Download Latest Version Release 3.0.1 source code.zip (713.4 kB)
Email in envelope

Get an email when there's a new version of Django OAuth Toolkit

Home / 3.0.0
Name Modified Size InfoDownloads / Week
Parent folder
README.md 2024-09-05 6.1 kB
0
Release 3.0.0 source code.tar.gz 2024-09-05 623.6 kB
0
Release 3.0.0 source code.zip 2024-09-05 713.1 kB
0
Totals: 3 Items   1.3 MB 0

Release 3.0.0

WARNING - POTENTIAL BREAKING CHANGES

  • Changes to the AbstractAccessToken model require doing a manage.py migrate after upgrading.
  • If you use swappable models you will need to make sure your custom models are also updated (usually manage.py makemigrations).
  • Old Django versions below 4.2 are no longer supported.
  • A few deprecations warned about in 2.4.0 (#1345) have been removed. See below.

Added

  • [#1366] Add Docker containerized apps for testing IDP and RP.
  • [#1454] Added compatibility with LoginRequiredMiddleware introduced in Django 5.1.

Changed

  • Many documentation and project internals improvements.
  • [#1446] Use generic models pk instead of id. This enables, for example, custom swapped models to have a different primary key field.
  • [#1447] Update token to TextField from CharField. Removing the 255 character limit enables supporting JWT tokens with additional claims.
    This adds a SHA-256 token_checksum field that is used to validate tokens.
  • [#1450] Transactions wrapping writes of the Tokens now rely on Django's database routers to determine the correct
    database to use instead of assuming that 'default' is the correct one.
  • [#1455] Changed minimum supported Django version to >=4.2.

Removed

  • [#1425] Remove deprecated RedirectURIValidator, WildcardSet per [#1345]; validate_logout_request per [#1274]

Fixed

  • [#1444], [#1476] Fix several 500 errors to instead raise appropriate errors.
  • [#1469] Fix ui_locales request parameter triggers AttributeError under certain circumstances

Security

Source: README.md, updated 2024-09-05