need to run allurapaste script /var/local/config/production.ini allura/scripts/create_oauth1_dummy_tokens.py for it to handle invalid input params without erroring. And ensure_index cmd would be good too.
some changes:
validation pins are 30 chars now, instead of 6 chars for out-of-band (non-web, like scripts) and 20 chars for web redirects
request tokens are deleted after use, can’t be re-used
not changed:
oauth_callback=oob is assumed as default if not given. The oauth1 spec requires it to be given, but we haven't been requiring it so we'll keep defaulting so that no scripts break
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
db/8461
need to run
allurapaste script /var/local/config/production.ini allura/scripts/create_oauth1_dummy_tokens.pyfor it to handle invalid input params without erroring. Andensure_indexcmd would be good too.some changes:
not changed:
oauth_callback=oobis assumed as default if not given. The oauth1 spec requires it to be given, but we haven't been requiring it so we'll keep defaulting so that no scripts break