Changeset 8060 for trunk/ndg_oauth/ndg_oauth_server

Timestamp:

15/05/12 14:22:59 (9 years ago)

Author:

rwilkinson

Message:

Use logged in username returned by repoze.who login for setting client authorisations.

File:

• trunk/ndg_oauth/ndg_oauth_server/ndg/oauth/server/wsgi/authentication_filter.py (modified) (1 diff)

trunk/ndg_oauth/ndg_oauth_server/ndg/oauth/server/wsgi/authentication_filter.py

@@ -200 +200 @@
             (identity, headers) = repoze_who_api.login(credentials)
             if identity is not None:
-                log.debug("Logged in as %r", identity)
+                logged_in_username = identity['repoze.who.userid']
+                log.debug("Logged in using username %s as %s", username,
+                          logged_in_username)
     
                 if self.combined_authorization:
-                    self._set_client_authorization(req, session, username)
+                    self._set_client_authorization(req, session,
+                                                   logged_in_username)
                 return_url = req.params.get(self.return_url_param)
                 return self._redirect(return_url, start_response, headers)