aniani/brutaldon
1
0
Fork 0
mirror of https://gitlab.com/brutaldon/brutaldon.git synced 2024-12-04 14:46:24 -05:00
Code

Also only ask for specific scopes on login, not just client creation

Browse Source
This commit is contained in:
Jason McBrayer 2018-08-27 10:53:35 -04:00
parent a3db39988d
commit 73f8ded761
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
brutaldon/views.py
View File

@ -214,7 +214,8 @@ def oauth_callback(request):
api_base_url=request.session['instance']) api_base_url=request.session['instance'])
redirect_uri = request.build_absolute_uri(reverse('oauth_callback')) redirect_uri = request.build_absolute_uri(reverse('oauth_callback'))
access_token = mastodon.log_in(code=code, access_token = mastodon.log_in(code=code,
redirect_uri=redirect_uri) redirect_uri=redirect_uri,
scopes=['read', 'write', 'follow'])
request.session['access_token'] = access_token request.session['access_token'] = access_token
user = mastodon.account_verify_credentials() user = mastodon.account_verify_credentials()
request.session['user'] = user request.session['user'] = user
@ -267,7 +268,8 @@ def old_login(request):
client = client) client = client)
try: try:
access_token = mastodon.log_in(username, access_token = mastodon.log_in(username,
password) password,
scopes=['read', 'write', 'follow'])
account.access_token = access_token account.access_token = access_token
account.save() account.save()
request.session['username'] = username request.session['username'] = username