-
Notifications
You must be signed in to change notification settings - Fork 200
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Fixes for todoist and oura #8
base: master
Are you sure you want to change the base?
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The blocks which I commented out could potentially display some sensitive data, so I rather hid them.
@@ -94,7 +94,8 @@ | |||
"\n", | |||
"* Go to the Developer Section of the Oura Cloud (https://cloud.ouraring.com/oauth/developer).\n", | |||
"* Go to “My Applications” and create a new application by clicking on “New Application”.\n", | |||
"* Fill out the form fields with your data.\n", | |||
"* Fill out the form fields with your data. You need to check `Allow client-side authentication (grant-type token)`\n", |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Maybe only one of them is needed, not sure which one.
from uuid import uuid4 | ||
state = str(uuid4()) | ||
save_created_state(state) |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
this one is simply not defined anywhere -> doesn't work
@@ -26,10 +25,8 @@ def homepage(): | |||
|
|||
def make_authorization_url(): | |||
# Generate a random string for the state parameter | |||
# Save it for use later to prevent xsrf attacks |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I think xsrf
attacks for a thing which runs for a 30 seconds on localhost is pretty safe.
Hi,
thanks for the great work, here are some fixes for me to be able to run it today.