@@ -50,7 +50,7 @@ class User < ActiveRecord::Base def authenticate_by_identity_url(identity_url) return nil if identity_url.blank? - u = in_state(:active).first + u = in_state(:active).first(:conditions => {:identity_url => identity_url}) u && u.account.active? ? u : nil end end app/models/user.rb ecc430b2d1bc21c129b3a69179a38601e4e570ed Alex MacCaw maccman@gmail.com http://github.com/maccman/saasy/commit/4f66aa12dc63c0d5304c396cc7146e264ee310e3 4f66aa12dc63c0d5304c396cc7146e264ee310e3 2009-03-21T18:45:54-07:00 2009-03-21T18:45:54-07:00 OpenID auth should be scoped by identity url 731dc91f8c0166b419506846b9770e1c92da07d1 Alex MacCaw maccman@gmail.com