Merge lp:~salgado/launchpad/bug-530738 into lp:launchpad
Proposed by
Guilherme Salgado
Status: | Merged |
---|---|
Merged at revision: | not available |
Proposed branch: | lp:~salgado/launchpad/bug-530738 |
Merge into: | lp:launchpad |
Diff against target: |
58 lines (+27/-3) 2 files modified
lib/canonical/launchpad/webapp/login.py (+2/-3) lib/canonical/launchpad/webapp/tests/test_login.py (+25/-0) |
To merge this branch: | bzr merge lp:~salgado/launchpad/bug-530738 |
Related bugs: |
Reviewer | Review Type | Date Requested | Status |
---|---|---|---|
Francis J. Lacoste (community) | release-critical | Approve | |
Brad Crittenden (community) | code | Approve | |
Review via email: mp+20452@code.launchpad.net |
To post a comment you must log in.
We're currently passing the application URL as the realm when starting
an OpenID authentication. That means when you login on, say,
bugs.lp.net, the provider will be told that the realm is bugs.lp.net,
but that's not really true as the authentication is valid for all of
launchpad.net. That is also how the spec says the realm should be used:
A realm is designed to give the end user an indication of the scope openid. net/specs/ openid- authentication- 2_0.html# realms)
of the authentication request.
(http://
This branch fixes that by always using the mainsite's root URL as the
realm (aka trust root).