Re: Sample Code, quick simple openid auth

2008-05-20 Thread Bluebie, Jenna
Sure, but if you're building an app that keeps secrets about me from me, I'd rather not use it, thank you. On 20/05/2008, at 6:01 PM, Magnus Holm wrote: Everyone can read their session, though. I can post an example which encrypts everything (don't expect it to be super-fast). On Tue,

Re: Sample Code, quick simple openid auth

2008-05-20 Thread Magnus Holm
Cookies can be stealt. I'm protecting you against yourself :-P 2008/5/20, Bluebie, Jenna [EMAIL PROTECTED]: Sure, but if you're building an app that keeps secrets about me from me, I'd rather not use it, thank you. On 20/05/2008, at 6:01 PM, Magnus Holm wrote: Everyone can read their

Re: Sample Code, quick simple openid auth

2008-05-20 Thread Bluebie, Jenna
How does encrypting them make any difference against steal-ability? Wouldn't putting the IP address of the user be more to the point? Though that would lock out many user's from ISP's using proxies. I'm certainly aware of XSS issues and even posted a simple way of blocking them in camping

Sample Code, quick simple openid auth

2008-05-18 Thread Bluebie, Jenna
You'll need to install the 'openid' gem for this, and require it in your camping app: class Login R '/login' def get this_url = 'http:' + URL('/login').to_s unless input.finish.to_s == '1' # start doing the auth here begin oid_request