# HG changeset patch
# User paulb
# Date 1195260548 0
# Node ID b65d621c16daa7d97f0abd7913d14aaa3d07d5f0
# Parent  5b68f06b8d2461fb149f44f79d8011020ddd552c
[project @ 2007-11-17 00:49:08 by paulb]
Relaxed the check for OpenID 2.0-conformant fields.

diff -r 5b68f06b8d24 -r b65d621c16da WebStack/Resources/OpenIDRedirect.py
--- a/WebStack/Resources/OpenIDRedirect.py	Sat Nov 17 00:30:16 2007 +0000
+++ b/WebStack/Resources/OpenIDRedirect.py	Sat Nov 17 00:49:08 2007 +0000
@@ -42,8 +42,11 @@
         # If requested, attempt to verify OpenID assertions.
         # http://openid.net/specs/openid-authentication-2_0-12.html#rfc.section.11
 
-        if fields.get("openid.ns", [None])[0] == self.openid_ns and \
-            fields.get("openid.mode", [None])[0] == "id_res":
+        if fields.get("openid.mode", [None])[0] == "id_res":
+
+            # The additional condition could be used to insist on OpenID 2.0
+            # conformance:
+            # fields.get("openid.ns", [None])[0] == self.openid_ns
 
             if self.authenticator.authenticate(trans, verify=1):
                 trans.redirect(fields["openid.return_to"][0])