Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
H
H
Homakov2012-07-03 20:53:50
Ruby on Rails
Homakov, 2012-07-03 20:53:50

How to get rid of default OAuth Callback Forgery?

homakov.blogspot.com/2012/07/saferweb-most-common-oauth2.html
who would solve the problem without leaving the parameter optional?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
L
larikov, 2012-07-03
@larikov

This article describes the solution.
You are supposed to send special optional param 'state' - any random hash you get back by Provider in User's callback: ?code=123&state=HASH. Before adding OAuth account you MUST verify session[state] is equal params[state].

Similar questions
K
Konstantin T2014-12-04 23:43:04
The Russian locale does not want to work in ROR 4.1.4, what can interfere with the connection? 2Reply
M
Maxim Filippov2014-12-08 14:17:24
How to submit id and not value in form with Select2? 4Reply
S
Said Dias2016-12-08 00:10:00
How to create 2 models in Rails and link them together?? 1Reply
A
Anton Ivanov2016-12-09 09:37:17
What is the difference between calling self.method and just method from a class instance in ruby? 1Reply
D
Demigodd2019-05-07 12:56:00
How to search by hash in Ruby? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question