Details
-
Bug
-
Resolution: Fixed
-
High
Description
When you use the OAuth portal to authenticate, and choose Google, nowhere during the redirection back after successful authentication does it call the "Callback URL" with the token. In fact, it just goes right into the http://bitbucket.org main website! This is a broken OAuth flow. If Google is a second class citizen for login, which it seems to be, why not just get rid of it anyways?