Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.
This was broken for two reasons:
- Links used token key, but oauth_common_provider_token() expects tid
- Access function used non-existant permission: oauth authorize consumers
Attached is a patch which fixes both problems.
Comment | File | Size | Author |
---|---|---|---|
#3 | oauth-authorization_edit-1338102-3-D6.patch | 4.72 KB | christianchristensen |
oauth-authorization-edit.patch | 2.09 KB | dsnopek | |
Comments
Comment #1
piraxter CreditAttribution: piraxter commentedHello !
Yes, I have the same error.
I can't view/access to permissions drupal page. When access Google Chrome give me a error 500 page.
To edit permissions I need to disable Oauth. Yes I turn off Oauth and turn on to use Twitter module.
Comment #2
dsnopekI don't think my patch works against 6.x-2.02, so I'm changing the version back to 6.x-3.0-beta4. You should probably make a seperate issue for the older version.
Comment #3
christianchristensen CreditAttribution: christianchristensen commentedI updated this patch a bit to include handling the two different situations: the token lookup with the tid or the key and the access check to fallback to the context if the token is provided. Ultimately these should probably only be one check, but the permissions check seems relevant as there are both options in the permissions UI.
Comment #4
christianchristensen CreditAttribution: christianchristensen commentedFYI issue #1237042: Incorrect access check for user/%user/oauth/authorizations/%oauth_common_provider_token seems to address the perm check here too...
Comment #5
devkinetic CreditAttribution: devkinetic commentedchristianchristensen, your patch has resolved my trouble with this issues as well. Thanks for this and other patch you posted concerning the endpoint pages. Big help. I hope that both get committed.
Comment #6
h3rj4n CreditAttribution: h3rj4n commentedThe path in #3 seems te work fine! Set this to RTBC.
Comment #7
juampynr CreditAttribution: juampynr commentedCommitted. Thanks!
http://drupalcode.org/project/oauth.git/commit/0d15ad9
Comment #8.0
(not verified) CreditAttribution: commentedMade a little more clear.