Page MenuHomePhabricator
Differential D20206

Fix Facebook login on mobile violating CSP after form redirect
ClosedPublic
Actions

Authored by epriestley on Feb 23 2019, 12:58 AM.
Tags
None
Referenced Files
F15415792: D20206.id48244.diff
Thu, Mar 20, 7:53 AM
F15414255: D20206.id48244.diff
Wed, Mar 19, 11:43 PM
F15403994: D20206.id.diff
Tue, Mar 18, 5:49 AM
F15402711: D20206.id48244.diff
Mon, Mar 17, 11:55 PM
F15383152: D20206.id48244.diff
Fri, Mar 14, 3:40 PM
Unknown Object (File)
Feb 14 2025, 5:03 AM
Unknown Object (File)
Feb 14 2025, 5:02 AM
Unknown Object (File)
Feb 14 2025, 5:02 AM
View All Files
Subscribers
None

Details

Reviewers
amckinley
Maniphest Tasks
T13254: "Login with Facebook" may fail CSP after redirect to "m.facebook.com"
Commits
rP701a9bc339b9: Fix Facebook login on mobile violating CSP after form redirect
Summary

Fixes T13254. See that task for details.

Test Plan

Used iOS Simulator to do a login locally, didn't get blocked. Verified CSP includes "m.facebook.com".

Diff Detail

Repository
rP Phabricator
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

epriestley created this revision.Feb 23 2019, 12:58 AM
Harbormaster completed remote builds in B22101: Diff 48244.Feb 23 2019, 1:00 AM
epriestley requested review of this revision.Feb 23 2019, 1:00 AM
amckinley added inline comments.Feb 23 2019, 2:11 AM
src/applications/auth/provider/PhabricatorFacebookAuthProvider.php
117–127

Is this just incidentally dead code you're removing?

amckinley accepted this revision.Feb 23 2019, 2:15 AM
amckinley added inline comments.
src/applications/auth/provider/PhabricatorFacebookAuthProvider.php
117–127

Yeah it looks dead to me and grep.

This revision is now accepted and ready to land.Feb 23 2019, 2:15 AM
epriestley added a comment.Feb 23 2019, 2:35 AM

Yeah, sorry, no callsites per grep. And probably won't work without changes in a T6703 world anyway, since there might plausibly be multiple Facebook auth providers.

Closed by commit rP701a9bc339b9: Fix Facebook login on mobile violating CSP after form redirect (authored by epriestley). · Explain WhyFeb 23 2019, 1:25 PM
This revision was automatically updated to reflect the committed changes.

Revision Contents
Changeset List

PathSize
src/
applications/
auth/
provider/
19 lines

Diff 48246

View Options

src/applications/auth/provider/PhabricatorFacebookAuthProvider.php

Loading...
Phabricator · Built by Phacility