search

bmuller / mod_auth_openid

mod_auth_openid is an authentication module for the Apache 2 webserver. It handles the functions of an OpenID consumer as specified in the OpenID 2.0 specification.
http://findingscience.com/mod_auth_openid
Other
74 stars 27 forks source link

Redirect to remove openid.ax.mode=fetch_response GET arguments #40

Open docwhat opened 11 years ago

docwhat commented 11 years ago

It would be a lot prettier if mod_auth_openid redirected to remove the openid.ax.mode=fetch_response GET arguments. They make the bookmarks, etc. behave weird immediately after logging in.

Example:

https://example.com/?openid.ax.mode=fetch_response&openid.ax.type.email=http%3A%2F%2Fopenid.net%2Fschema%2Fcontact%2Finternet%2Femail&openid.ax.value.email=user%40example.com&openid.ns.ax=http%3A%2F%2Fopenid.net%2Fsrv%2Fax%2F1.0&application_argument=foobar

...should be redirected to...

https://example.com/?application_argument=foobar

Ciao!

timkent commented 11 years ago

Hi docwhat,

I've been using mod_rewrite to do this with the condition looking at %{QUERY_STRING}.

Cheers

docwhat commented 11 years ago

@timkent

How do you do that without losing any other get arguments of interest?

Do you have an example?

It still seems like mod_auth_openid is the "authoritative" source of what can be safely stripped...

Ciao!