puiterwijk pushed to python-openid (master). "Make it more privacy friendly by using POST"
notifications at fedoraproject.org
notifications at fedoraproject.org
Fri May 22 19:40:15 UTC 2015
From e0734730028527162d92066cacc5c2e1470512c6 Mon Sep 17 00:00:00 2001
From: Patrick Uiterwijk <puiterwijk at redhat.com>
Date: Fri, 22 May 2015 21:39:27 +0200
Subject: Make it more privacy friendly by using POST
diff --git a/python-openid-privacy-friendly.patch b/python-openid-privacy-friendly.patch
new file mode 100644
index 0000000..1cf4c97
--- /dev/null
+++ b/python-openid-privacy-friendly.patch
@@ -0,0 +1,23 @@
+diff -ruP python-openid-b1d37696469921f1025395201864842427fc32fb.orig/openid/server/server.py python-openid-b1d37696469921f1025395201864842427fc32fb/openid/server/server.py
+--- python-openid-b1d37696469921f1025395201864842427fc32fb.orig/openid/server/server.py 2015-05-22 21:34:53.283630191 +0200
++++ python-openid-b1d37696469921f1025395201864842427fc32fb/openid/server/server.py 2015-05-22 21:37:02.992178638 +0200
+@@ -1043,11 +1043,14 @@
+ @change: 2.1.0 added the ENCODE_HTML_FORM response.
+ """
+ if self.request.mode in BROWSER_REQUEST_MODES:
+- if self.fields.isOpenID1() and \
+- len(self.encodeToURL()) > OPENID1_URL_LIMIT:
+- return ENCODE_HTML_FORM
+- else:
+- return ENCODE_URL
++ # This is more privacy friendly, as it leaks less user data
++ # with OpenID urls in referal
++ return ENCODE_HTML_FORM
++ #if self.fields.isOpenID1() and \
++ # len(self.encodeToURL()) > OPENID1_URL_LIMIT:
++ # return ENCODE_HTML_FORM
++ #else:
++ # return ENCODE_URL
+ else:
+ return ENCODE_KVFORM
+
diff --git a/python-openid.spec b/python-openid.spec
index 1618ede..fb7aec0 100644
--- a/python-openid.spec
+++ b/python-openid.spec
@@ -12,13 +12,14 @@
Name: python-openid
Version: 2.2.5
-Release: 8%{?dist}
+Release: 9%{?dist}
Summary: Python OpenID libraries
Group: Development/Languages
License: ASL 2.0
URL: http://github.com/openid/python-openid
Source0: https://github.com/openid/%{name}/archive/%{commit}/%{name}-%{version}.tar.gz
+Patch0: %{name}-privacy-friendly.patch
BuildArch: noarch
BuildRequires: python-setuptools
@@ -45,6 +46,7 @@ Features of the 2.x.x series include:
%prep
%setup -qn %{name}-%{commit}
find . -type f | xargs chmod a-x
+%patch0 -p1
%build
%{__python2} setup.py build
@@ -64,6 +66,9 @@ find . -type f | xargs chmod a-x
%{python2_sitelib}/python_openid-*.egg-info
%changelog
+* Fri May 22 2015 Patrick Uiterwijk <puiterwijk at redhat.com> - 2.2.5-9
+- Make it more privacy friendly by using POST
+
* Sat Jun 07 2014 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 2.2.5-8
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
--
cgit v0.10.2
http://pkgs.fedoraproject.org/cgit/python-openid.git/commit/?h=master&id=e0734730028527162d92066cacc5c2e1470512c6
More information about the scm-commits
mailing list