diff options
| author | Andrew Arnott <andrewarnott@gmail.com> | 2011-06-13 17:35:51 -0700 |
|---|---|---|
| committer | Andrew Arnott <andrewarnott@gmail.com> | 2011-06-13 17:35:51 -0700 |
| commit | 1c99bf16c5b570cadcf27d0b9ce3d598d06b34ca (patch) | |
| tree | 24c320ffe3ec59144669b817d717c22fecd2ffc4 /projecttemplates/RelyingPartyLogic/OAuthAuthorizationServer.cs | |
| parent | f897ab5edf023ea6ca2b36b9075bd7dfbe3a6cde (diff) | |
| parent | bdf648e967b58b7220f0de14a0f58ed8c7a93d41 (diff) | |
| download | DotNetOpenAuth-1c99bf16c5b570cadcf27d0b9ce3d598d06b34ca.zip DotNetOpenAuth-1c99bf16c5b570cadcf27d0b9ce3d598d06b34ca.tar.gz DotNetOpenAuth-1c99bf16c5b570cadcf27d0b9ce3d598d06b34ca.tar.bz2 | |
Merging in draft 16 compliance branch.
Diffstat (limited to 'projecttemplates/RelyingPartyLogic/OAuthAuthorizationServer.cs')
| -rw-r--r-- | projecttemplates/RelyingPartyLogic/OAuthAuthorizationServer.cs | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/projecttemplates/RelyingPartyLogic/OAuthAuthorizationServer.cs b/projecttemplates/RelyingPartyLogic/OAuthAuthorizationServer.cs index 69757be..f0608d5 100644 --- a/projecttemplates/RelyingPartyLogic/OAuthAuthorizationServer.cs +++ b/projecttemplates/RelyingPartyLogic/OAuthAuthorizationServer.cs @@ -98,7 +98,7 @@ namespace RelyingPartyLogic { // NEVER issue an auto-approval to a client that would end up getting an access token immediately // (without a client secret), as that would allow ANY client to spoof an approved client's identity // and obtain unauthorized access to user data. - if (EndUserAuthorizationRequest.ResponseType == EndUserAuthorizationResponseTypes.AuthorizationCode) { + if (authorizationRequest.ResponseType == EndUserAuthorizationResponseType.AuthorizationCode) { // Never issue auto-approval if the client secret is blank, since that too makes it easy to spoof // a client's identity and obtain unauthorized access. var requestingClient = Database.DataContext.Clients.First(c => c.ClientIdentifier == authorizationRequest.ClientIdentifier); |