v5.0.0-RC1

* Compute the correct redirect_uri in case of resource over denies access

According to https://tools.ietf.org/html/rfc6749#section-4.1.2.1
once the redirect_uri & client_id is correct authorization server should
inform the clinet, that user denied access.

The change is to move validation of resource owner approval after the
redirect_uri & client identifier validation so the correct redirect url
is computed

* Remove commented code

* Note we're now also seeking reviewers

* Update readme with link to v5-dev branch

* Add renovate.json

* Add link to examples repo. Closes oauthjs#571

* Update dependency bluebird to v3.7.2

* Update dependency jshint to v2.11.0

* Update dependency mocha to v3.5.3

* Update dependency sinon to v2.4.1

* Update dependency statuses to v1.5.0

* Update dependency basic-auth to v2

* Update node versions

* Bump lodash from 4.17.4 to 4.17.15

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.4 to 4.17.15.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](lodash/lodash@4.17.4...4.17.15)

Signed-off-by: dependabot[bot] <support@github.com>

* Update dependency type-is to v1.6.18

* Update dependency should to v13

* add codecoverage and upgrade packages

* Update dependency jshint to v2.11.1

* Drop support for node 4/6/8 and add tests for 14

* Update dependency sinon to v9

* Update dependency mocha to v7

* Release 3.0.2 🎉

* Release 3.0.2 🎉

* Revert "Drop support for node 4/6/8 and add tests for 14"

This reverts commit b84778b.

* Revert "Merge pull request oauthjs#596 from oauthjs/renovate/mocha-7.x"

This reverts commit cb2bb88, reversing
changes made to 6997303.

* Revert "Merge pull request oauthjs#602 from oauthjs/renovate/sinon-9.x"

This reverts commit 6997303, reversing
changes made to b84778b.

* Bump mocha and sinon to lastest versions supporting node v4

* Add testing for node v14

* Update readme with project status update

* remove renovate in favour of dependabot

* Add FUNDING.yml (oauthjs#630)

* Updated .gitignore

* Changed 'hasOwnProperty' call in Request

* Changed 'hasOwnProperty' call in Response

* set numArgs for promisify of generateAuthorizationCode

* readme: Update Slack badge and link

* fix: issue correct expiry dates for tokens oauthjs#444

related to a NodeJS (nodejs/node#7074) and furthermore
V8 bug (https://bugs.chromium.org/p/v8/issues/detail?id=3637); replaced
seconds calculation with milliseconds.

* Merge pull request oauthjs#451 from razvanz/fix/validate-scope-on-authorize

 fix: validate requested scope on authorize request

* Merge pull request oauthjs#491 from mattgrande/master

docs: Ensure accessTokenExpiresAt is required

* Merge pull request oauthjs#471 from smartrecruiters/fix-migration-documentaiton

docs: Correct tokens time scale for 2.x to 3.x  migration guide

* Updated changelog

* Tag 3.1.0-rc1

* 3.1.0 bump

* Bump lodash from 4.17.15 to 4.17.19

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](lodash/lodash@4.17.15...4.17.19)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* v3.1.1 (oauthjs#636)

* Bump jshint from 2.11.1 to 2.12.0 (oauthjs#640)

Bumps [jshint](https://github.com/jshint/jshint) from 2.11.1 to 2.12.0.
- [Release notes](https://github.com/jshint/jshint/releases)
- [Changelog](https://github.com/jshint/jshint/blob/master/CHANGELOG.md)
- [Commits](jshint/jshint@2.11.1...2.12.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>

* Set WWW-Authenticate header for invalid requests

This adds the WWW-Authenticate header for InvalidRequestError, InvalidTokenError,
and InsufficientScopeError, as specified in RFC 6750, Section 3

Fixes oauthjs#553

* cherry pick

* rm lock

* fix: lint erros

* fix grant types

* custom types init

* Update .travis.yml

* git merge artifact

Co-authored-by: Igor Czechowski <i.czechowski@smartrecruiters.com>
Co-authored-by: Szymon Kiebzak <s.kiebzak@smartrecruiters.com>
Co-authored-by: Thom Seddon <thom@seddonmedia.co.uk>
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Aras Abbasi <aras.abbasi@googlemail.com>
Co-authored-by: mjsalinger <mjsalinger@gmail.com>
Co-authored-by: Pritilender <sajn_ap@live.com>
Co-authored-by: nkzawa <naoyuki.kanezawa@gmail.com>
Co-authored-by: Max Truxa <dev@maxtruxa.com>
Co-authored-by: Razvan <razvanz@users.noreply.github.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: Jonas Hermsmeier <jonas.hermsmeier@klarna.com>

Author: 14 people

.github/FUNDING.yml

@@ -0,0 +1,2 @@
+github: thomseddon
+

.gitignore

@@ -7,8 +7,9 @@
 
 # misc
 npm-debug.log
+
 # folders
-/dist
+#/dist
 /node_modules
 docs/_build/
 __pycache__/
@@ -17,3 +18,40 @@ __pycache__/
 .DS_Store
 *.pyc
 /aio
+
+# codecoverage
+/.nyc_output
+/coverage
+lib-cov
+*.seed
+*.log
+*.csv
+*.dat
+*.out
+*.pid
+*.gz
+*.iml
+
+.idea
+.jshint
+.DS_Store
+
+pids
+logs
+results
+
+lib/dockerImage/keys
+coverage
+npm-debug.log*~
+\#*\#
+/.emacs.desktop
+/.emacs.desktop.lock
+.elc
+auto-save-list
+tramp
+.\#*
+
+# Org-mode
+.org-id-locations
+*_archive
+

.nycrc

@@ -0,0 +1,10 @@
+{
+	"extends": "@istanbuljs/nyc-config-typescript",
+	"all": true,
+    "reporter": [
+		"lcovonly",
+		"html",
+		"text",
+		"text-summary"
+    ]
+} 

.patch

@@ -1,12 +1,17 @@
-
 # travis
 os: linux
 dist: xenial
 
+
 language: node_js
 node_js:
 - '10'
 - '12'
 
 git:
   quiet: true
+  
+install: npm install
+
+scripts: true
+

.travis.yml

@@ -1,3 +1,4 @@
+
 # oauth2-server
 
 [![npm Version][npm-image]][npm-url]
@@ -8,6 +9,7 @@
 
 Complete, compliant and well tested module for implementing an OAuth2 server in [Node.js](https://nodejs.org).
 
+Note: After a period of hiatus, this project is now back under active maintenance. Dependencies have been updated and bug fixes will land in v3 (current master). v4 will be _mostly backwards compatible_ with no code changes required for users using a supported node release. More details in [#621](https://github.com/oauthjs/node-oauth2-server/issues/621).
 
 ## Installation
 
@@ -36,7 +38,7 @@ The *oauth2-server* module is framework-agnostic but there are several officiall
 
 Most users should refer to our [Express](https://github.com/oauthjs/express-oauth-server/tree/master/examples) or [Koa](https://github.com/oauthjs/koa-oauth-server/tree/master/examples) examples.
 
-Examples for v3 are yet to be made. 
+More examples can be found here: https://github.com/14gasher/oauth-example
 
 ## Upgrading from 2.x
 

CHANGELOG.md

@@ -0,0 +1,10 @@
+export * from './lib/errors';
+export * from './lib/grant-types';
+export * from './lib/handlers';
+export * from './lib/interfaces';
+export { Request } from './lib/request';
+export { Response } from './lib/response';
+export * from './lib/response-types';
+export { OAuth2Server } from './lib/server';
+export * from './lib/token-types';
+export * from './lib/validator/is';

README.md

@@ -0,0 +1,11 @@
+export declare const MILLISECONDS_PER_SECOND = 1000;
+export declare const SECONDS_PER_MINUTE = 60;
+export declare const MINUTES_PER_HOUR = 60;
+export declare const HOURS_PER_DAY = 24;
+export declare const DAYS_PER_WEEK = 7;
+export declare const MONTHS_PER_YEAR = 12;
+export declare const SECOND = 1000;
+export declare const MINUTE: number;
+export declare const HOUR: number;
+export declare const DAY: number;
+export declare const WEEK: number;

dist/index.d.ts

@@ -0,0 +1 @@
+export * from './common';

dist/index.js

@@ -0,0 +1,4 @@
+import { OAuthError } from './oauth-error';
+export declare class AccessDeniedError extends OAuthError {
+    constructor(message?: string | Error, properties?: any);
+}

dist/index.js.map

@@ -0,0 +1,14 @@
+export { AccessDeniedError } from './access-denied-error';
+export { InsufficientScopeError } from './insufficient-scope-error';
+export { InvalidArgumentError } from './invalid-argument-error';
+export { InvalidClientError } from './invalid-client-error';
+export { InvalidGrantError } from './invalid-grant-error';
+export { InvalidRequestError } from './invalid-request-error';
+export { InvalidScopeError } from './invalid-scope-error';
+export { InvalidTokenError } from './invalid-token-error';
+export { OAuthError } from './oauth-error';
+export { ServerError } from './server-error';
+export { UnauthorizedClientError } from './unauthorized-client-error';
+export { UnauthorizedRequestError } from './unauthorized-request-error';
+export { UnsupportedGrantTypeError } from './unsupported-grant-type-error';
+export { UnsupportedResponseTypeError } from './unsupported-response-type-error';