Skip to content

Brandon/bb2 4689 client credential token 24 hours#1544

Draft
bwang-icf wants to merge 15 commits intomasterfrom
brandon/BB2-4689-client-credential-token-24-hours
Draft

Brandon/bb2 4689 client credential token 24 hours#1544
bwang-icf wants to merge 15 commits intomasterfrom
brandon/BB2-4689-client-credential-token-24-hours

Conversation

@bwang-icf
Copy link
Copy Markdown
Contributor

@bwang-icf bwang-icf commented Apr 3, 2026

JIRA Ticket:
BB2-XXXX

What Does This PR Do?

What Should Reviewers Watch For?

If you're reviewing this PR, please check for these things in particular:

Validation

What Security Implications Does This PR Have?

Please indicate if this PR does any of the following:

  • Adds any new software dependencies
  • Modifies any security controls
  • Adds new transmission or storage of data
  • Any other changes that could possibly affect security?
  • Yes, one or more of the above security implications apply. This PR must not be merged without the ISSO or team
    security engineer's approval.

Any Migrations?

  • Yes, there are migrations
    • The migrations should be run PRIOR to the code being deployed
    • The migrations should be run AFTER the code is deployed
    • There is a more complicated migration plan (downtime,
      etc)
  • No migrations

jimmyfagan and others added 14 commits March 31, 2026 15:25
@jimmyfagan
Updates to uniqueness constraints, scaffolding
90bf1c9
@jimmyfagan
Updates to uniqueness constraints
c885c61
@jimmyfagan
Intermediate updates to dag, tokens, etc
54bfa30
@JamesDemeryNava
Fix flake8
78c06b8
@JamesDemeryNava
Switch to use request.client.user.pk, update access_token user_id aft…
916a42e 
…er creating it in create_token_response. Add TODOs
@JamesDemeryNava
Make user_id setting in oauth2_server.py dynamic based on grant type
806f67d
@JamesDemeryNava
Make client-id retrieval programmatic in loggers.py
91c2d6e
@jimmyfagan
Override allowed grant types method on Applications
8ceb56d
@JamesDemeryNava
Fix failing unit tests
f86440b
@JamesDemeryNava
Rebase and resolve merge conflicts
0f69636
@JamesDemeryNava
Move code for DAG and access token down, skip test that is now failin…
681ec51 
…g due to 4699 changes
@bwang-icf
adding in jwt changes
461a43a
@bwang-icf
Merge remote-tracking branch 'origin/jimmyfagan/bb2-4699-can-user-cre…
0dd19e8 
…ation' into brandon/BB2-4689-client-credential-token-24-hours
@bwang-icf
fixing unit test for client_credentials
4a5a3f2
github-advanced-security[bot]
github-advanced-security AI found potential problems Apr 3, 2026
View reviewed changes
apps/dot_ext/views/authorization.py Outdated

if not re.match(YYYY_MM_DD_REGEX, payload.get('birthdate')):
log.warning(f'birthdate was not a valid string: {payload.get('birthdate')}')
log.warning(f'birthdate was not a valid string: {payload.get("birthdate")}')
@JamesDemeryNava
Copy link
Copy Markdown
Contributor

JamesDemeryNava commented Apr 10, 2026

@bwang-icf this should be closed, right?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@github-advanced-security github-advanced-security[bot] github-advanced-security[bot] left review comments

Reviewers whose approvals may not affect merge requirements

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@bwang-icf @JamesDemeryNava @github-advanced-security @jimmyfagan