Refactors facebook login into oauth generic login
Adds additional oauth2 providers
adds ability to pass an oAuth validator in the config
Adds Twitter validation support + OAuth 1 client
Support auth_token instead of access_token for twitter
Improves code coverage of OAuth
Adds validation of oauth provider structures
Better coverage of the OAuth spec
100% coverage of OAuth1.js
Adds passing auth_token_secret for Twitter auth.
Refactors auth validation methods to include authData parameter
- Adds ability to extens oauth validator through configuration
- Adds ability to extend oauth validator through external module (file or package)
- Adds more tests
- Adds tests to login with custom auth provider
Adds more tests for REST API
fixes twitter auth_token
f
Move object ID, token, and random string generation into their own
module, cryptoUtils.
Remove hat dependency, which was used to generate session and some other
tokens, because it used non-cryptographic random number generator.
Replace it with the cryptographically secure one. The result has the
same format (32-character hex string, 128 bits of entropy).
Remove randomstring dependency, as we already have this functionality.
Add tests.
