Commits

David Larlet committed 42a3745

Change the warning to security issue

Comments (0)

Files changed (1)

 .. _`OAuth protocol`: http://oauth.net/core/1.0/
 
 .. warning::
-    At this early stage of the development, feedback is really appreciated.
-    Do not hesitate to send an email or a patch if you've got any issue with 
-    the current implementation.
+    An OAuth security issue `has been identified`_. Please read the `advisory`_, issued on April 23, 2009. This issue hasn't been (yet!) fixed in this implementation of OAuth in Django, patches welcome :)
 
+.. _`has been identified`: http://blog.oauth.net/2009/04/22/acknowledgement-of-the-oauth-security-issue/
+.. _`advisory`: http://oauth.net/advisories/2009-1
 
 Authenticating with OAuth
 =========================
Tip: Filter by directory path e.g. /media app.js to search for public/media/app.js.
Tip: Use camelCasing e.g. ProjME to search for ProjectModifiedEvent.java.
Tip: Filter by extension type e.g. /repo .js to search for all .js files in the /repo directory.
Tip: Separate your search with spaces e.g. /ssh pom.xml to search for src/ssh/pom.xml.
Tip: Use ↑ and ↓ arrow keys to navigate and return to view the file.
Tip: You can also navigate files with Ctrl+j (next) and Ctrl+k (previous) and view the file with Ctrl+o.
Tip: You can also navigate files with Alt+j (next) and Alt+k (previous) and view the file with Alt+o.