url scheme validation in oauth plugin is limited by RFC3986 #436
Assignees
Labels
Comments
|
cc: @lucamaraschi |
|
@ahmadnassri Can you post an example of an URL that doesn't work? |
|
|
|
doing a deep dive: the which in turn is checking for RFC3986 validity in: specifically Section 3.1 where the scheme is defined as: therefore underscores are in fact invalid and kong is properly propagating the error message. that said, we should also document the reference to RFC3986 as it is made part of RFC7230 |
ahmadnassri
changed the title
|
That said, I guess we can close this ticket? |
|
let's keep open for the documentation part |
|
The documentation already references the appropriate specification:
Specifically it references the "Redirection Endpoint" of the OAuth 2.0 specification, which in turn references RFC3986. |
bungle
added a commit
that referenced
this issue
Aug 8, 2022
### Summary #### 1.13.1 (2022-Jul-22) - fix: `warn` unquoted argument [#439](lunarmodules/Penlight#439) #### 1.13.0 (2022-Jul-22) - fix: `xml.parse` returned nonsense when given a file name [#431](lunarmodules/Penlight#431) - feat: `app.require_here` now follows symlink'd main modules to their directory [#423](lunarmodules/Penlight#423) - fix: `pretty.write` invalid order function for sorting [#430](lunarmodules/Penlight#430) - fix: `compat.warn` raised write guard warning in OpenResty [#414](lunarmodules/Penlight#414) - feat: `utils.enum` now accepts hash tables, to enable better error handling [#413](lunarmodules/Penlight#413) - feat: `utils.kpairs` new iterator over all non-integer keys [#413](lunarmodules/Penlight#413) - fix: `warn` use rawget to not trigger strict-checkers [#437](lunarmodules/Penlight#437) - fix: `lapp` provides the file name when using the default argument [#427](lunarmodules/Penlight#427) - fix: `lapp` positional arguments now allow digits after the first character [#428](lunarmodules/Penlight#428) - fix: `path.isdir` windows root directories (including drive letter) were not considered valid [#436](lunarmodules/Penlight#436)
bungle
added a commit
that referenced
this issue
Aug 8, 2022
### Summary #### 1.13.1 (2022-Jul-22) - fix: `warn` unquoted argument [#439](lunarmodules/Penlight#439) #### 1.13.0 (2022-Jul-22) - fix: `xml.parse` returned nonsense when given a file name [#431](lunarmodules/Penlight#431) - feat: `app.require_here` now follows symlink'd main modules to their directory [#423](lunarmodules/Penlight#423) - fix: `pretty.write` invalid order function for sorting [#430](lunarmodules/Penlight#430) - fix: `compat.warn` raised write guard warning in OpenResty [#414](lunarmodules/Penlight#414) - feat: `utils.enum` now accepts hash tables, to enable better error handling [#413](lunarmodules/Penlight#413) - feat: `utils.kpairs` new iterator over all non-integer keys [#413](lunarmodules/Penlight#413) - fix: `warn` use rawget to not trigger strict-checkers [#437](lunarmodules/Penlight#437) - fix: `lapp` provides the file name when using the default argument [#427](lunarmodules/Penlight#427) - fix: `lapp` positional arguments now allow digits after the first character [#428](lunarmodules/Penlight#428) - fix: `path.isdir` windows root directories (including drive letter) were not considered valid [#436](lunarmodules/Penlight#436)
StarlightIbuki
pushed a commit
that referenced
this issue
Aug 9, 2022
### Summary #### 1.13.1 (2022-Jul-22) - fix: `warn` unquoted argument [#439](lunarmodules/Penlight#439) #### 1.13.0 (2022-Jul-22) - fix: `xml.parse` returned nonsense when given a file name [#431](lunarmodules/Penlight#431) - feat: `app.require_here` now follows symlink'd main modules to their directory [#423](lunarmodules/Penlight#423) - fix: `pretty.write` invalid order function for sorting [#430](lunarmodules/Penlight#430) - fix: `compat.warn` raised write guard warning in OpenResty [#414](lunarmodules/Penlight#414) - feat: `utils.enum` now accepts hash tables, to enable better error handling [#413](lunarmodules/Penlight#413) - feat: `utils.kpairs` new iterator over all non-integer keys [#413](lunarmodules/Penlight#413) - fix: `warn` use rawget to not trigger strict-checkers [#437](lunarmodules/Penlight#437) - fix: `lapp` provides the file name when using the default argument [#427](lunarmodules/Penlight#427) - fix: `lapp` positional arguments now allow digits after the first character [#428](lunarmodules/Penlight#428) - fix: `path.isdir` windows root directories (including drive letter) were not considered valid [#436](lunarmodules/Penlight#436)
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
when assigning a
redirect_uriinoauth2plugin, some values are rejected (e.g. anything with underscore) while others are accepted (e.g. with dashes)schema should support underscore values.The text was updated successfully, but these errors were encountered: