lib/rodauth/features/oidc.rb in rodauth-oauth-0.5.0 vs lib/rodauth/features/oidc.rb in rodauth-oauth-0.5.1
- old
+ new
@@ -213,9 +213,18 @@
request.halt
end
end
end
+ def check_csrf?
+ case request.path
+ when userinfo_path
+ false
+ else
+ super
+ end
+ end
+
private
def require_authorizable_account
try_prompt if param_or_nil("prompt")
super