Need support for required sreg attributes

Bug #810978 reported by Michael Nelson on 2011-07-15
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
Payment service
Medium
Unassigned
Ratings and Reviews server
Undecided
Unassigned
Software Center Agent
Undecided
Unassigned
django-openid-auth
Undecided
Michael Nelson

Bug Description

Similar to bug 810626, currently most ISD apps that use SSO use django-openid-auth - which only sets email, fullname and nickname as optional fields in the SRegRequest.

We'll need support for required sreg attributes before SSO can update to allow users to choose which optional fields they share with the consumer.

Perhaps an OPENID_SREG_REQUIRED_FIELDS option would help for the moment (ultimately, the consumer should handle this itself).

Related branches

Michael Nelson (michael.nelson) wrote :

I've checked software-center-agent, and it won't error if someones logs in for the first time without selecting any of the optional sreg attributes - it'll just create a user with username=openiduserX and no email.

The no email *is* an issue, as currently we need one to be able to 'check or create lp user' when a person purchases software (and raise a web service error if that method is called without one). So we'd need to ensure that at least email was required.

Another option which lifeless suggested on bug 810626 would be a great work-around for the moment: "Sounds like perhaps [SSO] should treat optional as required for trusted/internal sites, as a migration facility."

Changed in software-center-agent:
status: New → Confirmed
Changed in software-center-agent:
assignee: nobody → Michael Nelson (michael.nelson)
Changed in django-openid-auth:
assignee: nobody → Michael Nelson (michael.nelson)
status: New → In Progress
Changed in software-center-agent:
assignee: Michael Nelson (michael.nelson) → nobody
Changed in software-center-agent:
status: Confirmed → Fix Committed
Changed in canonical-payment-service:
importance: Undecided → Medium
Changed in canonical-payment-service:
status: New → Confirmed
Changed in django-openid-auth:
status: In Progress → Fix Released
Changed in software-center-agent:
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers