Added support for singular scope query parameter.

jfilipe · jfilipe · commit d612e54e3c31 · 2014-01-28T12:47:39.000-05:00
diff --git a/oauth2_provider/forms.py b/oauth2_provider/forms.py
@@ -6,11 +6,18 @@
 class AllowForm(forms.Form):
     allow = forms.BooleanField(required=False)
     redirect_uri = forms.CharField(widget=forms.HiddenInput())
-    scopes = forms.CharField(required=False, widget=forms.HiddenInput())
+    scope = forms.CharField(required=False, widget=forms.HiddenInput())
     client_id = forms.CharField(widget=forms.HiddenInput())
     state = forms.CharField(required=False, widget=forms.HiddenInput())
     response_type = forms.CharField(widget=forms.HiddenInput())
 
+    def __init__(self, *args, **kwargs):
+        data = kwargs.get('data')
+        # backwards compatible support for plural `scopes` query parameter
+        if data and 'scopes' in data:
+            data['scope'] = data['scopes']
+        return super(AllowForm, self).__init__(*args, **kwargs)
+
 
 class RegistrationForm(forms.ModelForm):
     """
diff --git a/oauth2_provider/views/base.py b/oauth2_provider/views/base.py
@@ -71,10 +71,10 @@ class AuthorizationView(BaseAuthorizationView, FormView):
 
     def get_initial(self):
         # TODO: move this scopes conversion from and to string into a utils function
-        scopes = self.oauth2_data.get('scopes', [])
+        scopes = self.oauth2_data.get('scope', self.oauth2_data.get('scopes', []))
         initial_data = {
             'redirect_uri': self.oauth2_data.get('redirect_uri', None),
-            'scopes': ' '.join(scopes),
+            'scope': ' '.join(scopes),
             'client_id': self.oauth2_data.get('client_id', None),
             'state': self.oauth2_data.get('state', None),
             'response_type': self.oauth2_data.get('response_type', None),
@@ -90,7 +90,7 @@ def form_valid(self, form):
                 'state': form.cleaned_data.get('state', None),
             }
 
-            scopes = form.cleaned_data.get('scopes')
+            scopes = form.cleaned_data.get('scope')
             allow = form.cleaned_data.get('allow')
             uri, headers, body, status = self.create_authorization_response(
                 request=self.request, scopes=scopes, credentials=credentials, allow=allow)
