Crowd's OpenID approvals are based around the return_to URL. An OpenID 2 request may present a more general realm as well (Realms). If present, the user should be asked to approve the realm for this and future requests.
If a whitelist is present (CWD-3045) it should be treated as a list of realms. Any realm must either be directly present on the whitelist (if it's a pattern) or match something on the whitelist if it's a concrete return_to URL.
- has a derivative of
-
CWD-3069 Warn about overly general Realms in OpenID requests
- Gathering Interest
- relates to
-
- Closed
-
- Closed
- mentioned in
-
Wiki Page Loading...
[CWD-3060] Use OpenID Realm for approval requests
| Workflow | Original: JAC Suggestion Workflow [ 3388269 ] | New: JAC Suggestion Workflow 3 [ 3630143 ] |
| Status | Original: RESOLVED [ 5 ] | New: Closed [ 6 ] |
| Workflow | Original: Simplified Crowd Development Workflow v2 [ 1390230 ] | New: JAC Suggestion Workflow [ 3388269 ] |
| Issue Type | Original: Improvement [ 4 ] | New: Suggestion [ 10000 ] |
| Workflow | Original: Crowd Development Workflow v2 [ 456640 ] | New: Simplified Crowd Development Workflow v2 [ 1390230 ] |
| Remote Link | New: This issue links to "Wiki Page (Extranet)" [ 33600 ] |
| Fix Version/s | New: 2.6 [ 25892 ] | |
| Resolution | New: Fixed [ 1 ] | |
| Status | Original: Technical Review [ 10028 ] | New: Resolved [ 5 ] |
| Status | Original: In Progress [ 3 ] | New: Technical Review [ 10028 ] |
| Status | Original: Verified [ 10005 ] | New: In Progress [ 3 ] |
| Status | Original: Needs Verification [ 10004 ] | New: Verified [ 10005 ] |
| Status | Original: In Progress [ 3 ] | New: Needs Verification [ 10004 ] |