Added TrustedProviders setting in OpenID security settings.

It doesn't actually alter runtime behavior yet.
author: Andrew Arnott <andrewarnott@gmail.com> 2011-04-19 07:06:12 -0700
committer: Andrew Arnott <andrewarnott@gmail.com> 2011-04-19 07:06:12 -0700
commit: b4776f82cf0eb29e5bd2ac303ac2fd149b6ce906 (patch)
tree: 3a54c5092a84124a22a0b00d6e545eccd441b19c /samples/OpenIdRelyingPartyWebForms
parent: 9f33f5d7a65c678299d63081e8e2021ca5da1c90 (diff)
download: DotNetOpenAuth-b4776f82cf0eb29e5bd2ac303ac2fd149b6ce906.zip
DotNetOpenAuth-b4776f82cf0eb29e5bd2ac303ac2fd149b6ce906.tar.gz
DotNetOpenAuth-b4776f82cf0eb29e5bd2ac303ac2fd149b6ce906.tar.bz2
1 files changed, 5 insertions, 1 deletions
diff --git a/samples/OpenIdRelyingPartyWebForms/Web.config b/samples/OpenIdRelyingPartyWebForms/Web.config
index 5d3a33b..497af21 100644
--- a/samples/OpenIdRelyingPartyWebForms/Web.config
+++ b/samples/OpenIdRelyingPartyWebForms/Web.config
@@ -28,7 +28,11 @@
 	<dotNetOpenAuth>
 		<openid>
 			<relyingParty>
-				<security requireSsl="false" />
+				<security requireSsl="false">
+					<trustedProviders rejectAssertionsFromUntrustedProviders="true">
+						<add endpoint="https://www.google.com/accounts/o8/ud" allowSubPath="true" allowAdditionalQueryParameters="true" />
+					</trustedProviders>
+				</security>
 				<behaviors>
 					<!-- The following OPTIONAL behavior allows RPs to use SREG only, but be compatible
 					     with OPs that use Attribute Exchange (in various formats). -->
author	Andrew Arnott <andrewarnott@gmail.com>	2011-04-19 07:06:12 -0700
committer	Andrew Arnott <andrewarnott@gmail.com>	2011-04-19 07:06:12 -0700
commit	b4776f82cf0eb29e5bd2ac303ac2fd149b6ce906 (patch)
tree	3a54c5092a84124a22a0b00d6e545eccd441b19c /samples/OpenIdRelyingPartyWebForms
parent	9f33f5d7a65c678299d63081e8e2021ca5da1c90 (diff)
download	DotNetOpenAuth-b4776f82cf0eb29e5bd2ac303ac2fd149b6ce906.zip DotNetOpenAuth-b4776f82cf0eb29e5bd2ac303ac2fd149b6ce906.tar.gz DotNetOpenAuth-b4776f82cf0eb29e5bd2ac303ac2fd149b6ce906.tar.bz2