kotovalexarian-likes-github/simi--omniauth-facebook
1
0
Fork 0
mirror of https://github.com/simi/omniauth-facebook.git synced 2022-11-09 12:32:45 -05:00
Code Releases Activity

remove now redundant per-request state from signed_request flow (it will fail CSRF)

Browse source
This commit is contained in:
Mark Dodwell 2013-11-13 23:55:33 -08:00
parent a3d5375389
commit fd62381a5f
1 changed files with 0 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
lib/omniauth/strategies/facebook.rb
View file

@ -81,7 +81,6 @@ module OmniAuth
# if we already have an access token, we can just hit the
# callback URL directly and pass the signed request along
params = { :signed_request => raw_signed_request }
params[:state] = request.params['state'] if request.params['state']
query = Rack::Utils.build_query(params)
url = callback_url