GithubHelp home page GithubHelp logo

Features Checklist about authlib HOT 8 CLOSED

lepture avatar lepture commented on August 23, 2024
Features Checklist

from authlib.

Comments (8)

davidism avatar davidism commented on August 23, 2024

If you're going to implement the various JSON standards, maybe you'd like to add it to itsdangerous and depend on that? There have been a number of requests for it, we only have JWS right now.

from authlib.

lepture avatar lepture commented on August 23, 2024

@davidism It can be quite complex, especially for PEM JWK supports. Currently, itsdangerous is a single file, it is quite simple. Is there any plan to support all those things?

Authlib depends on PyJWT currently. My plan is to create a monolithic library so that I can take everything into control. But if there is a plan for itsdangerous to do such thing, I'm happy to implement those JSON things in itsdangerous.

from authlib.

davidism avatar davidism commented on August 23, 2024

Yeah, I think @mitsuhiko expressed interest in supporting that. I actually wanted to restructure it as a package anyway, so moving the JSON stuff to a json sub-package is fine.

from authlib.

davidism avatar davidism commented on August 23, 2024

Or, uh, maybe he said the exact opposite? pallets/itsdangerous#54

Currently there's just confusion because we implement JWS with a time extension which looks sort of like JWT. pallets/itsdangerous#73

I'm not really sure which way we should actually go. Sorry, I initially saw this and thought of itsdangerous, but now that I think about it I'm not sure if keeping itsdangerous simple is better.

from authlib.

mitsuhiko avatar mitsuhiko commented on August 23, 2024

@davidism having had to many security issues with JWT and friends I do not longer recommend people to use it. Hoping someone makes something better.

from authlib.

jacoboar avatar jacoboar commented on August 23, 2024

So...What is the recommendation for authorization?

from authlib.

tyteen4a03 avatar tyteen4a03 commented on August 23, 2024

Server integration with an async web engine such as aiohttp would be great.

from authlib.

BnGx avatar BnGx commented on August 23, 2024

Please consider implementing the User-Managed Access (UMA) 2.0 layer.

from authlib.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.