Discussion:
[pylons-discuss] WebTest 2.0.30 has been released.
Gael Pasgrimaud
2018-06-23 12:57:06 UTC
Permalink
WebTest 2.0.30 has been released.

Here are the changes:

- Add ``Email`` class for input fields with type "email".

- Documentation bearer token and JWT authorization

You can install it via PyPI:

pip install WebTest==2.0.30

Enjoy, and please report any issues you find to the issue tracker at
https://github.com/Pylons/webtest/issues

Thanks!

- WebTest developers
--
You received this message because you are subscribed to the Google Groups "pylons-discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to pylons-discuss+***@googlegroups.com.
To post to this group, send email to pylons-***@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/pylons-discuss/20180623125706.GA11339%40boiboite.
For more options, visit https://groups.google.com/d/optout.
Mike Orr
2018-06-23 18:00:00 UTC
Permalink
Post by Gael Pasgrimaud
WebTest 2.0.30 has been released.
- Add ``Email`` class for input fields with type "email".
- Documentation bearer token and JWT authorization
What is a bearer token and JWT authorization? Does that mean a CSRF token?
--
You received this message because you are subscribed to the Google Groups "pylons-discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to pylons-discuss+***@googlegroups.com.
To post to this group, send email to pylons-***@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/pylons-discuss/CAH9f%3DurEu24YMfDwtkejRX67DMbu%2BY0YBTp-Shi%3DpiFMEgJjJw%40mail.gmail.com.
For more options, visit https://groups.google.com/d/optout.
Gael Pasgrimaud
2018-06-23 18:26:48 UTC
Permalink
Hi,
Post by Mike Orr
Post by Gael Pasgrimaud
WebTest 2.0.30 has been released.
- Add ``Email`` class for input fields with type "email".
- Documentation bearer token and JWT authorization
What is a bearer token and JWT authorization? Does that mean a CSRF token?
It's like basic auth but use tokens in the Authorization headers instead
of base64(user:pass). It's a bit more secure... JWT token may also contains
some extra data (user infos, api scope, etc.) but those are encrypted using
public/private keys. I don't know much about bearer.

Most apis supports one of those, or both.

https://docs.pylonsproject.org/projects/webtest/en/latest/api.html#webtest.app.TestApp.authorization
--
You received this message because you are subscribed to the Google Groups "pylons-discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to pylons-discuss+***@googlegroups.com.
To post to this group, send email to pylons-***@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/pylons-discuss/20180623182648.GC11339%40boiboite.
For more options, visit https://groups.google.com/d/optout.
Jonathan Vanasco
2018-06-25 21:21:28 UTC
Permalink
Post by Gael Pasgrimaud
It's like basic auth but use tokens in the Authorization headers instead
of base64(user:pass). It's a bit more secure... JWT token may also contains
some extra data (user infos, api scope, etc.) but those are encrypted using
public/private keys. I don't know much about bearer.
A "Bearer Token" is the common type of "Access Token" in oAuth2 and used by
many APIs.

In oAuth2, a client often authenticates with a key+secret and is issued a
"Bearer Token" in return. The "Bearer Token" is then sent in the HTTPS
headers, and can be invalidated from the authorizing application.
--
You received this message because you are subscribed to the Google Groups "pylons-discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to pylons-discuss+***@googlegroups.com.
To post to this group, send email to pylons-***@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/pylons-discuss/fef1352a-3071-4a09-a919-331e393d52b3%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
Jonathan Vanasco
2018-06-25 21:22:19 UTC
Permalink
clarification: oAuth2 supports some other flows/tokens too - but the Bearer
concept is vert common.
--
You received this message because you are subscribed to the Google Groups "pylons-discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to pylons-discuss+***@googlegroups.com.
To post to this group, send email to pylons-***@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/pylons-discuss/03798a95-8265-49d6-bad5-a30a274ca353%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
Loading...