Merge lp:~jamestait/django-openid-auth/revert-account-verified-model-change into lp:~django-openid-auth/django-openid-auth/trunk
| Status: | Merged |
|---|---|
| Approved by: | Ricardo Kirkner |
| Approved revision: | 120 |
| Merged at revision: | 103 |
| Proposed branch: | lp:~jamestait/django-openid-auth/revert-account-verified-model-change |
| Merge into: | lp:~django-openid-auth/django-openid-auth/trunk |
| Diff against target: |
521 lines (+86/-130) 5 files modified
django_openid_auth/auth.py (+16/-13) django_openid_auth/models.py (+1/-15) django_openid_auth/tests/test_auth.py (+37/-25) django_openid_auth/tests/test_models.py (+8/-26) django_openid_auth/tests/test_views.py (+24/-51) |
| To merge this branch: | bzr merge lp:~jamestait/django-openid-auth/revert-account-verified-model-change |
| Related bugs: |
| Reviewer | Review Type | Date Requested | Status |
|---|---|---|---|
| Ricardo Kirkner | Approve | ||
|
Review via email:
|
|||
Commit message
Revert the UserOpenID model change which added the account_verified flag. The intention was to allow for the support of multiple UserOpenIDs for a given User, but in reality the solution wouldn't have provided this, because we have no idea which OP provided the e-mail address associated with the account. In the meantime, allow for the simple case of handling account_verified for a single UserOpenID, while not ruling out future support for the complex case.
Description of the change
This branch reverts the addition of the account_verified flag to the
UserOpenID model.
The intention was to allow for the support of multiple UserOpenIDs for a
given User, but the solution as implemented would not have provided this.
If the OpenID response contains an e-mail address then we *do* know where
the e-mail address associated with the Django account came from - it came
from the same OP that's now making assertions as to the validity of the
address, because we're in the process of updating the user's details
with the ones in the OpenID response.
But this doesn't necessarily help us, because we don't maintain the link
between the e-mail address and the OpenID, so even if the same e-mail
address is used with two (trusted) OPs, if they differ in their opinion of
the validity of the address, we have no way of saying "but it's OK, because
the other OP has verified it."
LGTM