Merge lp:~canonical-isd-hackers/canonical-identity-provider/reconfirm_sreg_fields into lp:~canonical-isd-hackers/canonical-identity-provider/stable
Proposed by
Anthony Lenton
Status: | Merged |
---|---|
Approved by: | Ricardo Kirkner |
Approved revision: | no longer in the source branch. |
Merged at revision: | 121 |
Proposed branch: | lp:~canonical-isd-hackers/canonical-identity-provider/reconfirm_sreg_fields |
Merge into: | lp:~canonical-isd-hackers/canonical-identity-provider/stable |
Diff against target: |
363 lines (+77/-59) 7 files modified
identityprovider/const.py (+0/-2) identityprovider/models/openidmodels.py (+11/-12) identityprovider/templates/decide.html (+7/-3) identityprovider/tests/functional/openid_/per_version/test_restricted_sreg.py (+33/-6) identityprovider/tests/test_models_openidmodels.py (+21/-15) identityprovider/tests/test_views_server.py (+3/-18) identityprovider/views/server.py (+2/-3) |
To merge this branch: | bzr merge lp:~canonical-isd-hackers/canonical-identity-provider/reconfirm_sreg_fields |
Related bugs: |
Reviewer | Review Type | Date Requested | Status |
---|---|---|---|
Canonical ISD hackers | Pending | ||
Review via email: mp+69185@code.launchpad.net |
Commit message
Require the user to re-confirm they want to sign in every time, for untrusted RPs.
Description of the change
Overview
========
This branch requires the user to re-confirm which details to send to the RP each time they sign in, for untrusted RPs
Details
=======
Three small improvements related to this:
- OpenIDAuthoriza
- Fixed a small bug so that even for untrusted RPs the form is prepopulated with defaults matching the details you sent last time.
- Made the "Team membership" label work as a label for the team membership checkbox.
To post a comment you must log in.
Looks really good. However I still have one question.
If we're ignoring the expiration date, because we're automatically expiring the authorizations, why not get rid of the column at all? (and all relevant checks)