Don't spoof the HTTP method for OpenID, that's just a bad idea.

2022-11-09 12:31:49 -05:00 · 2011-01-12 08:55:56 -06:00 · 2011-01-12 08:55:56 -06:00 · 96ca2e6117
commit 96ca2e6117
parent dd4e3752dd
1 changed files with 0 additions and 7 deletions
--- a/oa-openid/lib/omniauth/strategies/open_id.rb
+++ b/oa-openid/lib/omniauth/strategies/open_id.rb
@ -55,12 +55,6 @@ module OmniAuth
        )}, []]}
      end
      
-      def callback_url
-        uri = URI.parse(request.url)
-        uri.path += '/callback'
-        uri.to_s
-      end
-      
      def identifier
        options[:identifier] || request[IDENTIFIER_URL_PARAMETER]
      end
@ -88,7 +82,6 @@ module OmniAuth
      end
      
      def callback_phase
-        env['REQUEST_METHOD'] = 'GET'
        openid = Rack::OpenID.new(lambda{|env| [200,{},[]]}, @store)
        openid.call(env)
        @openid_response = env.delete('rack.openid.response')