3 Pull requests merged by 2 people

• fix(client): raise MissingCodeException when code parameter is missing

  #794 merged Aug 9, 2025

• Temporarily restore OAuth2Request body parameter

  #791 merged Aug 8, 2025

• Raise a MissingCodeError when code parameter is missing

  #786 merged Aug 6, 2025

2 Issues closed by 1 person

• OAuth2Request in RFC6749 no longer takes "body" but version not bumped to breaking change

  #781 closed Aug 8, 2025

• authorize_access_token doesn't raise MissingCodeException when code parameter missing

  #777 closed Aug 8, 2025

4 Issues opened by 3 people

• Make it more feasible to manage multiple tokens

  #796 opened Aug 12, 2025

• OAuth2 server: `'Request' object has no attribute 'payload'` (instead of `InsecureTransportError`) when receiving requests over http and NOT localhost/127.0.0.1

  #795 opened Aug 11, 2025

• Starlette integration OIDC issues (with regard to response_mode and response_type.)

  #793 opened Aug 7, 2025

• OAuth2 server: `invalid_client` error returned for authorization code request, not documented in RFC 6749, section 4.1.2.1

  #792 opened Aug 7, 2025

5 Unresolved conversations

Sometimes conversations happen on old items that aren’t yet closed. Here is a list of all the Issues and Pull Requests with unresolved conversations.

• Add support for RFC9728 : OAuth 2.0 Protected Resource Metadata

  #790 commented on Aug 8, 2025 • 1 new comment

• ValueError: Invalid JSON Web Key Set raised when duplicate keys exist in JWKS

  #785 commented on Aug 6, 2025 • 0 new comments

• Support OAuth 2.1

  #787 commented on Aug 12, 2025 • 0 new comments

• fix(ClientAuth): fix incorrect signature when Content-Type is x-www-form-urlencoded

  #778 commented on Aug 8, 2025 • 0 new comments

• Fix httpx oauth1 binary form data

  #779 commented on Aug 8, 2025 • 0 new comments