vbatts/quay
Archived
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity

Remove access_token from user_info

Browse source
This commit is contained in:
Joseph Schorr 2017-08-09 20:55:37 -04:00
parent adc70d2fe2
commit f51a863158
3 changed files with 1 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
data/users/test/test_oidc.py
View file

@ -4,9 +4,7 @@ from httmock import HTTMock
from data import model from data import model
from data.users.oidc import OIDCInternalAuth from data.users.oidc import OIDCInternalAuth
from oauth.test.test_oidc import (id_token, oidc_service, signing_key, jwks_handler, from oauth.test.test_oidc import *
discovery_handler, app_config, http_client,
discovery_content)
from test.fixtures import * from test.fixtures import *
@pytest.mark.parametrize('username, expect_success', [ @pytest.mark.parametrize('username, expect_success', [

1
oauth/base.py
View file

@ -97,7 +97,6 @@ class OAuthService(object):
def get_user_info(self, http_client, token): def get_user_info(self, http_client, token):
token_param = { token_param = {
'access_token': token,
'alt': 'json', 'alt': 'json',
} }

2
util/config/validators/validate_oidcauth.py
View file

@ -19,5 +19,3 @@ class OIDCAuthValidator(BaseValidator):
OIDCInternalAuth(config, login_service_id, False) OIDCInternalAuth(config, login_service_id, False)
except UnknownServiceException as use: except UnknownServiceException as use:
raise ConfigValidationException(use.message) raise ConfigValidationException(use.message)