Update doorkeeper requirement from = 4.3.2 to = 5.2.3

[dependabot]

Updates the requirements on doorkeeper to permit the latest version.

Release notes

Sourced from doorkeeper's releases.

v5.2.3

• #1334 Remove application_secret flash helper and redirect_to keyword.
• #1331 Move redirect_uri_validator to where it is used (Application model).
• #1326 Move response_type check in pre_authorization to a method to be easily to override.
• #1329 Fix find_in_batches order warning.

v5.2.2

• #1320 Call configured authenticate_resource_owner method once per request.
• #1315 Allow generation of new secret with Doorkeeper::Application#renew_secret.
• #1309 Allow Doorkeeper::Application#to_json to work without arguments.

v5.2.1

• #1308 Fix flash types for api_only mode (no flashes for ActionController::API).
• #1306 Fix interpolation of missing_param i18n.

v5.2.0

• #1305 Make Doorkeeper::ApplicationController to inherit from ActionController::API in cases when api_mode enabled (fixes #1302).

v5.2.0.rc3

• #1298 Slice strong params so doesn't error with Rails forms.
• #1300 Limiting access to attributes of pre_authorization.
• #1296 Adding client_id to strong parameters.
• #1293 Move ar specific redirect uri validator to ar orm directory.
• #1288 Allow to pass attributes to the Doorkeeper::OAuth::PreAuthorization#as_json method to customize
  the PreAuthorization response.
• #1286 Add ability to customize grant flows per application (OAuth client) (#1245 , #1207)
• #1283 Allow to customize base class for Doorkeeper::ApplicationMetalController (new configuration
  option called base_metal_controller (fix #1273).
• #1277 Prevent requested scope be empty on authorization request, handle and add description for invalid request.

v5.2.0.rc2

• #1270 Find matching tokens in batches for reuse_access_token option (fix #1193).
• #1271 Reintroduce existing token revocation for client credentials.
• #1269 Update initializer template documentation.
• #1266 Use strong parameters within pre-authorization.
• #1264 Add :before_successful_authorization and :after_successful_authorization hooks in TokensController
• #1263 Response properly when introspection fails and fix configurations's user guide.

v5.2.0.rc1

• #1260, #1262 Improve Token Introspection configuration option (access to tokens, client).
• #1257 Add constraint configuration when using client authentication on introspection endpoint.
• #1252 Returning unauthorized when the revocation of the token should not be performed due to wrong permissions.
• #1249 Specify case sensitive uniqueness to remove Rails 6 deprecation message
• #1248 Display the Application Secret in HTML after creating a new application even when hash_application_secrets is used.
• #1248 Return the unhashed Application Secret in the JSON response after creating new application even when hash_application_secrets is used.
• #1238 Better support for native app with support for custom scheme and localhost redirection.

v5.1.0

See Upgrade guides for migration to a new version.

... (truncated)

Changelog

Sourced from doorkeeper's changelog.

5.2.3

• #1334 Remove application_secret flash helper and redirect_to keyword.
• #1331 Move redirect_uri_validator to where it is used (Application model).
• #1326 Move response_type check in pre_authorization to a method to be easily to override.
• #1329 Fix find_in_batches order warning.

5.2.2

• #1320 Call configured authenticate_resource_owner method once per request.
• #1315 Allow generation of new secret with Doorkeeper::Application#renew_secret.
• #1309 Allow Doorkeeper::Application#to_json to work without arguments.

5.2.1

• #1308 Fix flash types for api_only mode (no flashes for ActionController::API).
• #1306 Fix interpolation of missing_param I18n.

5.2.0

• #1305 Make Doorkeeper::ApplicationController to inherit from ActionController::API in cases
  when api_mode enabled (fixes #1302).

5.2.0.rc3

• #1298 Slice strong params so doesn't error with Rails forms.
• #1300 Limiting access to attributes of pre_authorization.
• #1296 Adding client_id to strong parameters.
• #1293 Move ar specific redirect uri validator to ar orm directory.
• #1288 Allow to pass attributes to the Doorkeeper::OAuth::PreAuthorization#as_json method to customize
  the PreAuthorization response.
• #1286 Add ability to customize grant flows per application (OAuth client) (#1245 , #1207)
• #1283 Allow to customize base class for Doorkeeper::ApplicationMetalController (new configuration
  option called base_metal_controller (fix #1273).
• #1277 Prevent requested scope be empty on authorization request, handle and add description for invalid request.

5.2.0.rc2

• #1270 Find matching tokens in batches for reuse_access_token option (fix #1193).
• #1271 Reintroduce existing token revocation for client credentials.
• #1269 Update initializer template documentation.
• #1266 Use strong parameters within pre-authorization.
• #1264 Add :before_successful_authorization and :after_successful_authorization hooks in TokensController
• #1263 Response properly when introspection fails and fix configurations's user guide.

5.2.0.rc1

• #1260, #1262 Improve Token Introspection configuration option (access to tokens, client).
• #1257 Add constraint configuration when using client authentication on introspection endpoint.
• #1252 Returning unauthorized when the revocation of the token should not be performed due to wrong permissions.

... (truncated)

Upgrade guide

Sourced from doorkeeper's upgrade guide.

See Upgrade Guides
in the project Wiki.

Commits

• 23e9c03 Release 5.2.3 🎉
• a795b0a Merge pull request #1334 from grosser/grosser/flash
• 1605aa4 Fix find_in_batches order warning (#1329)
• 9262a30 avoid setting flash type so it does not define extra methods/unexpected redir...
• c075df5 Merge pull request #1331 from grosser/grosser/require
• d446dc2 require the validator where it is needed to work for apps that lazy-load
• ad68a38 Merge pull request #1326 from linhdangduy/check_response_type_in_another_meth...
• 9837699 move response type checking to a method to be easily to override
• 1332d8b Release 5.2.2 🎉
• 326a75a Use other rspec-rails branch
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

[dependabot]

Superseded by #114.