The most scalable and customizable OpenID Certified™ OpenID Connect and OAuth Provider on the market. Become an OpenID Connect and OAuth2 Provider over night. Broad support for related RFCs. Written in Go, cloud native, headless, API-first. Available as a service on Ory Network and for self-hosters.
Return HTTP 410 and initial auth url for consent app to redirect user agent to when an expired challenge is supplied. This implements the same mechanism provided for consent apps to handle previously utilized challenges #2473 .
BREAKING CHANGES: This patch changes the response status code for expired challenges from 401 to 410. It also changes the schema of the response from fosite.RFC6749Error to flow.OAuth2RedirectTo.
[x] I confirm that this pull request does not address a security
vulnerability. If this pull request addresses a security vulnerability, I
confirm that I got the approval (please contact
security@ory.sh) from the maintainers to push
the changes.
[x] I have added tests that prove my fix is effective or that my feature
works.
Return HTTP 410 and initial auth url for consent app to redirect user agent to when an expired challenge is supplied. This implements the same mechanism provided for consent apps to handle previously utilized challenges #2473 .
Related issue(s)
Closes #3772
Checklist