OAuth2Session now correctly uses the self.verify value if verify
is not overridden in fetch_token and refresh_token. Fixes [#404](https://github.com/requests/requests-oauthlib/issues/404) <https://github.com/requests/requests-oauthlib/issues/404>_.
OAuth2Session constructor now uses its client.scope when a client
is provided and scope is not overridden. Fixes [#408](https://github.com/requests/requests-oauthlib/issues/408) <https://github.com/requests/requests-oauthlib/issues/408>_
Add refresh_token_request and access_token_request compliance hooks
Add PKCE support and Auth0 example
Add support for Python 3.8-3.12
Remove support of Python 2.x, <3.7
Migrated to Github Action
Updated dependencies
Cleanup some docs and examples
Commits
7af9125 Merge pull request #534 from iliakur/patch-1
90352e4 Merge pull request #537 from requests/2.0.0
a09d0ab Update 1.4.0 into 2.0.0 to be semver compliant.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Bumps requests-oauthlib from 1.4.0 to 2.0.0.
Changelog
Sourced from requests-oauthlib's changelog.
Commits
7af9125Merge pull request #534 from iliakur/patch-190352e4Merge pull request #537 from requests/2.0.0a09d0abUpdate 1.4.0 into 2.0.0 to be semver compliant.d96b740Added package file3109c26simplify python_requires expression1c5cea7python_requires gt 2.7a53457eDrop py2 support from the wheelDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show