Consider upgrading to league/oauth2-server 8.0 for 8.x-4.x [#3083411]

Given that PKCE is being pushed as a highly recommended strategy by thephpleague, we should consider upgrading to the 8.0 version of the league/oauth2-server. The 8.0 version solves some issues with PKCE, but breaks BC.

See the upgrade guide for more details and these notes from the laravel/passport guys for some undocumented changes.

Comments

Comment #1

24 September 2019 at 19:54

olafkarsten created an issue. See original summary.

Comment #2

paul121 commented 29 September 2020 at 22:13

The latest 5.x release upgraded league/oauth2-server to ^8.0

Comment #3

matt_paz commented 20 July 2021 at 15:09

Comment #4

bradjones1

English

commented 6 December 2021 at 22:56

Status:

Active

» Closed (outdated)

The linked roadmap covers the spirit of this issue, also PKCE has been added.

Consider upgrading to league/oauth2-server 8.0 for 8.x-4.x

Comments

Comment #1

Comment #2

Comment #3

Comment #4

Related issues

Referenced by

News items

Our community

Documentation

Drupal code base

Governance of community