Patrick asked me to file this here.
If you try to POST a login to ipsilon's openid provider API with username=None, it tracebacks and returns a 500 error.
Ideally, it would validate its inputs, notice that username was either absent or None, and would return a 400 error (indicating client error).
This can help speed up debugging efforts in the future.
Patch to add the checks 0001-Ipsilon-API-validate-input.patch
Patch that will fix this attached, and will be merged after freeze
this is now merged into staging.
Is this in prod yet?
yes
Great. Closing.
@kevin changed the status to Fixed
Fixed
Login to comment on this ticket.