Dynamic claim values (#23)
* Fixed uninitialized variable
A leftover from past changes noticed thanks to issue #19
* Removed references to any particular configuration of user backends
A new configuration option was added to the base config to specify a default user backend
This addresses issue #20
* Adapt tests to altered configuration options
* Allowed scopes of clients are now checked when issuing tokens
* Reduced code duplications in tests
And fixed a bug where certain attributes were not updated via the admin API
* Write release notes
* Minor Bugfixes:
Replaced wrong occurences of 'token' with 'id_token'
Load webfinger conf through config.rb
Disable id_token creation when openid is set to false
* several ENV variables are now written to config files
This allows specifying them through the config files alone
and removes several bugs where ENV did not have an effect when it should
Includes some bugfixes:
- expected nil when checking the scopen in /token, got []
- logout redirect unconfigured
* This is a temporary mitigation for issue #18
It disables sinatra/cors and handles OPTION requests and Access-Control-Allow-* Headers manually
At some point we want to revisit this.
* One script - all tests
For convenience
* Adapted omejdn.yml
* Added requestable claim values
* Ensure ENV does not overwrite the config
* Added missing test for claims parameter in the authorization flow
* Update README
* Updated Release Notes