Harsh Mahajan
44a37e9e20
Use Exception for X OAuth2 PKCE encryption errors
...
Align with other OAuth2 adapters that throw base Exception for
configuration and crypto failures instead of RuntimeException.
Made-with: Cursor
2026-04-08 18:41:42 +05:30
Harsh Mahajan
e6cfedd340
addressed greptile comment
2026-04-08 18:27:36 +05:30
Harsh Mahajan
e4d1178e71
simplified code
2026-04-08 17:56:37 +05:30
Harsh Mahajan
929bdcef25
Merge branch '1.9.x' into feat-x-oauth2-provider
2026-04-08 17:55:00 +05:30
Torsten Dittmann
c08e5f706c
Merge pull request #11745 from appwrite/fix-yahoo-oauth-scopes
2026-04-02 19:44:10 +04:00
Torsten Dittmann
d9c606a1c2
fix(oauth): update Yahoo OAuth scopes from deprecated Social Directory API to OIDC
...
The Yahoo OAuth provider was using deprecated Social Directory API scopes
('sdct-r' and 'sdpp-w') which are no longer valid and causing authentication
failures with the error: invalid_scope
Changes:
- Replace deprecated scopes 'sdct-r' (Social Directory Contacts Read) and
'sdpp-w' (Social Directory Profile Write) with standard OIDC scopes
- Add 'openid' scope for OpenID Connect authentication
- Add 'profile' scope for basic profile information
- Add 'email' scope for email address access
These new scopes align with Yahoo's OpenID Connect implementation and are
listed in their discovery document at:
https://api.login.yahoo.com/.well-known/openid-configuration
The Yahoo adapter already uses the OIDC userinfo endpoint
(https://api.login.yahoo.com/openid/v1/userinfo ), so these scopes are the
correct choice for authentication.
Custom scopes passed via the API are still supported and will be merged
with these defaults via the base OAuth2 class constructor.
Fixes: Yahoo OAuth authentication returning 'invalid_scope' error
2026-04-01 13:15:22 +04:00
Harsh Mahajan
8ccfb1aebb
Merge branch '1.9.x' into feat-x-oauth2-provider
2026-04-01 12:17:05 +05:30
Harsh Mahajan
9da4f19d4f
fix: pkce flow
2026-04-01 12:11:40 +05:30
Chirag Aggarwal
4f73eb021f
Fix PHPStan core type and PHPDoc issues (part 1)
2026-03-31 21:44:20 +05:30
Harsh Mahajan
614db7388e
fix: push
2026-03-26 17:59:30 +05:30
Harsh Mahajan
85703d29e1
addressed greptile suggestions
2026-03-23 19:08:12 +05:30
Harsh Mahajan
dc48bb35ef
added pkce to base
2026-03-23 17:49:42 +05:30
Harsh Mahajan
8218f36d34
code rabbit comment
2026-03-23 13:32:06 +05:30
Harsh Mahajan
0fe906c538
feat: Add X OAuth 2.0 provider
2026-03-23 13:21:04 +05:30
Chirag Aggarwal
6c4394947f
Fix Safe PHP deprecation warnings
2026-02-03 10:11:12 +05:30
Matej Bačo
ee911e3df6
Finalize unit key tests
2025-12-29 11:21:49 +01:00
Matej Bačo
c54d1d29a5
Update stats of all key ypes
2025-12-27 18:44:01 +01:00
Matej Bačo
6e47fb6c70
Implement auth for organization and account keys
2025-12-23 13:06:19 +01:00
Matej Bačo
ca43281fa9
Simplify PR
2025-12-20 09:20:39 +01:00
Matej Bačo
31b9ff4f05
Merge branch '1.8.x' into chore-php-types
2025-12-19 12:26:51 +01:00
Matej Bačo
1c3f778da9
PR review fix
2025-12-19 12:26:15 +01:00
Matej Bačo
6f16b56f31
Allow Key extensions
2025-12-18 15:55:11 +01:00
Torsten Dittmann
81b4065921
Fix identity connecting
...
- Add MockUnverified OAuth2 provider config
- Add /v1/mock/tests/general/oauth2/user-unverified endpoint
- Add MockUnverified class for unverified OAuth2 flow
- Update Mock::isEmailVerified to respect user['verified'] flag
- Add end-to-end tests for linking unverified and verified OAuth2 users
- Enable stopOnFailure in phpunit.xml
2025-12-18 16:44:04 +04:00
Matej Bačo
59f178d634
Improve PHP types for extensability
2025-12-18 13:37:50 +01:00
Damodar Lohani
62e5f54fcb
Merge branch '1.8.x' into feat-appwrite-auth
2025-11-09 08:36:27 +05:45
Damodar Lohani
88cbc36a02
remove Appwrite\Auth\Auth
2025-11-05 07:09:18 +00:00
Damodar Lohani
31ffc9ea92
format
2025-11-04 08:12:46 +00:00
Damodar Lohani
81480f4492
remove deprecated methods
2025-11-04 07:53:14 +00:00
Damodar Lohani
437d914e90
More refactor and fixes
2025-11-04 06:08:35 +00:00
Damodar Lohani
897f512b47
Refactor remove moved to utopia auth
2025-11-04 05:37:45 +00:00
copilot-swe-agent[bot]
627adb43e0
Add access_type=offline and prompt=consent to Google OAuth2 login URL to enable refresh tokens
...
Co-authored-by: stnguyen90 <1477010+stnguyen90@users.noreply.github.com>
2025-10-29 23:12:28 +00:00
Jake Barnby
ddde13a78f
Revert "Merge pull request #10468 from appwrite/feat-apps-module-dl"
...
This reverts commit 9dd1939d1f8dfdfcb522
2025-10-21 14:59:30 +13:00
Damodar Lohani
d56dff954f
Merge remote-tracking branch 'origin/1.8.x' into feat-apps-module-dl
2025-10-12 00:34:07 +00:00
Hemachandar
ca1c069e65
Handle OIDC well-known endpoint errors
2025-10-02 14:58:55 +05:30
Eldad Fux
fb29fe7b3c
Merge remote-tracking branch 'origin/1.7.x' into feat-apps-module
2025-04-29 20:12:31 +02:00
Matej Bačo
d8103cb57e
Merge branch '1.7.x' into 1.6.x
2025-04-25 12:18:04 +02:00
Chirag Aggarwal
2c453d5fd9
fix: request issues and permissions
2025-04-08 08:51:04 +00:00
Chirag Aggarwal
3bd8405deb
feat: add figma oauth provider
2025-04-08 07:56:35 +00:00
Eldad Fux
1bf1766822
Merge remote-tracking branch 'origin/feat-sites' into feat-apps-module
2025-03-28 08:20:24 +01:00
Eldad Fux
57edb4a385
Removed leftovers
2025-03-28 08:17:47 +01:00
Matej Bačo
681b6031aa
Linter fix
2025-03-26 12:59:15 +01:00
Matej Bačo
ab03b4e3ca
Deployment ready after screenshot
2025-03-26 12:59:05 +01:00
Eldad Fux
8c9123beaa
Fixed tests
2025-03-19 13:54:32 +01:00
Eldad Fux
afb40218d7
Fixed tests
2025-03-18 16:12:13 +01:00
Eldad Fux
3daa3821ef
Fixed syntax error
2025-03-18 10:24:42 +01:00
Eldad Fux
84cec0e32c
format
2025-03-18 10:18:29 +01:00
Eldad Fux
7bae15d4fe
Merge remote-tracking branch 'origin/feat-sites' into feat-apps-module
2025-03-18 10:15:06 +01:00
Eldad Fux
0180f72067
Removed unsed methods and tests
2025-03-18 00:30:31 +01:00
Eldad Fux
8aa5714173
cleanups
2025-03-17 21:44:31 +01:00
Eldad Fux
1ce84f1650
WIP
2025-03-17 12:39:35 +01:00
