * openid.consumer.consumer.ServerError that is raised when an error response is sent to a KVForm request * Documentation of internal functions of openid.consumer.consumer * As yet untested session negotiation fixes Fri Dec 22 13:40:38 PST 2006 Josh Hoyt * Re-worked consumer association creation internal API XXX: this broke the (untested) association negotiation. The ticket is still outstanding, though, so I feel OK about it. Fri Dec 22 11:20:25 PST 2006 Josh Hoyt * Make test_association_response more readable Fri Dec 22 11:12:32 PST 2006 Josh Hoyt * Fixed test names and added tests for assoc session_type mismatch for OpenID1 Ugh. Luckily the tests passed. Thu Dec 21 17:08:43 PST 2006 Josh Hoyt * Fixed testing bugs that were masked in Python2.4 Thu Dec 21 16:51:07 PST 2006 Josh Hoyt * Tested _parseAssociation more thoroughly Moved the parse association tests into a test module all their own, to hopefully make test_consumer less horrible to deal with. Addressed small issues that the tests raised. Thu Dec 21 14:14:55 PST 2006 Josh Hoyt * Separate out OpenID 1 and 2 association response handling the OpenID 1 behaviour is tested, but the OpenID 2 not so much Thu Dec 21 13:03:32 PST 2006 Josh Hoyt * Make _makeKVPost return a Message object Also raises HTTPFetchingError instead of returning None. It might be the wrong type of exception to raise, but it works for now. This had a relatively wide-reaching impact, but I think it will ultimately be an improvement. _makeKVPost still doesn't *take* a Message object. Thu Dec 21 12:11:38 PST 2006 Josh Hoyt * Added magic no_default argument to Message.getArg to make it raise a KeyError when the value is not found. Also a bit of refactoring in test_message to make it less error-prone and more thorough. Thu Dec 21 11:38:18 PST 2006 Josh Hoyt * Whitespace (test_message) Thu Dec 21 11:26:18 PST 2006 Josh Hoyt * Whitespace Thu Dec 21 11:25:02 PST 2006 Josh Hoyt * Add isOpenID1 and isOpenID2 methods to message.Message Thu Dec 21 11:07:54 PST 2006 cygnus@janrain.com * Make SessionNegotiator.getAllowedType() clearer Wed Dec 20 17:29:14 PST 2006 Josh Hoyt * Make test_discover check against getLocalID instead of the local_id attribute Also fix bug where canonical ID was being used instead of the local_id Wed Dec 20 17:22:54 PST 2006 Josh Hoyt * Added comment about using a Message object Wed Dec 20 17:22:48 PST 2006 Josh Hoyt * Whitespace Wed Dec 20 17:21:25 PST 2006 Josh Hoyt * When making a compatibility-mode no-encryption association request, don't send session_type. Wed Dec 20 16:21:13 PST 2006 Josh Hoyt * Make sure that no services will be returned for an XRI whose XRD does not have a CanonicalID element Wed Dec 20 16:20:33 PST 2006 Josh Hoyt * Oops, we were running test_discover twice when we ran the test suite Wed Dec 20 16:10:37 PST 2006 Josh Hoyt * Make discovery fail if the CanonicalID doesn't match when it's an XRI. Also use the CanonicalID as the claimed identifier. Wed Dec 20 15:32:01 PST 2006 cygnus@janrain.com * Make _createAssociateRequest look at endpoint compatibility mode when including openid.ns in associate request Wed Dec 20 15:30:47 PST 2006 cygnus@janrain.com * Add OpenIDServiceEndpoint.compatibilityMode Wed Dec 20 15:19:34 PST 2006 cygnus@janrain.com * _getAssociation, _createAssociateRequest now take endpoint instead of server_url Wed Dec 20 15:30:00 PST 2006 Josh Hoyt * Transform the XRI tests so that they run independently (meaning neutral) Wed Dec 20 15:28:40 PST 2006 Josh Hoyt * Whitespace Wed Dec 20 15:28:05 PST 2006 Josh Hoyt * Whitespace Wed Dec 20 14:09:46 PST 2006 cygnus@janrain.com * Add trust_root, openid, assoc_handle to OPENID_PROTOCOL_FIELDS Wed Dec 20 14:07:50 PST 2006 cygnus@janrain.com * Test that message code overwrites value in setArg / add TypeError test when list of values present in args Wed Dec 20 13:59:46 PST 2006 cygnus@janrain.com * FIX #1621: Make dotted and protocol field ns aliases invalid Wed Dec 20 12:27:10 PST 2006 Josh Hoyt * Implemented OpenID 2.0 XRDS LocalID parsing Fixes #1597 and #1597 Tue Dec 19 16:52:06 PST 2006 Josh Hoyt * Make discovery tests more consistent and thorough. Add an expected fail test for LocalID with OpenID 2.0 Yadis Tue Dec 19 16:13:25 PST 2006 Josh Hoyt * Make the type URI checking stricter and simpler in test_discover Wed Dec 20 10:46:35 PST 2006 cygnus@janrain.com * Add URI fragment test case for trust root Tue Dec 19 16:14:46 PST 2006 cygnus@janrain.com * Resolve conflict Tue Dec 19 16:11:14 PST 2006 cygnus@janrain.com * Make discoverYadis and discoverXRI return only OP Identifier services if they exist Tue Dec 19 16:07:58 PST 2006 Josh Hoyt * Add service type checking to the discovery tests Tue Dec 19 15:54:14 PST 2006 Josh Hoyt * Remove OpenID 1.2 type that was never used in the wild Tue Dec 19 14:53:18 PST 2006 Josh Hoyt * Started renaming test cases to make room for OpenID 2 tests * Added "delegate" to the names of the ones that use the "delegate" element * Added missing test for "yadis_another.xml" Tue Dec 19 14:44:23 PST 2006 Josh Hoyt * Move data for discovery tests into the filesystem so the test module is not so unwieldy Tue Dec 19 14:11:19 PST 2006 Josh Hoyt * Remove crufty verbose data-path manipulation stuff from test_etxrd Looks like I introduced it! Tue Dec 19 13:55:21 PST 2006 Josh Hoyt * Refactored test_xrds * Moved the data files into a directory just for this test module * Made the CanonicalID tests run independently of each other * Added a convenience function for locating the data files No functional changes (intended!) Mon Dec 18 16:38:14 PST 2006 cygnus@janrain.com * Un-broke all tests for real this time Mon Dec 18 15:55:23 PST 2006 cygnus@janrain.com * Fix more broken tests Mon Dec 18 15:45:15 PST 2006 Josh Hoyt * Added OpenID 2.0 HTML discovery Mon Dec 18 15:29:58 PST 2006 Josh Hoyt * Whitespace Mon Dec 18 15:38:19 PST 2006 cygnus@janrain.com * .delegate -> .local_id and refactor consumer verification logic Mon Dec 18 14:43:02 PST 2006 cygnus@janrain.com * Replace getServerID with getLocalID Mon Dec 18 14:40:43 PST 2006 cygnus@janrain.com * claimed_id -> yadis_url in discoverYadis Fri Dec 15 17:01:57 PST 2006 cygnus@janrain.com * Make OpenIDServiceEndpoint.getServerID() return claimed_id iff canonicalID and delegate are None Fri Dec 15 16:10:02 PST 2006 Kevin Turner * consumer.consumer: rename openid.nonce to openid.response_nonce [#1564] Fri Dec 15 15:45:37 PST 2006 Kevin Turner * test.test_consumer.TestReturnToArgs: added. [#1579] Fri Dec 15 15:42:44 PST 2006 Kevin Turner * test.test_consumer: some comments. Fri Dec 8 15:06:10 PST 2006 Kevin Turner * remove yadis.xrd (replaced by yadis.etxrd) Fri Dec 15 13:44:46 PST 2006 cygnus@janrain.com * Change OpenIDServiceEndpoint.identity_url to .claimed_id Thu Dec 14 11:47:49 PST 2006 cygnus@janrain.com * Fix type kwarg for py 2.2 Thu Dec 14 11:46:48 PST 2006 cygnus@janrain.com * Send contact and reference in error messages regardless of protocol version Thu Dec 14 11:41:00 PST 2006 cygnus@janrain.com * FIX #1508: Add tests for message-to-HTML form generation Thu Dec 14 11:40:09 PST 2006 cygnus@janrain.com * Disallow override of charset and enctype in HTML form generation Wed Dec 13 16:49:19 PST 2006 cygnus@janrain.com * FIX #1504: Add support for OpenID2-specific error response fields Wed Dec 13 15:01:51 PST 2006 cygnus@janrain.com * Fix OPENID2_NS value from spec Wed Dec 13 14:37:14 PST 2006 cygnus@janrain.com * Add 127 case from spec to binaryLongConvert Mon Dec 4 12:47:04 PST 2006 chowells@janrain.com * Make it possible to force the consumer example to use the python fetcher Mon Nov 27 15:40:36 PST 2006 Kevin Turner * examples/consumer: add an /affiliate page to help exercise myopenid's affiliate code Mon Nov 27 15:39:42 PST 2006 Kevin Turner * examples/consumer: s/openid_url/openid_identifier/ in the input form Thu Nov 16 17:06:24 PST 2006 Josh Hoyt * FIX #1367: Remove SIGNALL associations Thu Nov 16 16:20:11 PST 2006 Josh Hoyt * FIX #1366: Remove auth key Thu Nov 16 16:19:16 PST 2006 Josh Hoyt * #1366: remove auth key from store tests Thu Nov 16 16:19:11 PST 2006 Josh Hoyt * #1366: remove auth key code from dumb store Thu Nov 16 16:17:29 PST 2006 Josh Hoyt * #1366: remove auth key code from SQL store Thu Nov 16 16:17:06 PST 2006 Josh Hoyt * #1366: remove auth key from store interface Thu Nov 16 16:16:38 PST 2006 Josh Hoyt * #1366: remove auth key code from filestore Sat Oct 28 12:35:18 PDT 2006 cygnus@janrain.com * Use API calls to sent Content-type header and begin body Wed Oct 11 16:37:01 PDT 2006 Kevin Turner tagged heraldry-r463041 Wed Oct 11 16:36:50 PDT 2006 Kevin Turner tagged heraldry-import Wed Oct 11 16:00:07 PDT 2006 Kevin Turner tagged heraldry-import/branches/1.2 Fri Sep 22 15:05:44 PDT 2006 mpg4@janrain.com * remove missing 'normalizeUrl' from oidutil.__all__ Mon Sep 11 15:40:44 PDT 2006 mpg4@janrain.com * Add yadis package to setup.py Thu Sep 7 15:24:26 PDT 2006 dag@janrain.com * Add message attribute to server requests when constructed using fromMessage Thu Sep 7 14:01:02 PDT 2006 Josh Hoyt * Fix Python 2.2 AssertionError when splitting VERY old nonces Thu Sep 7 13:55:01 PDT 2006 Josh Hoyt * Add nonce test, and tighten up the interface and border conditions of nonce checking Thu Sep 7 11:29:00 PDT 2006 brian@janrain.com * fix OpenID2MessageTest.test_delArgOpenID so that it uses the proper namespace for the test Thu Sep 7 11:28:17 PDT 2006 brian@janrain.com * fixed another test name mistmatch Thu Sep 7 11:02:36 PDT 2006 brian@janrain.com * fixed mismatched test case names in OpenID2MessageTest - test_getArgsNS1,2 Wed Sep 6 18:01:36 PDT 2006 brian@janrain.com * fixed delArg test for OPENID_NS. it was using OPENID1_NS. Mon Sep 4 16:19:07 PDT 2006 chowells@janrain.com * fix prepending http:// to urls without, and add a test for it Fri Sep 1 15:43:22 PDT 2006 Kevin Turner * remove lingering "XXX: association-type specific" comment Fri Sep 1 15:32:16 PDT 2006 Kevin Turner * consumer.GenericConsumer._createCheckAuthRequest: add sign-all version. Fri Sep 1 15:06:18 PDT 2006 Kevin Turner * test.test_consumer.TestComplete.test_idResMissingField: comment that some of these tests aren't quite testing what they say they are. Fri Sep 1 14:51:48 PDT 2006 Kevin Turner * test.test_consumer.TestCheckAuth.tearDown: added missing tearDown method to reset default fetcher. this was causing erratic test failures in subsequent tests. Fri Sep 1 12:52:15 PDT 2006 Kevin Turner * message.Message.__ne__: added Thu Aug 31 17:00:41 PDT 2006 Kevin Turner * DiffieHellmanSHA1ServerSession.allowed_assoc_types: add HMAC-SHA1-SIGNALL Thu Aug 31 16:50:33 PDT 2006 Kevin Turner * server.server.CheckAuthRequest.signed: this is now a Message, not a list of pairs. [API] server.server.Signatory.verify: take a message, not a sig and a list of pairs. This patch mostly throws out a lot of the message-validation code for the check_authentication message type, as what is included in a check_authentication request now depends a lot on the association type. So we push most things through to the associtaion's signature checking methods, and see if it works. (Hmm, the way I've coded this may result in some responses that formerly generated errors resulting in "is_valid=false" responses instead.) Changes and deletions to openid.test.test_server: TestDecode.test_checkAuth: removed assertion that response.signed contains only things in the signed list -- the logic to figure out what is and isn't signed now lives in the association, not the decoder. TestDecode.test_checkAuthMissingRequiredField, TestDecode.test_checkAuthMissingSignedField: removed tests; I don't think there are any required fields that may be omitted and still have the sig check out. Or if there are, they vary with association type. TestSignatory.test_verify*: adjusted for new signature, switch to SIGNALL associations as the pairs are not in openid.* use recalculated sig, as SIGNALL signs in a different order than the old pairs were given in. Thu Aug 31 16:25:32 PDT 2006 Kevin Turner * message.Message.__eq__: define for use with failUnlessEqual Thu Aug 31 16:23:08 PDT 2006 Kevin Turner * association.Association.{get,check}MessageSignature: document that ValueError happens. Thu Aug 31 15:47:37 PDT 2006 Kevin Turner * association.Association._makePairsSignAll: openid.sig isn't a signed item. Thu Aug 31 15:40:56 PDT 2006 Kevin Turner * association.Association: add __repr__ Thu Aug 31 11:59:11 PDT 2006 Kevin Turner * examples/server.py: remove unused import and fix syntax error Wed Aug 30 20:12:29 PDT 2006 Kevin Turner * association.Association.signMessage: document return value Wed Aug 30 20:11:31 PDT 2006 Kevin Turner * consumer.GenericConsumer._idResCheckSignature: generated signed_list for sign-all sigs Wed Aug 30 20:08:43 PDT 2006 Kevin Turner * consumer.Consumer._idResCheckForFields: drop 'signed' from required_fields Wed Aug 30 18:55:51 PDT 2006 Kevin Turner * server.server.Signatory.sign: preserve sign-all-edness in fallback case Wed Aug 30 18:55:21 PDT 2006 Kevin Turner * server.server.Signatory.getAssociation: add a way to get expired associations Wed Aug 30 17:59:34 PDT 2006 Kevin Turner * association.Association.signMessage: don't put signed list on signall messages Wed Aug 30 17:57:51 PDT 2006 Kevin Turner * oidutil.Symbol.__hash__: define (deepcopy really does break everything. You can have d.keys() == deepcopy(d).keys() without d[s] == deepcopy(d)[s]) Wed Aug 30 17:14:08 PDT 2006 Kevin Turner * association.Association.sign: add mac definition for HMAC-SHA1-SIGNALL type. Wed Aug 30 16:53:50 PDT 2006 Kevin Turner * server.server: s/HMAC-SHA256/HMAC-SHA256-SIGNALL/ Wed Aug 30 16:12:48 PDT 2006 Kevin Turner * association.Association.__init__: set .sign_all according to assoc_type and it turns out that objects with attributes which are functions or methods assigned after the object was created do not deepcopy so well. Wed Aug 30 15:34:39 PDT 2006 Kevin Turner * association.Association._makePairsSignAll: added actually, seems to have snuck in in a previous patch, but here's the test. Wed Aug 30 15:30:18 PDT 2006 Kevin Turner * message.Message.setArg: don't add BARE_NS to namespace list. Wed Aug 30 14:56:58 PDT 2006 Kevin Turner * association.Association.signDict: method removed, use getMessageSignature instead [API] Wed Aug 30 14:54:16 PDT 2006 Kevin Turner * association.Association._makePairs: factored out from getMessageSignature and signDict Mon Aug 28 13:10:07 PDT 2006 Kevin Turner * association: add HMAC-SHA1-SIGNALL to list of recognized association types Mon Aug 28 13:09:16 PDT 2006 Kevin Turner * association: test-case-name Mon Aug 28 13:01:41 PDT 2006 Kevin Turner * test_server.TestServer.test_associate: more verbose failure Mon Aug 28 13:00:42 PDT 2006 Kevin Turner * message.Message: add __str__ Mon Aug 28 12:52:54 PDT 2006 Kevin Turner * association: HMAC-SHA256 is HMAC-SHA256-SIGNALL Fri Aug 25 19:17:56 PDT 2006 Kevin Turner * association.Association.sign_all: add new boolean attribute Mon Aug 28 12:55:40 PDT 2006 dag@janrain.com * Add request method idSelect to indicate IDP is to choose identifier Mon Aug 28 11:59:47 PDT 2006 dag@janrain.com * Example server ID selection works Fri Aug 25 16:56:18 PDT 2006 dag@janrain.com * Server example serves user and server yadis Fri Aug 25 16:03:36 PDT 2006 dag@janrain.com * Directed ID in server example Fri Aug 25 17:05:56 PDT 2006 Kevin Turner * association.Association.addSignature: remove unused method Fri Aug 25 17:05:15 PDT 2006 Kevin Turner * test.test_consumer: use assoc.signMessage in favor of assoc.addSignature Fri Aug 25 16:56:40 PDT 2006 Kevin Turner * Association.checkSignature: remove unused method Fri Aug 25 16:55:28 PDT 2006 Kevin Turner * test.test_server: warn when SHA256 tests are skipped. Fri Aug 25 16:02:35 PDT 2006 Kevin Turner * test.test_association.DiffieHellmanSessionTest: update to use Message Fri Aug 25 15:26:32 PDT 2006 Kevin Turner * repair test loading for test_yadis_discover Fri Aug 25 15:18:01 PDT 2006 Kevin Turner * runtests: add more verbose error reporting around custom_modules Fri Aug 25 14:56:27 PDT 2006 Kevin Turner * resolve conflict in admin/runtests Thu Aug 24 16:24:58 PDT 2006 Kevin Turner * move test.association to test.test_association Thu Aug 24 16:23:39 PDT 2006 Kevin Turner * runtests: move test_association to custom_modules DiffieHellmanSessionTest was not executing. Fri Aug 25 15:40:49 PDT 2006 Josh Hoyt * Add explicit anonymous request support (differentiation between anonymous and identifier-select) Fri Aug 25 15:39:48 PDT 2006 Josh Hoyt * Add explicit anonymous request support to RP Fri Aug 25 13:59:54 PDT 2006 Josh Hoyt * Clean up return_to handling in ProtocolError Thu Aug 24 16:52:25 PDT 2006 dag@janrain.com * Merge yadis and urljr Thu Aug 24 16:28:15 PDT 2006 Josh Hoyt * Use Message object in server implementation Thu Aug 24 16:25:16 PDT 2006 Josh Hoyt * Added test for Symbol class Thu Aug 24 16:20:55 PDT 2006 Josh Hoyt * Add __ne__ to Symbol class Thu Aug 24 16:17:47 PDT 2006 Josh Hoyt * Improved type-checking in Message._fixNS Thu Aug 24 16:14:36 PDT 2006 Josh Hoyt * Fix implementation of association message signing Thu Aug 24 14:18:31 PDT 2006 dag@janrain.com * Replace redirect with autoSubmit form in example Thu Aug 24 14:16:10 PDT 2006 dag@janrain.com * Add form_tag_attrs optional arg to AuthRequest.formMarkup Thu Aug 24 11:14:27 PDT 2006 dag@janrain.com * Clarify a docstring Thu Aug 24 12:04:11 PDT 2006 Josh Hoyt * Move signature checking logic into association Thu Aug 24 11:59:34 PDT 2006 Josh Hoyt * Remove debug print statement Thu Aug 24 11:02:49 PDT 2006 dag@janrain.com * Add a couple doc strings. Thu Aug 24 10:57:18 PDT 2006 dag@janrain.com * NamespaceMap test + cleanup Wed Aug 23 16:10:52 PDT 2006 dag@janrain.com * update example with new extension style Wed Aug 23 16:17:53 PDT 2006 Josh Hoyt * Only use a default namespace URI for an alias in an OpenID 1.x response Wed Aug 23 15:48:59 PDT 2006 Josh Hoyt * Return the default for a namespace declaration if a default alias is defined Wed Aug 23 15:47:55 PDT 2006 Josh Hoyt * Ignore unrecognized namespaces Wed Aug 23 15:46:52 PDT 2006 Josh Hoyt * Added namespace parameter to constructor for setting the null namespace Wed Aug 23 13:18:17 PDT 2006 Josh Hoyt * openid/test/server -> openid/test/test_server Wed Aug 23 15:17:36 PDT 2006 dag@janrain.com * Fix for error in begin when discovery fails Tue Aug 22 16:20:24 PDT 2006 Josh Hoyt * Added (much needed) unit tests for Message object Tue Aug 22 16:18:27 PDT 2006 Josh Hoyt * Make the output of Message.toURLEncoded be deterministic Tue Aug 22 16:17:54 PDT 2006 Josh Hoyt * Added accessor for the OpenID namespace of a Message Tue Aug 22 16:17:02 PDT 2006 Josh Hoyt * Added explicit exception for UndefinedOpenIDNamespace in Message Tue Aug 22 14:27:32 PDT 2006 Josh Hoyt * resolve conflicts Tue Aug 22 14:07:18 PDT 2006 Josh Hoyt * New, more porting-friendly Message API Tue Aug 22 13:36:41 PDT 2006 Josh Hoyt * Use oidutil.Symbol for ANONYMOUS_REPLY constant in server Tue Aug 22 13:34:59 PDT 2006 Josh Hoyt * Added Symbol class for singleton symbolic constants Tue Aug 22 13:33:06 PDT 2006 Josh Hoyt * Added preferredNamespace() method to OpenIDServiceEndpoint Mon Aug 21 12:45:40 PDT 2006 Kevin Turner * resolve conflict in consumer.GenericConsumer._doIdRes hopefully this just discards the change from the branch, as it only applied to the branch and not to development in the trunk Mon Aug 21 12:42:22 PDT 2006 Kevin Turner * resolve conflict in examples/consumer (sreg vs. canonicalID) Mon Aug 21 12:29:39 PDT 2006 Josh Hoyt * Convert consumer to use message object internally and in SuccessResponse Mon Aug 21 10:56:37 PDT 2006 Josh Hoyt * Improved message interface Fri Aug 18 16:13:12 PDT 2006 Josh Hoyt tagged After token removal Fri Aug 18 16:11:45 PDT 2006 Josh Hoyt tagged Before token removal Thu Aug 17 16:54:44 PDT 2006 Josh Hoyt * Resolve conflicts pulling token removal patch Thu Aug 17 12:22:28 PDT 2006 Kevin Turner * consumer.discover: resolve conflict between yadis_available removal and xri -> xrires move Wed Aug 16 14:09:55 PDT 2006 Josh Hoyt * openid.test.consumer -> openid.test.test_consumer Wed Aug 16 13:44:20 PDT 2006 Josh Hoyt * Remove yadis_available usage from consumer module Tue Aug 8 12:09:13 PDT 2006 dag@janrain.com * More non-wildcard TRs are sane now. Fri Aug 4 18:41:32 PDT 2006 Kevin Turner * consumer.consumer.GenericConsumer._doIdRes: do discovery on IdP-selected identifiers. Closes #1045. Fri Aug 4 17:08:02 PDT 2006 Kevin Turner * consumer.consumer.GenericConsumer._doIdRes: refactoring, part II Fri Aug 4 15:17:17 PDT 2006 Kevin Turner * consumer.consumer.GenericConsumer._doIdRes: refactor part 1 Fri Aug 4 15:04:32 PDT 2006 Kevin Turner * test.consumer.TestComplete.test_idResURLMismatch: add required fields to query Fri Aug 4 14:45:55 PDT 2006 Kevin Turner * openid.test.consumer.TestCheckAuthTriggered: add some required query fields Fri Aug 4 13:29:19 PDT 2006 Kevin Turner * consumer.consumer.GenericConsumer._doIdRes: fail if return_to is not signed Fri Aug 4 13:27:04 PDT 2006 Kevin Turner * test.consumer.TestComplete: add CatchLogs Fri Aug 4 13:19:11 PDT 2006 Kevin Turner * consumer.consumer.GenericConsumer._doIdRes: fix for openid.identity-is-signed assertion and more tests for that in test.consumer Fri Aug 4 12:12:22 PDT 2006 Kevin Turner * whitespace normalization Fri Aug 4 12:06:24 PDT 2006 Kevin Turner * consumer.consumer: replace *all* occurances of openIDDiscover with discoverURL Wed Aug 2 17:05:31 PDT 2006 Josh Hoyt * Don't run SHA256 association test unless SHA256 is available Wed Aug 2 16:59:36 PDT 2006 Josh Hoyt * Move redirect URL and form markup generation to message object Wed Aug 2 16:44:00 PDT 2006 Josh Hoyt * Add tests for server-side association negotiation with different supported types Wed Aug 2 16:42:46 PDT 2006 Josh Hoyt * Remove unused extra_args field and use message object to send standard arguments in AuthRequest Wed Aug 2 16:41:48 PDT 2006 Josh Hoyt * Let the user of the Message object set whether added arguments should default to signed or unsigned Wed Aug 2 16:30:40 PDT 2006 Josh Hoyt * Add functionality to consumer.AuthRequest to output a HTML form or just get the dictionary of form values Wed Aug 2 16:28:52 PDT 2006 Josh Hoyt * Re-name discovery function to make it easier to understand (openid.consumer.consumer.openIDDiscover -> openid.consumer.consumer.discoverURL) Wed Aug 2 16:26:48 PDT 2006 Josh Hoyt * Make the negotiator that the server or consumer gets a *copy* of the default negotiator, not the default negotiator itself Tue Jul 25 19:25:28 PDT 2006 Kevin Turner * consumer.consumer.AuthRequest.redirectURL: allow request without identity Thu Jul 27 15:06:24 PDT 2006 chowells@janrain.com * Pass the association type to the association creator in the server Thu Jul 27 15:06:07 PDT 2006 chowells@janrain.com * Correct argument order in association logic in server. Thu Jul 27 10:41:56 PDT 2006 chowells@janrain.com * Handle fetcher response of None in consumer._getAssociation Tue Jul 25 17:59:24 PDT 2006 Kevin Turner * consumer.discover.OpenIDServiceEndpoint: discover server endpoints for IdP identifiers Tue Jul 25 17:24:05 PDT 2006 Josh Hoyt * Added simple registration request/response to example consumer Tue Jul 25 16:42:19 PDT 2006 Josh Hoyt * Convert to RFC3986 URI normalization instead of the ad-hoc OpenID 1.0 mechanism. Tue Jul 25 15:06:27 PDT 2006 Kevin Turner * [API] server.server.CheckIDRequest.answer: add identity parameter, for use with IdP-driven identity selection. Tue Jul 25 14:33:58 PDT 2006 Kevin Turner * server.server.CheckIDRequest.fromQuery(): make 'identity' optional Mon Jul 24 14:21:48 PDT 2006 Josh Hoyt * Added a message indicating how to support SHA256 Mon Jul 24 11:22:04 PDT 2006 cygnus@janrain.com * BUGFIX: Fixed nonce-handling in FileStore for empty server_url, added test Thu Jul 20 14:19:50 PDT 2006 Josh Hoyt * Make SHA256-related tests depend on SHA256 being available Thu Jul 20 14:11:56 PDT 2006 Josh Hoyt * Added stub functions for when sha256 is not available Thu Jul 20 14:03:54 PDT 2006 Josh Hoyt * Added support for HMAC-SHA256 and DH-SHA256 in the consumer Wed Jul 19 17:03:30 PDT 2006 Josh Hoyt * make Association support HMAC-SHA1 and HMAC-SHA256 Wed Jul 19 15:49:23 PDT 2006 Josh Hoyt * Add SHA256 support if available Tue Jul 18 16:16:51 PDT 2006 Josh Hoyt * plaintext->no-encryption and add association session negotiator Tue Jul 18 14:43:04 PDT 2006 Josh Hoyt * Added answerUnsupported method to association request (openid-2.0-06 section 7.4.5 support for server) Tue Jul 18 15:02:11 PDT 2006 chowells@janrain.com * fix typo in message.py Tue Jul 18 13:28:33 PDT 2006 Josh Hoyt tagged OpenID 2.0 M1 Tue Jul 18 12:59:22 PDT 2006 Josh Hoyt * sreg-related updates Tue Jul 18 12:58:38 PDT 2006 Josh Hoyt * Remove unused import Tue Jul 18 12:36:06 PDT 2006 Josh Hoyt * Take namespace mapping code out of Message and use it in the server Tue Jul 18 10:41:52 PDT 2006 Josh Hoyt * Fix invocation of authreq.addExtensionArg in the consumer test Tue Jul 18 10:40:36 PDT 2006 Josh Hoyt * Add get, getNS and update to the API for Message Tue Jul 18 10:39:19 PDT 2006 Josh Hoyt * Fix bug where signed fields were not being noted in Message object Tue Jul 18 10:38:45 PDT 2006 Josh Hoyt * Documentation for Message object Tue Jul 18 10:32:32 PDT 2006 Josh Hoyt * Add warnings for non-URI namespaces and automatically fix namespace for sreg Mon Jul 17 13:10:20 PDT 2006 Josh Hoyt * Added Message abstraction and use instead of ExtensionCollection in RP code Fri Jul 14 14:03:41 PDT 2006 Josh Hoyt * Documentation for ExtensionCollection Thu Jul 13 14:57:18 PDT 2006 Josh Hoyt * remove enumerate, since it breaks 2.2 Thu Jul 13 14:52:28 PDT 2006 Josh Hoyt * Added extensions module for handling namespace mappings Thu Jul 13 12:00:51 PDT 2006 Josh Hoyt * Added extension namespaces to consumer Wed Jul 12 15:01:29 PDT 2006 Josh Hoyt * Check for fields required by the spec in check_authentication Wed Jul 12 14:56:57 PDT 2006 Josh Hoyt * Added nonce to successful checkid responses Wed Jul 12 13:40:38 PDT 2006 Josh Hoyt * Server-generated and one-way nonces Fri Aug 18 20:12:49 PDT 2006 Kevin Turner tagged release-1.1.2-rc1 Fri Aug 18 20:12:28 PDT 2006 Kevin Turner * Set version number to 1.1.2-rc1 Fri Aug 18 15:58:26 PDT 2006 Kevin Turner * consumer.GenericConsumer._doIdRes: check server_id2 against endpoint.getServerID() because delegate is often None. Fri Aug 18 20:05:01 PDT 2006 Kevin Turner * MANIFEST.in: add NEWS Fri Aug 18 19:49:34 PDT 2006 Kevin Turner * admin/makedoc: add openid.dh and openid.consumer.discover Fri Aug 18 19:47:00 PDT 2006 Kevin Turner * NEWS: update for 1.1.2 Fri Aug 18 19:45:00 PDT 2006 Kevin Turner * consumer.consumer.SuccessResponse.__doc__: mention where to find the CanonicalID Fri Aug 18 19:41:38 PDT 2006 Kevin Turner * consumer.discover.OpenIDServiceEndpoint: document a few attributes, now that they are part of the public interface. Fri Aug 18 19:38:42 PDT 2006 Kevin Turner * consumer.discover.OpenIDServiceEndpoint.getServerID: when there is no delegate, use CanonicalID. as the 2.0 spec actually says something about this. Fri Aug 18 16:21:02 PDT 2006 Kevin Turner * examples/consumer.py: add CanonicalID for i-names Fri Aug 18 16:00:27 PDT 2006 Kevin Turner * consumer.consumer.SuccessResponse: document endpoint attribute Fri Aug 18 15:57:04 PDT 2006 Kevin Turner * consumer.Consumer.begin: remove "URL" from an error message. (because xri.) Thu Aug 17 15:01:45 PDT 2006 Josh Hoyt * remove token, replace with endpoint object Tue Aug 8 12:14:20 PDT 2006 Josh Hoyt tagged 1.1.1 + XRI + bugfixes Thu Aug 17 15:22:03 PDT 2006 Kevin Turner * test.test_discover: update for yadis change, canonicalID has xri:// prefix Wed Aug 16 19:20:19 PDT 2006 Kevin Turner * test.test_discover: add a "if __name__ == '__main__'" thingie Thu Aug 17 12:17:15 PDT 2006 Kevin Turner * merge conflict in consumer.discover.discoverXRI Wed Aug 16 19:39:20 PDT 2006 Kevin Turner * consumer.discover.OpenIDServiceEndpoint: [API] add canonicalID attribute Wed Aug 16 19:18:56 PDT 2006 Kevin Turner * consumer.discover: update for minor changes in xrires.ProxyResolver API. Fri Aug 11 15:59:09 PDT 2006 chowells@janrain.com * Handle XRDSErrors in discoverXRI Mon Aug 7 16:57:26 PDT 2006 dag@janrain.com * Fix trustroot bug for 2-letter tlds Fri Aug 4 17:00:46 PDT 2006 Kevin Turner * store.filestore.FileOpenIDStore.createAuthKey: don't use os.link on cygwin. Fri Aug 4 12:18:18 PDT 2006 Kevin Turner * consumer.consumer.Consumer.begin(): another s/openid_url/user_url/ Fri Aug 4 12:11:07 PDT 2006 Kevin Turner * test.consumer: add test-case-name Fri Aug 4 11:54:37 PDT 2006 Kevin Turner * consumer.consumer.GenericConsumer._doIdRes: document somewhat Fri Aug 4 11:53:15 PDT 2006 Kevin Turner * consumer.consumer.FailureResponse.__repr__: added Wed Aug 2 16:49:03 PDT 2006 Josh Hoyt * Ensure that openid.identity is in the signed list if it's included Mon Jul 31 16:24:27 PDT 2006 Kevin Turner * store.filestore.createAuthKey: close before rename. Fixes a "[Errno 13] Permission denied" in python-win. Thu Jul 27 17:12:58 PDT 2006 Kevin Turner * resolve conflict in consumer example Thu Jul 27 16:02:20 PDT 2006 Kevin Turner * example consumer: update library URL. Closes #1014. Tue Jul 25 15:56:16 PDT 2006 Kevin Turner * test.server: add test-case-name a bit odd to add test-case-name to a test module, but it doesn't follow the test_ convention. Tue Jul 25 16:39:59 PDT 2006 Josh Hoyt * Fix strings in consumer example that said URL instead of identifier Tue Jul 25 14:27:53 PDT 2006 Kevin Turner * server.server: remove unused import Wed Jul 19 15:21:12 PDT 2006 Josh Hoyt * Silence expected warnings for test_discover on Python 2.5 Wed Jul 19 15:07:02 PDT 2006 chowells@janrain.com * Handle error conditions better in complete. Wed Jul 19 14:52:12 PDT 2006 chowells@janrain.com * Handle unicode identifiers (hopefully correctly). Tue Jul 18 10:41:21 PDT 2006 Josh Hoyt * Add unicode-conversion for appendArgs Tue Jul 18 10:56:34 PDT 2006 Kevin Turner * resolve conflict in consumer.Consumer.begin Thu Jul 6 16:20:35 PDT 2006 chowells@janrain.com * catch HTTPFetchingError, and wrap in DiscoveryFailure Wed Jul 12 13:42:45 PDT 2006 Josh Hoyt tagged before 2.0 Mon Jul 3 11:34:58 PDT 2006 Kevin Turner * s/letters/ascii_letters/ Thanks to Waldemar Kornewald. Mon Jun 19 12:11:27 PDT 2006 dag@janrain.com * Fix 1013 - handle query is None in ProtocolError Tue Jun 13 16:38:41 PDT 2006 Kevin Turner * consumer.consumer.Consumer.begin: enable XRI support Tue Jun 13 16:37:31 PDT 2006 Kevin Turner * consumer.discover.discoverXRI: added Tue Jun 13 16:35:36 PDT 2006 Kevin Turner tagged before_XRI Tue Jun 13 16:32:27 PDT 2006 Kevin Turner * consumer.discover: remove unused import Tue Jun 13 16:31:14 PDT 2006 Kevin Turner * consumer.discover: add test-case-name Tue May 23 10:57:48 PDT 2006 dag@janrain.com * close filehandle in createAuthKey Mon May 22 16:51:29 PDT 2006 dag@janrain.com * encode values UTF8 in OpenIDResponse.encodeToURL() Mon May 22 16:20:07 PDT 2006 dag@janrain.com * UTF-8 encode unicode values in seqToKV Tue May 16 15:01:41 PDT 2006 Josh Hoyt * BUGFIX: Added a couple of trust root domain name special cases Mon May 15 11:08:59 PDT 2006 dag@janrain.com * Typo fix: class DisccoveryFailure Thu May 11 15:15:52 PDT 2006 Kevin Turner tagged release-1.1.1 Thu May 11 15:15:35 PDT 2006 Kevin Turner * Set version number to 1.1.1 Thu May 11 13:05:49 PDT 2006 Kevin Turner * test.consumer: added tests for consumer.consumer.GenericConsumer._checkNonce This replaces test.consumer.NonceIdResTest, which was not actually testing anything related to nonces at all. (While it's true that each attempt was resulting in a Failure result, the failure was due to the lack of a signature, and not anything to do with the properties of the nonces.) I didn't preserve test_twoNonce, shout if that's a problem. Thu May 11 10:31:26 PDT 2006 Josh Hoyt * Added more tests for behaviours of Consumer.complete and a little bit of begin() Wed May 10 17:08:36 PDT 2006 Josh Hoyt * Added rudimentary tests for Consumer (not GenericConsumer) Wed May 10 16:44:38 PDT 2006 Josh Hoyt * whitespace Wed May 10 16:03:47 PDT 2006 Josh Hoyt * Added _parseAssociation tests for GenericConsumer Wed May 10 15:31:49 PDT 2006 Josh Hoyt * Added openid.consumer.consumer.SuccessResponse test case Wed May 10 15:19:41 PDT 2006 Josh Hoyt * Added more consumer tests, esp for GenericConsumer.complete and GenericConsumer._processCheckAuthResponse. Wed May 10 15:16:40 PDT 2006 Josh Hoyt * whitespace Wed May 10 15:15:13 PDT 2006 Josh Hoyt * BUGFIX: #1001 invalidate_handle when is_valid is false Wed May 10 14:20:12 PDT 2006 Josh Hoyt * Added test cases for GenericConsumer.complete * Test error and cancel modes * Test bad token Wed May 10 13:39:03 PDT 2006 Josh Hoyt * Change data driven test helper to avoid having a method called runTest so that the unit test framework does not attempt to instantiate the data-driven tests Wed May 10 13:27:25 PDT 2006 Josh Hoyt * Add test for different association session types and convert association serialization test to unittest Wed May 10 13:04:16 PDT 2006 Kevin Turner * openid.test.consumer: add TestAuthRequest Wed May 10 13:03:37 PDT 2006 Kevin Turner * ignore _trial_temp Wed May 10 10:27:15 PDT 2006 cygnus@janrain.com * BUGFIX: Fixed join() syntax in addExtensionArg Tue May 9 14:41:55 PDT 2006 cygnus@janrain.com * Fixed Consumer docstring regarding redirectURL Tue May 9 17:47:06 PDT 2006 Kevin Turner tagged release-1.1.0 Tue May 9 17:46:51 PDT 2006 Kevin Turner * Set version number to 1.1.0 Tue May 9 17:33:15 PDT 2006 Kevin Turner tagged release-1.1.0-rc2 Tue May 9 17:33:00 PDT 2006 Kevin Turner * Set version number to 1.1.0-rc2 Tue May 9 16:57:05 PDT 2006 Kevin Turner tagged release-1.1.0-rc1 Tue May 9 16:56:50 PDT 2006 Kevin Turner * Set version number to 1.1.0-rc1 Tue May 9 17:24:53 PDT 2006 Kevin Turner * examples/server.py: use simpler form for setup_url with immediate mode Tue May 9 16:55:38 PDT 2006 Kevin Turner * admin/tagrelease: release tags are prefixed with "release-" Tue May 9 16:25:54 PDT 2006 Kevin Turner * consumer.consumer: doc typo Tue May 9 16:25:28 PDT 2006 Kevin Turner * consumer.consumer: doc typo Tue May 9 16:25:06 PDT 2006 Kevin Turner * server.server: doc typo Tue May 9 16:02:58 PDT 2006 Kevin Turner * NEWS: Upgrading: Servers, clear your store. Tue May 9 16:00:39 PDT 2006 Kevin Turner * NEWS: Server API Tue May 9 16:00:00 PDT 2006 Kevin Turner * NEWS: reflow Tue May 9 15:59:00 PDT 2006 Kevin Turner * NEWS.urljr: s/store/fetcher/ Tue May 9 15:58:04 PDT 2006 Kevin Turner * server.server.DiffieHellmanServerSession: raise ProtocolError, not ValueError Tue May 9 14:39:39 PDT 2006 cygnus@janrain.com * Fixed docstring Consumer regarding session object Tue May 9 14:09:19 PDT 2006 dag@janrain.com * trust_root default to return_to in fromQuery Tue May 9 11:12:51 PDT 2006 Josh Hoyt * Added meat to NEWS file Tue May 9 10:31:28 PDT 2006 Kevin Turner * consumer.discover.DiscoveryFailure: slightly more useful docstring. Tue May 9 10:30:33 PDT 2006 Kevin Turner * consumer.consumer.SuccessResponse.getReturnTo: have accessor return None instead of raising KeyError because KeyError is just weird for an accessor. Tue May 9 10:26:08 PDT 2006 Kevin Turner * consumer.consumer.Consumer.begin: epydoc fix on @raises Mon May 8 15:13:52 PDT 2006 Josh Hoyt * Add documentation for addExtensionArg Mon May 8 15:06:18 PDT 2006 Josh Hoyt * Change the module documentation to match the requirement for sessions and other small usage changes Mon May 8 14:46:23 PDT 2006 Josh Hoyt * Further consumer documentation cleanup and cross-referencing Mon May 8 14:28:31 PDT 2006 Josh Hoyt * Documentation cleanup (adding links, fixing names) Mon May 8 14:06:06 PDT 2006 Josh Hoyt * Document Consumer.complete and the response objects Mon May 8 13:49:51 PDT 2006 Josh Hoyt * Export constant names in __all__ from consumer module Mon May 8 13:45:27 PDT 2006 Josh Hoyt * Add missing import of DiscoveryFailure Mon May 8 13:29:23 PDT 2006 Josh Hoyt * reinstate the constants used for status on the consumer's response objects Mon May 8 13:12:50 PDT 2006 Josh Hoyt * Add documentation for Consumer.beginWithoutDiscovery and change the parameter name to match the Ruby library Mon May 8 13:03:51 PDT 2006 Josh Hoyt * Add documentation for Consumer.begin and make it raise DiscoveryFailure whenever it fails. Mon May 8 13:03:04 PDT 2006 Kevin Turner * server.server.DiffieHellmanServerSession: docstring tweaks Mon May 8 11:03:16 PDT 2006 Kevin Turner * consumer.consumer.GenericConsumer.complete: raise TypeError when query contains lists. For #819. Mon May 8 11:01:08 PDT 2006 Kevin Turner * consumer.consumer: add test-case-name Fri May 5 15:17:56 PDT 2006 Kevin Turner * s/OpenIDServer/Server/ Fri May 5 15:11:58 PDT 2006 Kevin Turner * s/OpenIDConsumerResponse/Response/ Fri May 5 15:10:08 PDT 2006 Kevin Turner * s/OpenIDAuthRequest/AuthRequest/ Fri May 5 15:08:32 PDT 2006 Kevin Turner * s/GenericOpenIDConsumer/GenericConsumer/ Fri May 5 14:59:21 PDT 2006 Kevin Turner * s/OpenIDConsumer/Consumer/ Fri May 5 14:04:00 PDT 2006 Josh Hoyt * Documentation for OpenID Consumer and OpenID Consumer.__init__ Fri Apr 28 14:16:23 PDT 2006 Josh Hoyt * Update version information setting script and format of the token to replace Fri May 5 13:36:36 PDT 2006 Kevin Turner * admin/combo-setup.py: added for invoking setup.py in urljr, yadis, and openid Fri May 5 10:07:18 PDT 2006 Kevin Turner * server.server.ProtocolError.encodeToURL: parameter's name is openid.error Wed May 3 15:45:06 PDT 2006 Kevin Turner * consumer.consumer.GenericOpenIDConsumer._parseAssociation: s/PlainTextSession/PlainTextConsumerSession/ (static analysis caught this.) (this code does not have unit test coverage.) Wed May 3 15:43:11 PDT 2006 Kevin Turner * consumer.DiffieHellmanConsumerSession.getRequest: dh should be "self.dh" here, as "dh" is not defined in that scope. (static analysis caught this.) (this code does not have unit test coverage.) Tue May 2 12:32:11 PDT 2006 cygnus@janrain.com * FIX: Added server_url parameter to _processCheckAuthResponse Fri Apr 28 18:10:30 PDT 2006 Kevin Turner tagged release-1.2.0pre1 Fri Apr 28 18:08:47 PDT 2006 Kevin Turner * remove examples/newapi.py Fri Apr 28 17:59:29 PDT 2006 Kevin Turner * update distutils things for admin/ and test/ move Fri Apr 28 17:53:30 PDT 2006 Kevin Turner * README: use dev@lists for contact address Fri Apr 28 11:09:54 PDT 2006 Kevin Turner * move test/ to openid.test. For #967 Fri Apr 28 11:01:57 PDT 2006 Kevin Turner * move scripts in to admin/ Thu Apr 27 14:48:48 PDT 2006 dag@janrain.com * trust_root defaults to return_to Thu Apr 27 14:39:09 PDT 2006 Josh Hoyt * Added script to set the version number of the library Thu Apr 27 14:32:08 PDT 2006 Josh Hoyt * Set the version string to a placeholder and add version_info to the openid package Thu Apr 27 14:20:46 PDT 2006 Josh Hoyt * Make the examples tell the user about installing the library if it cannot be imported. Thu Apr 27 14:12:18 PDT 2006 Josh Hoyt * Call Exception constructor for EncodingError in server Thu Apr 27 14:11:21 PDT 2006 Josh Hoyt * Fix consumer session cleanup code Thu Apr 27 14:10:10 PDT 2006 Josh Hoyt * Use the proper session namespace for the Yadis discovery object used by the OpenID consumer Thu Apr 27 14:08:23 PDT 2006 Josh Hoyt * Improve the server example's text for requests to the endpoint URL with no openid arguments Thu Apr 27 14:07:42 PDT 2006 Josh Hoyt * Make the example server properly handle ProtocolError and cases with no OpenID arguments. Wed Apr 26 16:40:51 PDT 2006 Kevin Turner * server.server.OpenIDResponse: add needsSigning, fold in addFields methods from CheckIDResponse, remove CheckIDResponse subclass. Wed Apr 26 16:21:30 PDT 2006 Kevin Turner * whitespace Wed Apr 26 14:48:55 PDT 2006 Kevin Turner * resolve conflict Wed Apr 26 09:41:28 PDT 2006 Josh Hoyt * Fix error messages in the case of check_authentication test failures Wed Apr 26 16:08:24 PDT 2006 Josh Hoyt * Abstract out association session types Wed Apr 26 16:06:47 PDT 2006 Josh Hoyt * Whitespace Wed Apr 26 11:58:50 PDT 2006 Josh Hoyt * Add tests for bad nonces Wed Apr 26 11:46:42 PDT 2006 Josh Hoyt * Added nonce to return_to to fix replay attack vulnerability Wed Apr 26 11:45:42 PDT 2006 Josh Hoyt * Fix OpenIDAuthRequest.fromQuery's signed argument extraction Mon Apr 24 12:01:20 PDT 2006 chowells@janrain.com * remove sort tag in docs for the time being. Mon Apr 24 11:52:11 PDT 2006 chowells@janrain.com * Hey look, those don't exist anymore, anyway. Remove docs. Mon Apr 24 11:24:39 PDT 2006 chowells@janrain.com * Simplified docs for setup needed case. Mon Apr 24 11:11:39 PDT 2006 chowells@janrain.com * Simplify failure documentation Mon Apr 24 11:04:51 PDT 2006 chowells@janrain.com * Add docs for cancelled flag Mon Apr 24 11:03:25 PDT 2006 chowells@janrain.com * Removed unused flags from the docs Mon Apr 24 11:02:21 PDT 2006 chowells@janrain.com * Simplify docs for SUCCESS flag Mon Apr 24 10:55:30 PDT 2006 chowells@janrain.com * Remove placeholders from use section of docs Fri Apr 21 11:39:28 PDT 2006 chowells@janrain.com * Rewording docs Fri Apr 21 11:25:56 PDT 2006 chowells@janrain.com * Update docs to describe how yadis is used Thu Apr 20 16:19:29 PDT 2006 chowells@janrain.com * Replace long less-accurate docs with shorter ones Thu Apr 20 15:42:05 PDT 2006 chowells@janrain.com * Add a paragraph to docs Thu Apr 20 15:41:49 PDT 2006 chowells@janrain.com * properly format doc display Thu Apr 20 15:10:02 PDT 2006 chowells@janrain.com * remove outdated paragraph Thu Apr 20 14:05:16 PDT 2006 chowells@janrain.com * reword paragraph Thu Apr 20 10:57:29 PDT 2006 chowells@janrain.com * reword docs Thu Apr 20 10:54:43 PDT 2006 chowells@janrain.com * Reword and simplify doc Thu Apr 20 10:50:04 PDT 2006 chowells@janrain.com * update and clarify doc paragraph Thu Apr 20 10:49:20 PDT 2006 chowells@janrain.com * Fix class name in docs Thu Apr 20 10:45:13 PDT 2006 chowells@janrain.com * Remove doc paragraph Thu Apr 20 10:43:33 PDT 2006 chowells@janrain.com * Add a sentence to the docs Thu Apr 20 10:41:04 PDT 2006 chowells@janrain.com * Add a doc paragraph Thu Apr 13 18:50:54 PDT 2006 chowells@janrain.com * enhance discovery placeholder Wed Apr 12 16:16:31 PDT 2006 chowells@janrain.com * Placeholder for discovery Tue Apr 11 13:20:26 PDT 2006 chowells@janrain.com * Simplify included store descriptions Fri Apr 21 16:10:07 PDT 2006 Josh Hoyt * Add log message when library is operating without Yadis sup Fri Apr 21 16:05:55 PDT 2006 Josh Hoyt * Make consumer work in the absense of Yadis Fri Apr 21 16:05:33 PDT 2006 Josh Hoyt * Remove unused import from consumer test Fri Apr 21 15:56:09 PDT 2006 Josh Hoyt * Make the discover module function with and without Yadis. Fri Apr 21 11:53:06 PDT 2006 Kevin Turner * server.server.OpenIDServer.handleRequest: small bugfix for unhandled request types Fri Apr 21 11:36:54 PDT 2006 Kevin Turner * server.server.CheckAuthRequest.fromQuery: add comment linking to Brad's "check_authentication is weird" post Thu Apr 20 16:17:20 PDT 2006 Josh Hoyt * Fix #972 trust root bug logging into mylid.net with myopenid.com Thu Apr 20 15:48:06 PDT 2006 Josh Hoyt * Handle DiscoveryFailure from Yadis library in consumer example Thu Apr 20 15:36:11 PDT 2006 Josh Hoyt * Update consumer example to use new session-based API Thu Apr 20 15:35:31 PDT 2006 Josh Hoyt * Fix invocation of normalizeUrl from session OpenID consumer Thu Apr 20 15:34:57 PDT 2006 Josh Hoyt * Fix session OpenID consumer's use of _token name Thu Apr 20 11:26:11 PDT 2006 chowells@janrain.com * fix #932 by using a default value of '' Thu Apr 20 15:19:24 PDT 2006 Josh Hoyt * Split out session management from OpenID logic Thu Apr 20 14:23:47 PDT 2006 Josh Hoyt * Re-name sessionKeyPrefix attribute to be more consistent with library style Thu Apr 20 14:13:06 PDT 2006 Josh Hoyt * Add tests for fetchers raising exceptions and for bug in check_authentication request building Thu Apr 20 14:12:30 PDT 2006 Josh Hoyt * Remove session-related cruft from tests Thu Apr 20 14:11:42 PDT 2006 Josh Hoyt * Remove unused equality checking methods Thu Apr 20 13:53:43 PDT 2006 Josh Hoyt * Catch HTTPFetchingErrors when they are raised Thu Apr 20 13:47:12 PDT 2006 Josh Hoyt * Move response objects and make them have a common superclass. Also rename CancelledResponse to CancelResponse Thu Apr 20 13:39:31 PDT 2006 Josh Hoyt * Use ValueError in _splitToken to indicate failure Thu Apr 20 13:32:30 PDT 2006 Josh Hoyt * Move _createNonce method Thu Apr 20 13:31:49 PDT 2006 Josh Hoyt * Remove unused method (_constructRedirect) Thu Apr 20 13:31:19 PDT 2006 Josh Hoyt * Remove unused class attributes from consumer Thu Apr 20 13:23:51 PDT 2006 Josh Hoyt * Make sure that we only send args starting with openid. when we call check_authentication Thu Apr 20 13:23:20 PDT 2006 Josh Hoyt * Added comment in _checkAuth Thu Apr 20 13:15:33 PDT 2006 Josh Hoyt * Pass session in as argument to consumer's methods (sync up with Ruby API) Thu Apr 20 13:09:10 PDT 2006 Josh Hoyt * Add extension argument handling to SuccessResponse Thu Apr 20 11:53:06 PDT 2006 Josh Hoyt * Update consumer example to use status objects instead of tuples Thu Apr 20 11:46:49 PDT 2006 Josh Hoyt * Convert return values of completeAuth to be objects Thu Apr 20 11:27:00 PDT 2006 Josh Hoyt * Begin refactor of completeAuth. Wed Apr 19 13:44:58 PDT 2006 Kevin Turner * server.server.Decoder.decode: raise TypeError early if I get a dict-of-lists. Fixes #819. Wed Apr 19 12:45:19 PDT 2006 Kevin Turner * rename examples/server2.py to examples/server.py Wed Apr 19 12:44:38 PDT 2006 Kevin Turner * remove old server example Wed Apr 19 12:34:51 PDT 2006 Kevin Turner * test/server.TestDecode: test error cases for check_authentication. Fixes #932. Wed Apr 19 12:33:45 PDT 2006 Kevin Turner * server.server: add example to Extensions section Wed Apr 19 11:10:13 PDT 2006 Kevin Turner * server.server.CheckIdRequest.answer: immediate=False for user_setup_url Tue Apr 18 18:57:37 PDT 2006 Kevin Turner * server.server.CheckIDRequest.answer: immediate=False for user_setup_url Tue Apr 18 18:55:58 PDT 2006 Kevin Turner * server.server: docstrings on upgrading and extensions Tue Apr 18 14:26:46 PDT 2006 Josh Hoyt * Begin sync-up with the Ruby API: change beginAuth to begin() and get the redirect URL from the response to that call Tue Apr 18 13:59:49 PDT 2006 Josh Hoyt * Remove replace parameter to _getAssociation, because it's always called with True Tue Apr 18 13:21:30 PDT 2006 Josh Hoyt * Let the DiffieHellman object tell us if we're using the default values Tue Apr 18 12:54:59 PDT 2006 Josh Hoyt * Add method to dh object to check if it's using the OpenID default values Mon Apr 17 16:20:51 PDT 2006 dag@janrain.com * correctly generate setup_url Mon Apr 17 15:52:41 PDT 2006 Josh Hoyt * Factor out common logic between KV form requests from the consumer Mon Apr 17 13:55:41 PDT 2006 Josh Hoyt * Python 2.2 compatibility - no basestring class Mon Apr 17 13:53:30 PDT 2006 Josh Hoyt * Remove crufty (discovery-related) imports from consumer module Mon Apr 17 13:49:56 PDT 2006 Josh Hoyt * make normalizeUrl return None for anything but a basestring instance Mon Apr 17 13:48:37 PDT 2006 Josh Hoyt * Remove cruft from consumer (remove discovery completely) Mon Apr 17 13:47:58 PDT 2006 Josh Hoyt * Fix message for no services found for URL in consumer example Mon Apr 17 13:45:31 PDT 2006 Josh Hoyt * remove getDiscovery function from consumer example Mon Apr 17 12:23:23 PDT 2006 Josh Hoyt * Fix the discovery in the consumer example Mon Apr 17 12:00:38 PDT 2006 Josh Hoyt * Remove explicit fetcher-passing (use urljr's default fetcher) Mon Apr 17 09:12:49 PDT 2006 Josh Hoyt * Change discovery API to return identity URL as well as service list Mon Apr 17 09:11:55 PDT 2006 Josh Hoyt * Remove .extensions cruft Fri Apr 14 12:22:56 PDT 2006 Kevin Turner * server.server.CheckAuthRequest.fromQuery: set invalidate_handle (whaddya know, some of those "XXX - test that too" comments in the tests were actually important.) Fri Apr 14 10:29:01 PDT 2006 Kevin Turner * resolve conflict with server.AssociateRequest dh_modulus / dh_gen patches I'll be wanting to refactor my version a bit to make it cleaner to read, but need to quash the conflict first. Fri Apr 14 10:18:43 PDT 2006 Kevin Turner * server.server.AssociateRequest.fromQuery: use non-default DH modulus and gen when provided. Fixes #923. Thu Apr 13 15:30:21 PDT 2006 Kevin Turner * test/server.TestAssociate.test_dh: s/dh/consumer_dh/ to be clear Thu Apr 13 15:09:54 PDT 2006 Josh Hoyt * Added session support and new API support for consumer example Thu Apr 13 13:56:41 PDT 2006 Josh Hoyt * Whitespace Thu Apr 13 13:26:32 PDT 2006 Josh Hoyt * Ported discovery tests and fixed revealed bugs Thu Apr 13 09:45:11 PDT 2006 Josh Hoyt * Added tests for HTML discovery Thu Apr 13 09:44:02 PDT 2006 Josh Hoyt * Make default data-driven test instantiation more versatile Thu Apr 13 09:19:55 PDT 2006 Josh Hoyt * Add test for DiscoveryFailure with x-xrds-location Thu Apr 13 09:19:28 PDT 2006 Josh Hoyt * Docs for test_discover Thu Apr 13 09:07:08 PDT 2006 Josh Hoyt * Add datadriven module for data-driven test case helper code Wed Apr 12 14:59:09 PDT 2006 Josh Hoyt * Remove discovery from the consumer tests and consumer module. Wed Apr 12 12:01:21 PDT 2006 Josh Hoyt * Remove unused parameter from openid.consumer.parse.openIDDiscover, and also make it return None for delegate if its not present It'd be even better if I wrote a test. Thu Apr 13 14:34:51 PDT 2006 Kevin Turner * server.server.OpenIDServer: docstrings Thu Apr 13 14:32:24 PDT 2006 Kevin Turner * server.__doc__: explicitly point to server.server Thu Apr 13 14:31:26 PDT 2006 Kevin Turner * whitespace Thu Apr 13 14:30:46 PDT 2006 Kevin Turner * server.server.IEncodable: docstrings (oh wait we don't actually use Interfaces) Thu Apr 13 14:24:50 PDT 2006 Kevin Turner * server.server.SigningEncoder.encode: add missing @returntype Thu Apr 13 14:24:12 PDT 2006 Kevin Turner * server.server.EncodingError.response: docstring Thu Apr 13 14:23:20 PDT 2006 Kevin Turner * server.server: docstrings for remaining Exceptions Thu Apr 13 14:18:29 PDT 2006 Kevin Turner * server.server.ProtocolError: docstrings Thu Apr 13 14:09:29 PDT 2006 Kevin Turner * server.server.CheckIDRequest: move trust root checking from .answer to constructor. Fixes #947. I first thought that checking to see if the return_to is within the trust_root is premature here, a logic-not-decoding thing. But it was argued that this is really part of data validation. A request with an invalid trust_root/return_to is broken regardless of application, right? Thu Apr 13 11:14:23 PDT 2006 Kevin Turner * server.server.Decoder: docstrings Also just use OPENID_PREFIX instead of self.prefix, for consistency with the rest of the module. Less customizable, but entirely reasonable for something in the "openid" package to do. Thu Apr 13 10:39:08 PDT 2006 Kevin Turner * server.server: typo clean-up Thu Apr 13 10:36:31 PDT 2006 Kevin Turner * serve.server.Encoder and SigningEncoder: docstrings Tue Apr 11 14:22:19 PDT 2006 Josh Hoyt * Use dh_modulus and dh_gen parameters if they are supplied in an associate request to the server Tue Apr 11 14:18:11 PDT 2006 Josh Hoyt * Make diffie-hellman object complain if you try to give it modulus without generator or vice-versa Tue Apr 11 10:37:57 PDT 2006 Josh Hoyt * Convert kvform test to pyunit and fail if there is a colon in the key name for seqToKV Wed Apr 12 20:14:09 PDT 2006 Kevin Turner * server.server: misc docstring tweaks Wed Apr 12 20:11:05 PDT 2006 Kevin Turner * server.server.Signatory: docstrings Wed Apr 12 18:33:21 PDT 2006 Kevin Turner * server.server.WebResponse: docstrings Wed Apr 12 18:27:51 PDT 2006 Kevin Turner * server.server.Signatory: s/(dumb|normal)_key/_(\1)_key)/ this attribute isn't really anything the public wants to know about. Wed Apr 12 16:44:55 PDT 2006 Kevin Turner * server.server.CheckIDResponse.update: fixorate namespace handling Wed Apr 12 16:43:43 PDT 2006 Kevin Turner * server.server.CheckIDResponse: docstrings Wed Apr 12 15:57:10 PDT 2006 Kevin Turner * server.server.CheckIDResponse.addField: do not add the namespace seperator to the key when there is no namespace Wed Apr 12 15:33:57 PDT 2006 Kevin Turner * serve.server.OpenIDResponse: docstrings Wed Apr 12 15:26:33 PDT 2006 Kevin Turner * server.server.CheckIDRequest.__doc__: correct mismatched braces Wed Apr 12 15:25:34 PDT 2006 Kevin Turner * openid.server.server: tweaks to module docstring Tue Apr 11 18:41:29 PDT 2006 Kevin Turner * server.server.CheckIDRequest.answer: build setup_url from server_url [API] As requested. Tue Apr 11 18:39:29 PDT 2006 Kevin Turner * server.server.CheckIDRequest: docstrings Tue Apr 11 18:26:03 PDT 2006 Kevin Turner * server.server.CheckIDRequest.fromQuery: simplify a bit. Tue Apr 11 15:45:39 PDT 2006 Kevin Turner * test/server: remove old commented tests, as I believe they've been ported. Thu Apr 6 16:13:56 PDT 2006 Kevin Turner * server.server.AssociateRequest: docstrings Thu Apr 6 16:12:24 PDT 2006 Kevin Turner * server.server.CheckAuthRequest: docstrings Thu Apr 6 14:19:33 PDT 2006 Kevin Turner * server.server.OpenIDRequest.__doc__ Thu Apr 6 14:18:55 PDT 2006 Kevin Turner * server.server.__doc__ Mon Apr 10 15:42:24 PDT 2006 Josh Hoyt * Change extension mechanism to use extra Type tags instead of openid:Extension. Add test for OpenID Yadis endpoint parsing. Fri Apr 7 13:38:31 PDT 2006 Josh Hoyt * XrdsError -> XRDSError Thu Apr 6 15:59:56 PDT 2006 Josh Hoyt * Import xrds error from new location in Yadis library Thu Apr 6 14:04:35 PDT 2006 cygnus@janrain.com * Fixed protocol error instantiations Wed Apr 5 14:26:02 PDT 2006 Josh Hoyt * Switch to new Yadis API (including new service endpoint object) Mon Apr 3 16:59:51 PDT 2006 Kevin Turner * server.server.IEncodable comment Mon Apr 3 16:59:14 PDT 2006 Kevin Turner * server.server: make ProtocolErrors Encodable, move encodeTo* to methods [API] Response and ProtocolError now implement Encodable, so they have encodeTo* methods rather than the encodeTo*(response) module-level functions. (I still think it wants adapters so protocol wire-level stuff doesn't get mixed up with the transport-agnostic representation, but we've only got the one transport, so...) Fri Mar 31 15:08:18 PST 2006 Kevin Turner * server.server.CheckIDResponse: methods for adding fields. [API] Fri Mar 31 11:55:48 PST 2006 Kevin Turner * server.server.CheckIDRequest.fromQuery(): do set assoc_handle Thu Mar 30 15:41:51 PST 2006 Josh Hoyt * Added support for new Yadis API Thu Mar 30 14:27:22 PST 2006 Kevin Turner * server.server: no longer expect to see 'openid.' in Response.fields It will be inserted during the encoding when necessary. Thu Mar 30 10:42:16 PST 2006 Kevin Turner * server.server: encoding helpers for frameworks that don't like WebResponse. bool responseIsKvform(response) str encodeToURL(response) str encodeToKVForm(response) bool needsSigning(response) Wed Mar 29 22:07:35 PST 2006 Josh Hoyt * Update the OpenID consumer to match the new Yadis API Wed Mar 29 17:17:18 PST 2006 Kevin Turner * server.server: more exceptions are ProtocolErrors Wed Mar 29 17:16:37 PST 2006 Kevin Turner * server.server.CheckIDRequest.getCancelURL(): added For when you want to be able to get the cancel URL without getting the redirect response. Wed Mar 29 12:44:55 PST 2006 Kevin Turner * s/OpenIDServer2/OpenIDServer/ Wed Mar 29 12:41:23 PST 2006 Kevin Turner * server.server: remove old API Wed Mar 29 12:36:25 PST 2006 Kevin Turner * test/server.py: remove tests for old API Wed Mar 29 12:34:49 PST 2006 Kevin Turner * test/server.py: oops, had two of TestSignatory.test_signDumb Wed Mar 29 12:33:55 PST 2006 Kevin Turner * test/server.py: add remaining tests to new API that covered the old API Wed Mar 29 12:29:51 PST 2006 Kevin Turner * server.CheckIDRequest.fromQuery: raise MalformedReturnURL Tue Mar 28 17:41:10 PST 2006 Kevin Turner * examples/server2.py: updated to new locations of encode/decode Tue Mar 28 17:36:32 PST 2006 Kevin Turner * server.server.CheckIDRequest.answer(): don't sign user_setup_url responses Tue Mar 28 17:25:08 PST 2006 Kevin Turner * server.server: move encode() and decode() to OpenIDServer.encodeResponse() and OpenIDServer.decodeRequest() Tue Mar 28 17:05:52 PST 2006 Kevin Turner * server.server.Signatory.__init__(): assert store is not None Tue Mar 28 16:38:03 PST 2006 Kevin Turner * server.server.SigningEncoder.encode: cleanse The convenience function may take a store, but that's really not what the interface wants to express. Tue Mar 28 16:20:41 PST 2006 Kevin Turner * test.server.TestCheckID: ensure a cancel response doesn't get signed Tue Mar 28 16:19:56 PST 2006 Kevin Turner * server.server.SigningEncoder: added. server.server.encode now uses this. Tue Mar 28 16:15:17 PST 2006 Kevin Turner * server.server.CheckIDResponse.__str__(): include .signed in string Tue Mar 28 16:08:30 PST 2006 Kevin Turner * whitespace normalization Tue Mar 28 14:47:10 PST 2006 Kevin Turner * test/server.TestEncode: test Encoder.encode() rather than server.encode, as server.encode will start using the signed encoder. Tue Mar 28 14:38:30 PST 2006 Kevin Turner * test/server.py: prevent log spewage during tests Mon Mar 27 17:07:08 PST 2006 Kevin Turner * examples/server2: a bit of cleanup Mon Mar 27 16:39:53 PST 2006 Kevin Turner * server.server.Signatory.sign: fix dumb mode signing Mon Mar 27 16:37:25 PST 2006 Kevin Turner * server.server.Signatory: added a bit of logging Mon Mar 27 16:35:49 PST 2006 Kevin Turner * server.server.CheckIDRequest: added __str__ Mon Mar 27 14:43:13 PST 2006 Kevin Turner * server.server.CheckAuthRequest, OpenIDResponse: add __str__ Mon Mar 27 14:42:07 PST 2006 Kevin Turner * server.CheckAuthRequest.fromQuery: hardcode signed openid.mode. # XXX KLUDGE HAX WEB PROTOCoL BR0KENNN # openid.mode is currently check_authentication because that's the # mode of this request. But the signature was made on something with # a different openid.mode. value = "id_res" Mon Mar 27 12:14:05 PST 2006 Kevin Turner * server.server.Signatory: put a (bogus) URL in the store keys This is to keep filestore happy, which really does expect a URL in that key. This is a bit of a kludge, as I don't expect multiple servers to share a store, so perhaps we should adjust the store interface a bit. Mon Mar 27 11:55:55 PST 2006 Kevin Turner * examples/server2.py: now more functional (but not entirely functional -- something is still broken with dumb mode.) Fri Mar 24 14:29:46 PST 2006 Kevin Turner * examples/server2: fix Server2 class name Fri Mar 24 14:24:26 PST 2006 Kevin Turner * examples/server2.py: added (not quite baked yet) Fri Mar 24 11:54:02 PST 2006 Kevin Turner * server.server.Server: don't hardcode signatory class Fri Mar 24 11:51:12 PST 2006 Kevin Turner * server.server.AssociationRequest.answer(): implemented Fri Mar 24 11:46:18 PST 2006 Kevin Turner * s/cleartext/plaintext/ Thu Mar 23 17:11:30 PST 2006 Kevin Turner * server.server: s/cleartext/plaintext/ Thu Mar 23 16:31:28 PST 2006 Kevin Turner * server.server.UntrustedReturnURL.__str__: fix Thu Mar 23 16:29:43 PST 2006 Kevin Turner * server.server.Signatory.createAssociation(): now a public method Thu Mar 23 10:08:12 PST 2006 Kevin Turner * server.server.Server.openid_check_authentication(): implemented Wed Mar 22 16:49:39 PST 2006 Kevin Turner * test/server.TestEncode.test_checkauthReply(): written Wed Mar 22 12:47:03 PST 2006 Kevin Turner * server.server.CheckAuthRequest.answer(): implemented also tweaked the signature of Signatory.verify a bit, as the protocol unpacking should happen earlier, not in Signatory or Association. Tue Mar 21 15:08:43 PST 2006 Kevin Turner * server.server.Signatory.verify(): implemented Tue Mar 21 13:39:54 PST 2006 Kevin Turner * server.server.Signatory.sign(): implemented Tue Mar 21 11:37:52 PST 2006 Kevin Turner * server.Server.handle(): do dispatch Tue Mar 21 11:33:44 PST 2006 Kevin Turner * server.Encoder(): works for checkid Tue Mar 21 11:15:08 PST 2006 Kevin Turner * test/server.py: mark incomplete tests Tue Mar 21 11:13:43 PST 2006 Kevin Turner * server.Decoder: replace getattr dispatch with handlers dict since all the handler methods turned in to one-line calls to other methods, this seemed to make sense. Tue Mar 21 10:55:04 PST 2006 Kevin Turner * server.CheckIDRequest.answer(): implemented Tue Mar 21 10:33:51 PST 2006 Kevin Turner * test/server.py: fix CheckIDRequest constructors Tue Mar 21 10:29:03 PST 2006 Kevin Turner * server.AssociateRequest.fromQuery(): added Tue Mar 21 10:15:40 PST 2006 Kevin Turner * server.Decoder: simplify Tue Mar 21 10:03:46 PST 2006 Kevin Turner * server.CheckIDRequest.fromQuery(): moved from Decoder.decodeCheckId Tue Mar 21 09:52:51 PST 2006 Kevin Turner * openid.server.CheckAuthRequest.fromQuery: added Mon Mar 20 17:10:33 PST 2006 Kevin Turner * openid.server: implemented Decode for checkid Mon Mar 20 16:15:53 PST 2006 Kevin Turner * openid.server: implement stubs to turn Errors into Failures Mon Mar 20 15:52:41 PST 2006 Kevin Turner * openid.server: tests for new server API Mon Mar 20 15:51:21 PST 2006 Kevin Turner tagged 3/20 Server API Base Fri Mar 17 10:41:57 PST 2006 Josh Hoyt * Updated kvform code to ignore blank lines Thu Mar 16 12:32:45 PST 2006 Josh Hoyt * Fix test after pulling patches Thu Mar 16 12:29:26 PST 2006 Josh Hoyt * Resolve conflict Thu Mar 16 12:22:57 PST 2006 Josh Hoyt * Fix case where the application will attempt to continue when the return_to is badly malformed and there is no trust_root specified Wed Mar 15 17:02:31 PST 2006 Kevin Turner * test/server.py: remove unused import Wed Mar 15 17:01:52 PST 2006 Kevin Turner * server API: Move http_method and args from getOpenIDResponse arguments to AppIface. Tue Mar 14 15:47:35 PST 2006 Kevin Turner * NEWS: Added with notes on OpenID 1.2.0. This contains (or will, once it's filled out a little more) information on new features and API changes. Should the details of the API changes be split out in to another Upgrading document? (One would be targeted at sysadmins updating their packages, the other at application developers who need to update their code.) Mon Mar 13 15:00:31 PST 2006 Kevin Turner * consumer.factory: remove Mon Mar 13 14:58:39 PST 2006 Kevin Turner * consumer.OpenIDConsumer API part 2: completeAuth no longer takes token Mon Mar 13 14:25:59 PST 2006 Kevin Turner * consumer API change part 1 -- beginAuth beginAuth now does Yadis discovery and has constructRedirect folded in. (not done yet: removing token from completeAuth) Mon Mar 13 13:23:26 PST 2006 Kevin Turner * test.consumer: all tests test the same class (not some for consumer. and others for factory.) Mon Mar 13 12:07:44 PST 2006 Kevin Turner * consumer: move immediate flag to constructRedirect Mon Mar 13 11:24:55 PST 2006 Kevin Turner * test.consumer: pyunitification Mon Mar 13 10:44:04 PST 2006 Kevin Turner * consumer.._getServerList(): add 'rediscover' parameter, use when server list is exhausted Fri Mar 10 20:21:16 PST 2006 Kevin Turner * test.consumer: mutable class level attributes cause troubble Fri Mar 10 20:17:03 PST 2006 Kevin Turner * consumer.completeAuth(): unvisit servers with cancelled requests Fri Mar 10 19:46:05 PST 2006 Kevin Turner * consumer.._popNextServer(): new for the yadis fallback fantastic Fri Mar 10 18:15:21 PST 2006 Kevin Turner * consumer: more discovery cases Fri Mar 10 18:14:34 PST 2006 Kevin Turner * consumer..beginAuth(): try the first service (no fallback yet) Fri Mar 10 17:12:42 PST 2006 Kevin Turner * Consumer.discover(): return final_url, service_list Fri Mar 10 17:05:06 PST 2006 Kevin Turner * test.consumer.TestOpenidRequest: add session parameter Fri Mar 10 16:34:16 PST 2006 Kevin Turner * consumer.factory.OpenIDConsumer.discover(): now with yadis Thu Mar 9 16:08:52 PST 2006 Kevin Turner * makedoc: remove consumer.fetchers Wed Mar 8 12:12:12 PST 2006 Kevin Turner * test.consumer.TestOpenidRequest.test_getToken(): add equality test Wed Mar 8 11:48:40 PST 2006 Kevin Turner * test/consumer.py: wrap non-pyunit tests in pyunit fixture Wed Mar 8 11:31:04 PST 2006 Kevin Turner * consumer: define __eq__ Tue Mar 7 18:50:27 PST 2006 Kevin Turner * consumer.OpenIDRequest: smarter accessors for token consumer.OpenIDConsumer.makeRequestFromToken(): added Tue Mar 7 18:48:45 PST 2006 Kevin Turner * consumer.DiscoveryVersion1: set consumer attribute on the new request object Tue Mar 7 18:47:34 PST 2006 Kevin Turner * newapi thinkos Thu Feb 16 18:13:57 PST 2006 Kevin Turner * examples/newapy.py: added. sketch of use with YADIS. Thu Feb 16 18:13:01 PST 2006 Kevin Turner * openid.consumer.factory: added. playing with a new API. Fri Mar 10 15:30:40 PST 2006 Kevin Turner * test.consumer: s/parse/parseQuery/ Mon Mar 13 13:45:33 PST 2006 Josh Hoyt * Fix signature generation Mon Mar 13 13:28:28 PST 2006 Josh Hoyt * Changed server interface to allow adding additional signed args Thu Mar 9 16:05:37 PST 2006 Kevin Turner * consumer.consumer: update doc references to fetchers to point to urljr Tue Mar 7 18:09:45 PST 2006 Kevin Turner * test/consumer.