Pyfxa

==================

- Add retries to the APIClient session

==================

- Fix incorrect validation of JWKs passed to oauth.Client constructor,
which was actually *preventing* the caller from setting a correct value
rather than checking that they did so.

==================

- Add ability to configure a fixed list of JWT access token keys,
by passing them as an argument to `oauth.Client()` rather than
fetching them at runtime from the server.
- Fix verification of JWT access token `typ` header.
(Thankfully it was failing closed rather than failing open).
- Fix verification of `scope` list obtained from a JWT access token.
(Thankfully it was failing closed rather than failing open).

==================

- Add support for `reason` and `verification_method` keyword arguments
to the `login` method.

==================

- Perform more complete checking of the `state` parameter when authorizing
an OAuth code.
- When verifying OAuth access tokens, try to verify them locally as a JWT
rather than passing them to the remote verification endpoint.

==================

- Allow specifying a `ttl` when redeeming an authorization code.