Unable to complete OpenID login with ruby-openid 2.9.0/2.9.1 #125
We've been testing the latest version of ruby-openid in our development environment and found that we are no longer able to successfully complete login. We started seeing
in our logs, which lead us to find out that #121 broke our login flow (note endpoint is
Here is what we are doing:
As it turns out, the call to
We were able to work around this by locking down to 2.8.0. I do realize that the change made in #121 was for security reasons, but we're not sure how to proceed.
Okay, it seems that some parts of the code is dependent on the execution order.
If anyone has the time to look into this and make a proposal for how to fix it, it would be much appreciated. I might take a look at it, but I unfortunately have very limit time available.