omniauth-oauth icon indicating copy to clipboard operation
omniauth-oauth copied to clipboard

Published 20 hours ago verified publisher icon omniauth

Session become empty when using sinatra app

Open arunagw opened this issue 12 years ago • 4 comments

Found something which needs to be looked.

Example: A sinatra app with having :session, true as a configuration.

this will reset session as {} and an error raised on our callback_phase method where we are checking raise OmniAuth::NoSessionError.new("Session Expired") if session['oauth'].nil?

Any idea??

Without session config in sinatra it contains


{"oauth"=>{"twitter"=>{"callback_confirmed"=>true, "request_token"=>"some token", "request_secret"=>"some secret"}}}

related issue here https://github.com/arunagw/omniauth-twitter/issues/42

arunagw avatar Dec 15 '12 12:12 arunagw

is there any update on this issue? I'm unable to connect to twitter second time when I logout; unless restarting the server, doesn't make any sense ...

mftaher avatar Jan 08 '13 11:01 mftaher

+1 ran into this problem; but for linked in.

danlo avatar Aug 05 '14 17:08 danlo

@danlo have you figured out for linkedin yet?

hcai avatar Nov 20 '14 08:11 hcai

@hcai I wasn't able to figure it out; and it still plauges me. I think that devise (and I can't find where) does a reset_session. (I grep'd the code). I want to avoid the session fixation attack; so I'm thinking about rolling my own session just to by-pass the session_id changing.

danlo avatar Dec 09 '14 17:12 danlo

Closing as stale

BobbyMcWho avatar Aug 27 '24 16:08 BobbyMcWho