Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

userinfo_endpoint return data if access_token is expired #424

Closed
ermakoves opened this issue Sep 21, 2017 · 3 comments
Closed

userinfo_endpoint return data if access_token is expired #424

ermakoves opened this issue Sep 21, 2017 · 3 comments
Assignees
@tpazderka
Labels
bug newcomer-friendly
Milestone
P1: MUST

Comments

@ermakoves
Copy link
Contributor

Is this normal behavior?
@decentral1se
Copy link
Contributor

That sounds like a bug to me.

Anyone else?

@schlenk
Copy link
Collaborator

schlenk commented Sep 21, 2017

Seems like oic.provider _do_user_info() should check for token expiry, it only checks for revocation and existance in the sdb.

@decentral1se decentral1se added this to the P1: MUST milestone Sep 21, 2017
@rohe
Copy link
Collaborator

rohe commented Sep 26, 2017

Agree, so who makes the PR ?
Any taker.

@decentral1se decentral1se mentioned this issue Sep 27, 2017
Closed
2 tasks
tpazderka added a commit that referenced this issue Feb 5, 2018
@tpazderka
Validate expiration of Token at UserInfo endpoint
3a3f950 
Close #424
@tpazderka tpazderka assigned tpazderka and unassigned rohe Feb 5, 2018
@tpazderka tpazderka mentioned this issue Feb 5, 2018
Merged
2 tasks
tpazderka added a commit that referenced this issue Feb 6, 2018
@tpazderka
Validate expiration of Token at UserInfo endpoint
69bfd24 
Close #424
tpazderka added a commit that referenced this issue Feb 6, 2018
@tpazderka
Validate expiration of Token at UserInfo endpoint
e916933 
Close #424
andrewkrug pushed a commit to mozilla-iam/pyoidc that referenced this issue Jun 6, 2019
@tpazderka @andrewkrug
Validate expiration of Token at UserInfo endpoint
794f203 
Close CZ-NIC#424
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@tpazderka tpazderka

Labels
bug newcomer-friendly
Projects
None yet
Milestone
P1: MUST
Development

Successfully merging a pull request may close this issue.

WIP: Add expiration time checker.
5 participants
@rohe @schlenk @decentral1se @tpazderka @ermakoves