Merge remote-tracking branch 'origin/v4.1' into v4.1

author: Andrew Arnott <andrewarnott@gmail.com> 2013-03-03 07:20:01 -0800
committer: Andrew Arnott <andrewarnott@gmail.com> 2013-03-03 07:20:01 -0800
commit: e38569da243fb331c46bfc2823dab749b5416327 (patch)
tree: e2d312777958271dfed83b4e73b57fe953245261 /samples/OpenIdProviderMvc/Controllers/OpenIdController.cs
parent: ae44be6fcfe656d7f8ff0bb6162c67cc06384884 (diff)
parent: 778328ec797299ed6aa01279b3ccbf1eb15258bd (diff)
download: DotNetOpenAuth-e38569da243fb331c46bfc2823dab749b5416327.zip
DotNetOpenAuth-e38569da243fb331c46bfc2823dab749b5416327.tar.gz
DotNetOpenAuth-e38569da243fb331c46bfc2823dab749b5416327.tar.bz2
1 files changed, 6 insertions, 1 deletions
diff --git a/samples/OpenIdProviderMvc/Controllers/OpenIdController.cs b/samples/OpenIdProviderMvc/Controllers/OpenIdController.cs
index bd6de1b..6abbe17 100644
--- a/samples/OpenIdProviderMvc/Controllers/OpenIdController.cs
+++ b/samples/OpenIdProviderMvc/Controllers/OpenIdController.cs
@@ -267,7 +267,12 @@ namespace OpenIdProviderMvc.Controllers {
 			}
 
 			Uri userLocalIdentifier = Models.User.GetClaimedIdentifierForUser(User.Identity.Name);
-			return authReq.LocalIdentifier == userLocalIdentifier ||
+
+			// Assuming the URLs on the web server are not case sensitive (on Windows servers they almost never are),
+			// and usernames aren't either, compare the identifiers without case sensitivity.
+			// No reason to do this for the PPID identifiers though, since they *can* be case sensitive and are highly
+			// unlikely to be typed in by the user anyway.
+			return string.Equals(authReq.LocalIdentifier.ToString(), userLocalIdentifier.ToString(), StringComparison.OrdinalIgnoreCase) ||
 				authReq.LocalIdentifier == PpidGeneration.PpidIdentifierProvider.GetIdentifier(userLocalIdentifier, authReq.Realm);
 		}
 	}
author	Andrew Arnott <andrewarnott@gmail.com>	2013-03-03 07:20:01 -0800
committer	Andrew Arnott <andrewarnott@gmail.com>	2013-03-03 07:20:01 -0800
commit	e38569da243fb331c46bfc2823dab749b5416327 (patch)
tree	e2d312777958271dfed83b4e73b57fe953245261 /samples/OpenIdProviderMvc/Controllers/OpenIdController.cs
parent	ae44be6fcfe656d7f8ff0bb6162c67cc06384884 (diff)
parent	778328ec797299ed6aa01279b3ccbf1eb15258bd (diff)
download	DotNetOpenAuth-e38569da243fb331c46bfc2823dab749b5416327.zip DotNetOpenAuth-e38569da243fb331c46bfc2823dab749b5416327.tar.gz DotNetOpenAuth-e38569da243fb331c46bfc2823dab749b5416327.tar.bz2