diff options
| author | Andrew Arnott <andrewarnott@gmail.com> | 2011-06-23 19:55:32 -0700 |
|---|---|---|
| committer | Andrew Arnott <andrewarnott@gmail.com> | 2011-06-23 19:55:32 -0700 |
| commit | 3769a926805bb896187c1a4f8848949c57dee819 (patch) | |
| tree | 4319b92638fe292c8e3ce78a3cd3fef630df69eb /samples/OAuthAuthorizationServer/Code/Client.cs | |
| parent | 2704b0fb445ab041f4f008bef8752e2828799b85 (diff) | |
| parent | 7534febacfd0b85a8745cc99254610bebd745d86 (diff) | |
| download | DotNetOpenAuth-3769a926805bb896187c1a4f8848949c57dee819.zip DotNetOpenAuth-3769a926805bb896187c1a4f8848949c57dee819.tar.gz DotNetOpenAuth-3769a926805bb896187c1a4f8848949c57dee819.tar.bz2 | |
Merging in support for and sample of implicit grants.
Diffstat (limited to 'samples/OAuthAuthorizationServer/Code/Client.cs')
| -rw-r--r-- | samples/OAuthAuthorizationServer/Code/Client.cs | 14 |
1 files changed, 13 insertions, 1 deletions
diff --git a/samples/OAuthAuthorizationServer/Code/Client.cs b/samples/OAuthAuthorizationServer/Code/Client.cs index 62bc193..b32bb15 100644 --- a/samples/OAuthAuthorizationServer/Code/Client.cs +++ b/samples/OAuthAuthorizationServer/Code/Client.cs @@ -37,7 +37,19 @@ /// <c>true</c> if the callback URL is allowable for this client; otherwise, <c>false</c>. /// </returns> bool IConsumerDescription.IsCallbackAllowed(Uri callback) { - return string.IsNullOrEmpty(this.Callback) || callback == new Uri(this.Callback); + if (string.IsNullOrEmpty(this.Callback)) { + // No callback rules have been set up for this client. + return true; + } + + // In this sample, it's enough of a callback URL match if the scheme and host match. + // In a production app, it is advisable to require a match on the path as well. + Uri acceptableCallbackPattern = new Uri(this.Callback); + if (String.Equals(acceptableCallbackPattern.GetLeftPart(UriPartial.Authority), callback.GetLeftPart(UriPartial.Authority), StringComparison.Ordinal)) { + return true; + } + + return false; } #endregion |