Page MenuHomePhabricator

Fix Facebook login on mobile violating CSP after form redirect
ClosedPublic

Authored by epriestley on Feb 23 2019, 12:58 AM.
Tags
None
Referenced Files
F14414818: D20206.diff
Tue, Dec 24, 4:16 PM
Unknown Object (File)
Sun, Dec 15, 9:55 PM
Unknown Object (File)
Sat, Dec 7, 4:48 PM
Unknown Object (File)
Thu, Nov 28, 1:47 AM
Unknown Object (File)
Tue, Nov 26, 10:13 PM
Unknown Object (File)
Tue, Nov 26, 10:13 PM
Unknown Object (File)
Tue, Nov 26, 10:13 PM
Unknown Object (File)
Tue, Nov 26, 10:13 PM
Subscribers
None

Details

Summary

Fixes T13254. See that task for details.

Test Plan

Used iOS Simulator to do a login locally, didn't get blocked. Verified CSP includes "m.facebook.com".

Diff Detail

Repository
rP Phabricator
Branch
fb1
Lint
Lint Passed
Unit
Tests Passed
Build Status
Buildable 22101
Build 30194: Run Core Tests
Build 30193: arc lint + arc unit

Event Timeline

src/applications/auth/provider/PhabricatorFacebookAuthProvider.php
117–127

Is this just incidentally dead code you're removing?

amckinley added inline comments.
src/applications/auth/provider/PhabricatorFacebookAuthProvider.php
117–127

Yeah it looks dead to me and grep.

This revision is now accepted and ready to land.Feb 23 2019, 2:15 AM

Yeah, sorry, no callsites per grep. And probably won't work without changes in a T6703 world anyway, since there might plausibly be multiple Facebook auth providers.

This revision was automatically updated to reflect the committed changes.