Bump oauth java lib from core-20080621 to oauth-core-20090121
-------------------------------------------------------------
Key: SHINDIG-892
URL: https://issues.apache.org/jira/browse/SHINDIG-892
Project: Shindig
Issue Type: Improvement
Components: Gadget Rendering Server (Java), RESTful API (Java)
Affects Versions: trunk
Reporter: Paul Lindner
Assignee: Paul Lindner
Fix For: trunk
We can finally get rid of the lamely named 'core' jar file. The upstream
changes are not huge. mostly small fixes.
List of changes from svn (without doc/reformatting changes)
test streaming a large request body
made the HttpClient accessible (and modifiable)
add an Accept-Encoding header in OAuthAccessor.newRequestMessage, instead of
OAuthClient.invoke
removed deprecated items (version 20090121)
renamed DesktopAccessor to DesktopClient, to reduce confusion
upgraded to Apache httpclient version 4.0-beta2
added downloadUrl
upgrade Apache httpclient to version 4.0-beta2
Don't accept callbacks from other hosts (to prevent abuse).
Moved code into OAuthClient.getAccessToken.
Use constants instead of string literals.
Use constants instead of string literals.
Provide a more informative message, if possible.
Added the desktop module. Changed the other modules' parent to
oauth-examples-parent.
A simple desktop application, illustrating how to use a browser to obtain
authorization.
commentary
added @Deprecated annotations
added a command line tool
fix and simplify ExcerptInputStream. also add a test that shows the problem
pre-change.
Removed the realm parameter from the Authorization header.
changed the artifactId of Jetty
Use composition instead of inheritance, to bind an OAuthClient to an HttpClient.
Don't propagate an exception from reading a response body, if the HTTP status
code is not OK.
deleted the surplus class OAuthMessageFromHttp
simplified
beautified
don't use generics (for compatibility with Tomcat 5)
don't use generics (for compatibility with Tomcat 5)
upgrade to the latest oauth-core.jar
decode the response body regardless of its Content-Type
Tolerate an absent response body.
When throwing OAuthProblemException, include parameters decoded from the
response body.
The oauth_problem parameter is particularly useful.
Use OAuthClient.ACCEPT_ENCODING to set the Accept-Encoding request header.
Close the body stream of an unsuccessful response.
Be sure a decompressed response has no Content-Encoding or Content-Length.
Don't pretend to predict the length of the decompressed stream.
Ignore whitespace at the beginning or end of a response body to be decoded.
Whitespace can be included in parameters by percent-encoding it.
Be sure to close the body of a request OAuthMessage.
Check that testInvokeMessage doesn't take a long time.
Check the response body, regardless of whether it's decodable.
Configure fewer server threads, to validate that they aren't needlessly blocked.
Output less.
Share a single thread-safe HttpClient object, to avoid wasting connections.
Added support for compression of HTTP response bodies, using gzip or deflate.
This involved major refactoring; for example HttpMessage is now separate from
OAuthMessage.
Support HTTP message headers, especially Content-Length.
added serialVersionUID
follow getParameters to its new class
Use generic types.
Include the content-type and body in the OAuthMessage returned by
OAuthServlet.getMessage.
depend on commons-codec (for Base64)
Test ExcerptInputStream.ELLIPSIS.
Return an unsigned byte from ExceptInputStream.read().
relaxed Maven dependencies
Split parameters between an Authorization header and elsewhere, if needed.
Dump the request body using the request charset (not the response charset).
better diagnostics
Use the response Content-Type to decode the body.
Support large request bodies efficiently.
Support binary message bodies.
Mark the servlet API as 'provided' (by the servlet container).
use null to represent the absence of a body
Use getContentCharset to convert the body from a String to a byte array.
Added support for HTTP Content-Type header.
Don't throw NullPointerException when getBodyAsString() == null.
Moved classes that depend on the Jakarta Commons HTTP client into a separate
package.
Added support for HTTP DELETE method.
Added support for HTTP PUT method.
Yahoo requires the oauth_version parameter.
Test the implementation based on HttpClient version 4.
Don't throw an exception when redirected.
specify dependencies on Apache HTTP components
made OAuthMessage.method and .URL variable (not final).
Made response classes public, to facilitate subclassing.
Enable the caller to pass additional parameters to getRequestToken.
This addresses http://code.google.com/p/oauth/issues/detail?id=52
Client classes based on the Apache HttpClient version 4
<http://hc.apache.org/httpcomponents-client/index.html>
Contributed by Sean Sullivan <[email protected]>
enable a client to control whether request parameters are sent in the URL, a
header or the body.
work with method = POST
Normalize an absent path to "/". For discussion, see
http://groups.google.com/group/oauth/browse_thread/thread/c44b6f061bfd98c?hl=en
Add the ability to demo a Shindig gadget with a callback.
Support an HTTP redirect response with multiple Location headers.
Don't decode an HTML response. Dump headers more accurately.
corrected copyright date
moved clients into a field, for possible future re-use
Support redirect responses from a Service Provider.
fixing a bug that prevented sources from being deployed during "mvn deploy"
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
