diff options
| author | webchick <webchick@24967.no-reply.drupal.org> | 2012-02-01 13:46:20 -0800 |
|---|---|---|
| committer | webchick <webchick@24967.no-reply.drupal.org> | 2012-02-01 13:46:20 -0800 |
| commit | 7bb06635ee0fbb36d5e4b24368e8224976dba852 (patch) | |
| tree | 0fc7622ac7fcb96a18eb8edae2d09d8e28d6a407 /modules/openid/openid.module | |
| parent | 52ffc1eae3f2bdd44a508139b483f01098cb945e (diff) | |
| parent | 40093b2fa7dde4a5f3c6806aad91b9302c232903 (diff) | |
| download | brdo-7bb06635ee0fbb36d5e4b24368e8224976dba852.tar.gz brdo-7bb06635ee0fbb36d5e4b24368e8224976dba852.tar.bz2 | |
Drupal 7.12
Diffstat (limited to 'modules/openid/openid.module')
| -rw-r--r-- | modules/openid/openid.module | 13 |
1 files changed, 9 insertions, 4 deletions
diff --git a/modules/openid/openid.module b/modules/openid/openid.module index f2847fc0d..e08d55718 100644 --- a/modules/openid/openid.module +++ b/modules/openid/openid.module @@ -185,10 +185,15 @@ function openid_form_user_register_form_alter(&$form, &$form_state) { $response = $_SESSION['openid']['response']; - // Extract Simple Registration keys from the response. - $sreg_values = openid_extract_namespace($response, OPENID_NS_SREG, 'sreg'); - // Extract Attribute Exchanges keys from the response. - $ax_values = openid_extract_namespace($response, OPENID_NS_AX, 'ax'); + // Extract Simple Registration keys from the response. We only include + // signed keys as required by OpenID Simple Registration Extension 1.0, + // section 4. + $sreg_values = openid_extract_namespace($response, OPENID_NS_SREG, 'sreg', TRUE); + // Extract Attribute Exchanges keys from the response. We only include + // signed keys. This is not required by the specification, but it is + // recommended by Google, see + // http://googlecode.blogspot.com/2011/05/security-advisory-to-websites-using.html + $ax_values = openid_extract_namespace($response, OPENID_NS_AX, 'ax', TRUE); if (!empty($sreg_values['nickname'])) { // Use the nickname returned by Simple Registration if available. |