Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.- Log in or register to create an issue
- Advanced search
| Title | Status | Priority | Category | Version | Component | Replies |
Last updated |
Assigned to | Created |
|---|---|---|---|---|---|---|---|---|---|
| Separate the client_id from the config entity id & create a migration from D7 | Needs review | Normal | Task | 2.0.x-dev | Code | 12 | 1 month 1 week | 8 months 2 weeks | |
| Token endpoint gives error when using cryptotokens (D8) | Needs work | Normal | Bug report | 2.0.x-dev | Code | 12 | 1 month 1 week | 6 years 4 months | |
| clearing out the authorization_code__scopes and oauth2_server_token__scopes tables | Active | Normal | Support request | 2.0.0-beta4 | Miscellaneous | 5 | 1 month 1 week | 1 year 9 months | |
| PHP 8.1 compatibility | Needs work | Major | Bug report | 2.0.x-dev | Code | 21 | 1 month 2 weeks | Emil Stoianov | 1 year 7 months |
| JWT Token Invalid Signature / Not verifyable | Active | Normal | Bug report | 8.x-1.x-dev | Code | 4 | 3 months 2 days | 6 years 4 months | |
| The JWT must contain the kid | Active | Normal | Bug report | 2.0.x-dev | Code | 8 | 3 months 2 days | 9 years 10 months | |
| How to get userInfo? | Active | Normal | Bug report | 7.x-1.x-dev | Code | 7 | 4 months 2 weeks | 5 years 3 months | |
| External library update | Active | Normal | Task | 7.x-1.x-dev | Code | 5 | 8 months 1 week | 5 years 1 month | |
| Client could not be found in edge case login workflow | Active | Normal | Bug report | 2.0.x-dev | Code | 5 | 1 year 1 week | 2 years 9 months | |
| Anonymous users unable to access /oauth2/authorize, always redirects to login page | Active | Normal | Bug report | 7.x-1.7 | Code | 9 | 1 year 2 months | 5 years 1 month | |
| ClientForm shows wrong values | Active | Normal | Bug report | 2.0.0-beta4 | Code | 2 | 1 year 3 months | 1 year 3 months | |
| Synapse Configuration Help: Getting Username & Preferred Name | Active | Normal | Support request | 2.0.0-beta4 | Code | 1 | 1 year 5 months | 1 year 5 months | |
| Can't get auth_token with json response | Active | Normal | Feature request | 7.x-1.7 | Code | 1 | 1 year 6 months | 1 year 6 months | |
| Disable route normalization for OpenID configuration path | Active | Normal | Bug report | 8.x-1.0-beta5 | Code | 1 | 1 year 11 months | 1 year 11 months | |
| Is there any plan to port OAuth2 Server to Backdrop? | Active | Normal | Support request | 7.x-1.x-dev | Miscellaneous | 2 | 2 years 2 months | 2 years 2 months | |
| Roadmap for a stable release? | Active | Normal | Support request | 2.0.x-dev | Documentation | 19 | 2 years 5 months | 5 years 1 week | |
| OpenID Connect conformance test suite | Active | Normal | Task | 2.0.x-dev | Code | 3 | 2 years 6 months | 2 years 6 months | |
| UserInfo endpoint returning 401 when using JWT bearer token | Needs work | Normal | Bug report | 2.0.x-dev | Code | 7 | 2 years 6 months | 3 years 7 months | |
| Ability to control the Auth Code lifetime | Active | Normal | Feature request | 2.0.x-dev | Code | 3 | 2 years 6 months | 3 years 4 months | |
| Allow scope selection for application configuration | Active | Normal | Feature request | 2.0.x-dev | Code | 3 | 2 years 6 months | 2 years 11 months | |
| Migrate to the League's PHP Library | Postponed (maintainer needs more info) | Normal | Feature request | 2.0.x-dev | Code | 3 | 2 years 6 months | 3 years 2 months | |
| Web service resource access with Oauth2 generated bearer token returns 'true' with 403 forbidden | Active | Normal | Support request | 7.x-1.7 | Code | 8 | 2 years 10 months | 6 years 2 months | |
| Login working without redriect_uri but not with it? | Active | Normal | Support request | 7.x-1.7 | Documentation | 1 | 3 years 4 months | 3 years 4 months | |
| Make OAuth2DrupalAuthProvider a global auth provider | Needs work | Normal | Feature request | 2.0.x-dev | Code | 5 | 3 years 5 months | 5 years 6 months | |
| Convert simpletests to Functional tests and fix them | Needs work | Normal | Task | 2.0.x-dev | Code | 4 | 3 years 7 months | 4 years 4 months | |
| Support PKCE | Active | Normal | Task | 2.0.x-dev | Code | 7 | 3 years 7 months | 5 years 3 months | |
| token returned from oauth2/token doesn't respect the user_sub_property property | Needs work | Normal | Bug report | 2.0.x-dev | Code | 4 | 3 years 7 months | 5 years 3 weeks | |
| Key generation fails | Active | Major | Bug report | 7.x-1.x-dev | Documentation | 21 | 3 years 10 months | 9 years 5 months | |
| Problem Setting up Drupal Site as OAuth Server | Active | Major | Bug report | 7.x-1.7 | Code | 4 | 3 years 11 months | 7 years 4 months | |
| Serialization/Deadlock issue under high load | Reviewed & tested by the community | Normal | Bug report | 7.x-1.x-dev | Code | 8 | 3 years 11 months | 7 years 1 month | |
| Unable to generate "RefreshToken" | Active | Normal | Bug report | 7.x-1.7 | Code | 2 | 4 years 5 days | 4 years 5 days | |
| The requests using JWT do not work | Needs review | Critical | Bug report | 7.x-1.7 | Code | 6 | 4 years 1 month | pjcdawkins | 7 years 1 month |
| Add support for PKCE | Needs review | Normal | Feature request | 7.x-1.x-dev | Code | 7 | 4 years 3 months | 5 years 5 months | |
| Only ask for authorization once | Active | Normal | Feature request | 7.x-1.x-dev | Code | 3 | 4 years 8 months | 9 years 1 month | |
| Limit outstanding refresh & access tokens | Active | Major | Feature request | 7.x-1.x-dev | Code | 1 | 4 years 8 months | 4 years 8 months | |
| Oauth2_server does not delete expired tokens | Postponed (maintainer needs more info) | Normal | Support request | 7.x-1.5 | Code | 3 | 4 years 8 months | 8 years 1 month | |
| Fix automated d.o tests | Needs review | Normal | Task | 7.x-1.x-dev | Code | 26 | 4 years 9 months | pjcdawkins | 6 years 3 months |
| Devel integration | Reviewed & tested by the community | Normal | Feature request | 7.x-1.7 | Code | 2 | 4 years 9 months | 8 years 11 months | |
| Allow checkUserCredentials() method to be alterable | Active | Normal | Feature request | 7.x-1.x-dev | Code | 1 | 4 years 10 months | 4 years 10 months | |
| How to handle permissions for a client? | Active | Normal | Bug report | 7.x-1.7 | Code | 1 | 5 years 1 month | 5 years 1 month | |
| Coding standards update | Active | Normal | Task | 7.x-1.x-dev | Code | 2 | 5 years 1 month | 5 years 1 month | |
| Security review | Needs work | Normal | Task | 7.x-1.x-dev | Code | 2 | 5 years 1 month | tatarbj | 5 years 1 month |
| Allow Clients to be exportable | Needs work | Normal | Feature request | 7.x-1.x-dev | Code | 8 | 5 years 1 month | 9 years 8 months | |
| Race condition when enabling a module with endpoint and OAuth2 authentication | Active | Normal | Bug report | 7.x-1.x-dev | Code | 3 | 5 years 2 months | 8 years 11 months | |
| PDOException Integrity constraint violation in field_revision_scopes table | Active | Normal | Bug report | 7.x-1.6 | Code | 5 | 5 years 4 months | fadi.assaad | 6 years 5 months |
| hook_oauth2_server_user_claims and jwt payload | Active | Normal | Support request | 7.x-1.x-dev | Code | 2 | 5 years 5 months | 5 years 5 months | |
| OAuth2 server sends token "expires_in" as a JSON String, not number | Active | Normal | Bug report | 7.x-1.x-dev | Code | 4 | 5 years 7 months | 5 years 9 months | |
| Disable sessions on OAuth2 requests (with setting) | Needs work | Normal | Feature request | 7.x-1.x-dev | Code | 12 | 6 years 1 month | pjcdawkins | 6 years 5 months |
| Allow end-users to create and administer oauth clients | Needs work | Normal | Feature request | 7.x-1.x-dev | Code | 5 | 6 years 2 months | 9 years 8 months | |
| Remove unneeded requirements check on hook_init() | Needs review | Normal | Bug report | 7.x-1.x-dev | Code | 5 | 6 years 3 months | 6 years 3 months |
Pages
Subscribe with RSS 
