Uh oh!
There was an error while loading.Please reload this page.
- Notifications
You must be signed in to change notification settings - Fork493
Allow non-HTTPS issuer when OAUTHLIB_INSECURE_TRANSPORT.#803
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to ourterms of service andprivacy statement. We’ll occasionally send you account related emails.
Already on GitHub?Sign in to your account
Uh oh!
There was an error while loading.Please reload this page.
Conversation
Uh oh!
There was an error while loading.Please reload this page.
I was going off of the existing unit tests for the metadata endpoint, which don't seem to test the validations? Likely because the validations don't result in a user-facing error but a hard Happy to whip up a quick test if you'd still like me to. |
yes please |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others.Learn more.
LGTM
Use
utils.is_secure_transportto validate issuer, that wayOAUTHLIB_INSECURE_TRANSPORTis taken into account.