This is the documentation of the development version, check the Stable Version documentation.
Here you can see the full list of changes between each Authlib release.
Plan to release in Mar, 2021.
We have dropped support for Python 2 in this release. We have removed built-in SQLAlchemy integration.
OAuth Client Changes:
The whole framework client integrations have been restructured, if you are
using the client properly, e.g.
oauth.register(...), it would work as
OAuth Provider Changes:
In Flask OAuth 2.0 provider, we have removed the deprecated
OAUTH2_JWT_XXX configuration, instead, developers should define
.get_jwt_config on OpenID extensions and grant types.
SQLAlchemy integrations has been removed from Authlib. Developers should define the database by themselves.
JWShas been renamed to
JWEhas been renamed to
JWKhas been renamed to
JWThas been renamed to
The “Key” model has been re-designed, checkout the JSON Web Key (JWK) for updates.
ES256K algorithm for JWS and JWT.
Breaking Changes: find how to solve the deprecate issues via https://git.io/JkY4f
Released on Jan 15, 2020.
Released on Oct 14, 2020.
Released on Oct 10, 2020.
This is the last release before v1.0. In this release, we added more RFCs implementations and did some refactors for JOSE:
We also fixed bugs for integrations:
1. The parameter
are changed. Usually you don’t have to care about it since you won’t use it directly.
2. Whole JSON Web Key is refactored, please check JSON Web Key (JWK).
Released on May 18, 2020.
noneauth method for authorization code by default.
introspect_tokenmethod on OAuth 2 Client via issue#224.
Released on May 6, 2020.
Released on Feb 12, 2020.
Released on Feb 11, 2020.
In this release, Authlib has introduced a new way to write framework integrations for clients.
Bug fixes and enhancements in this release:
Breaking Change: drop sync OAuth clients of HTTPX.
Find old changelog at https://github.com/lepture/authlib/releases