`expires_in` must be an integer, not a string in IMPLICIT #569

JonathanHuot · 2018-08-06T16:59:48Z

RFC 6749 mandate expires_in to be an integer (https://tools.ietf.org/html/rfc6749#appendix-A.14) but looks like the integer conversion is not done for implicit grant (oauth2-client side).

We can see the current implementation for the oauth2.parameters.parse_token_response: https://github.com/oauthlib/oauthlib/blob/master/oauthlib/oauth2/rfc6749/parameters.py#L367

And the missing conversion code in the parse_implicit_response : https://github.com/oauthlib/oauthlib/blob/master/oauthlib/oauth2/rfc6749/parameters.py#L367

The text was updated successfully, but these errors were encountered:

#569: Implicit was not converting expires_in into integers

JonathanHuot added the OAuth2-Client This impact the client part of OAuth2. label Aug 6, 2018

JonathanHuot self-assigned this Aug 6, 2018

JonathanHuot added this to the 3.0.0 milestone Aug 6, 2018

JonathanHuot mentioned this issue Aug 6, 2018

#569: Implicit was not converting expires_in into integers #570

Merged

JonathanHuot added a commit that referenced this issue Aug 12, 2018

Merge pull request #570 from oauthlib/569_expires_in_implicit

05b1185

#569: Implicit was not converting expires_in into integers

JonathanHuot closed this as completed Aug 19, 2018

JonathanHuot mentioned this issue Dec 3, 2018

Release oauthlib-3.0.0 changelog #619

Closed

23 tasks

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

`expires_in` must be an integer, not a string in IMPLICIT #569

`expires_in` must be an integer, not a string in IMPLICIT #569

JonathanHuot commented Aug 6, 2018

expires_in must be an integer, not a string in IMPLICIT #569

expires_in must be an integer, not a string in IMPLICIT #569

Comments

JonathanHuot commented Aug 6, 2018

`expires_in` must be an integer, not a string in IMPLICIT #569

`expires_in` must be an integer, not a string in IMPLICIT #569