Skip to content

Adding Support For RAR and JAR Requests #659

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
kishore7snehil merged 3 commits into from
Jan 29, 2025
Merged

Adding Support For RAR and JAR Requests #659

kishore7snehil merged 3 commits into from
Jan 29, 2025

Conversation

@kishore7snehil
Copy link
Contributor

@kishore7snehil kishore7snehil commented Jan 29, 2025
edited
Loading

Changes

  • Added test cases to validate Pushed Authorization Requests (PAR) when used with:

    • RAR (Rich Authorization Requests): Allows passing authorization_details to enhance authorization parameters.
    • JAR (JWT Secured Authorization Requests): Uses signed JWTs for request integrity and security.

  • Fixed publish.yml

References

  • RAR Auth0 Docs – Rich Authorization Requests in Auth0.

  • JAR RFC – JWT Secured Authorization Requests.

Testing

  • This change adds test coverage.
    To verify the changes, follow these steps:

Testing RAR Support

  1. Configure a Resource Server API to accept authorization_details.
  2. Make a request to the /oauth/par endpoint with the authorization_details parameter.
  3. Ensure that the API correctly processes the request and enforces the authorization details as per RFC 9396.

Testing JAR Support

  1. Generate a JAR request following the JAR setup guide.
  2. Use the generated JWT as the request parameter in the authorization request.
  3. Confirm that the request is correctly validated and processed.
  • This change has been tested on the latest version of the platform/language.

Contributor Checklist

@kishore7snehil kishore7snehil requested a review from a team as a code owner January 29, 2025 11:40
@kishore7snehil kishore7snehil merged commit 66429f1 into master Jan 29, 2025
11 checks passed
@kishore7snehil kishore7snehil deleted the feature/rar-jar branch January 29, 2025 12:20
@kishore7snehil kishore7snehil mentioned this pull request Jan 29, 2025
Merged
kishore7snehil added a commit that referenced this pull request Jan 29, 2025
@kishore7snehil
Release 4.8.0 (#661)
35fbc30 
**Added**
- Adding Support For RAR and JAR Requests
[\#659](#659)
([kishore7snehil](https://github.com/kishore7snehil))
- Adding Support For Back Channel Login
[\#643](#643)
([kishore7snehil](https://github.com/kishore7snehil))

**Fixed**
- Consolidated Community PRs and Dependency Upgrades
[\#660](#660)
([kishore7snehil](https://github.com/kishore7snehil))
- Updating Dependancies And Workflow Action Versions
[\#653](#653)
([kishore7snehil](https://github.com/kishore7snehil))
- Fixing the Github Workflow Issues
[\#644](#644)
([kishore7snehil](https://github.com/kishore7snehil))
nzetzl pushed a commit to nzetzl/auth0-python-nzetzl-fork that referenced this pull request Feb 25, 2025
@kishore7snehil
Adding Support For RAR and JAR Requests (auth0#659)
4816ce8 
Adding Support For RAR and JAR Requests
nzetzl pushed a commit to nzetzl/auth0-python-nzetzl-fork that referenced this pull request Feb 25, 2025
@kishore7snehil
Release 4.8.0 (auth0#661)
3f1ac6b 
**Added**
- Adding Support For RAR and JAR Requests
[\auth0#659](auth0#659)
([kishore7snehil](https://github.com/kishore7snehil))
- Adding Support For Back Channel Login
[\auth0#643](auth0#643)
([kishore7snehil](https://github.com/kishore7snehil))

**Fixed**
- Consolidated Community PRs and Dependency Upgrades
[\auth0#660](auth0#660)
([kishore7snehil](https://github.com/kishore7snehil))
- Updating Dependancies And Workflow Action Versions
[\auth0#653](auth0#653)
([kishore7snehil](https://github.com/kishore7snehil))
- Fixing the Github Workflow Issues
[\auth0#644](auth0#644)
([kishore7snehil](https://github.com/kishore7snehil))
nzetzl pushed a commit to nzetzl/auth0-python-nzetzl-fork that referenced this pull request Apr 2, 2025
@kishore7snehil
Adding Support For RAR and JAR Requests (auth0#659)
013992e 
Adding Support For RAR and JAR Requests
nzetzl pushed a commit to nzetzl/auth0-python-nzetzl-fork that referenced this pull request Apr 2, 2025
@kishore7snehil
Release 4.8.0 (auth0#661)
863434f 
**Added**
- Adding Support For RAR and JAR Requests
[\auth0#659](auth0#659)
([kishore7snehil](https://github.com/kishore7snehil))
- Adding Support For Back Channel Login
[\auth0#643](auth0#643)
([kishore7snehil](https://github.com/kishore7snehil))

**Fixed**
- Consolidated Community PRs and Dependency Upgrades
[\auth0#660](auth0#660)
([kishore7snehil](https://github.com/kishore7snehil))
- Updating Dependancies And Workflow Action Versions
[\auth0#653](auth0#653)
([kishore7snehil](https://github.com/kishore7snehil))
- Fixing the Github Workflow Issues
[\auth0#644](auth0#644)
([kishore7snehil](https://github.com/kishore7snehil))
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@kailash-b kailash-b kailash-b approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@kishore7snehil @kailash-b