Skip to content
This repository has been archived by the owner on Aug 3, 2020. It is now read-only.

Annoying ("disconcerting"), scary warning #14

Closed
puiterwijk opened this issue Apr 29, 2013 · 5 comments
Closed

Annoying ("disconcerting"), scary warning #14

puiterwijk opened this issue Apr 29, 2013 · 5 comments
Assignees
@puiterwijk
Labels
bug enhancement
Milestone
FAS-OpenID v1.1.0

Comments

@puiterwijk
Copy link
Contributor

Upon starting OpenID login, browsers show a big scary warning about sending information to an unsecured channel.
FIX THIS ASAP!
@ghost ghost assigned puiterwijk Apr 29, 2013
@puiterwijk
Copy link
Contributor Author

At this moment, the first one should be fixed because of configuration: it now uses https as its primary endpoint URL.

@pypingou
Copy link
Contributor

pypingou commented May 1, 2013

Can't we make it accept both?

@puiterwijk
Copy link
Contributor Author

No, we can only have one endpoint, which is perfectly fine to run on https (even if the openid identity itself is on http).
The only remaining problem is that Flask did not see that the request is actually performed through https, but I have the solution for this ready.

@puiterwijk
Copy link
Contributor Author

This should be fixed now in the sources.

@puiterwijk
Copy link
Contributor Author

This has also been fixed in id.fedoraproject.org production.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@puiterwijk puiterwijk

Labels
bug enhancement
Projects
None yet
Milestone
FAS-OpenID v1.1.0
Development

No branches or pull requests
2 participants
@puiterwijk @pypingou