[development] OpenId open to phishing attacks.

Augustin (Beginner) drupal.beginner at wechange.org
Wed Nov 7 13:09:59 UTC 2007

On Wednesday 07 November 2007 17:58, J-P Stacey wrote:
> Unless you're running your own OpenID *server* then this isn't an
> issue. Looking at the module page I don't think that's in 5.x yet,
> let alone core.

Thanks. I thought Drupal could act as a server....

Oh. I see what you mean.
http://drupal.org/project/openid says the server code is in 4.7.

Here are some references for those interested:

server module? (feature request)
Port 4.7-2.x to Drupal 5

PHP-based OpenID Server code


More information about the development mailing list