OAuth2Session now correctly uses the self.verify value if verify
is not overridden in fetch_token and refresh_token. Fixes [#404](https://github.com/requests/requests-oauthlib/issues/404) <https://github.com/requests/requests-oauthlib/issues/404>_.
OAuth2Session constructor now uses its client.scope when a client
is provided and scope is not overridden. Fixes [#408](https://github.com/requests/requests-oauthlib/issues/408) <https://github.com/requests/requests-oauthlib/issues/408>_
Add refresh_token_request and access_token_request compliance hooks
Add PKCE support and Auth0 example
Add support for Python 3.8-3.12
Remove support of Python 2.x, <3.7
Migrated to Github Action
Updated dependencies
Cleanup some docs and examples
Commits
eee74a2 Merge pull request #529 from dosisod/drop-python2-support
ed578f1 Merge pull request #530 from requests/autotest
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Bumps requests-oauthlib from 1.3.1 to 1.4.0.
Changelog
Sourced from requests-oauthlib's changelog.
Commits
eee74a2Merge pull request #529 from dosisod/drop-python2-supported578f1Merge pull request #530 from requests/autotest6cdf982Automated tests for examples in docs416d738Remove old__future__imports0e4400dRemove old import compatibility checks:ff44fbeRemoveunicodereferences7fb40e5Removeto_unicode()calls since all strings are Unicodef045f461.4.0 preparation39fe529Merge pull request #497 from requests/pkce596beb5Added include_client_id into Auth0 example i/o changing default behaviorDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show