OAuth 2.0 authorization and token exchange
Don't fabricate email_verified on Google userinfo re-encode
The encoder wrote email_verified: true whenever email was present,
regardless of the original value. Now omits email_verified on
re-encode since userinfo doesn't track the verification status.
+1
-2
+1
-2
lib/oauth.ml
+1
-2
lib/oauth.ml
···
386
386
|> Jsont.Object.mem "sub" Jsont.string ~enc:(fun u -> u.uid)
387
387
|> Jsont.Object.mem "email" Jsont.string ~dec_absent:"" ~enc:(fun u ->
388
388
opt_to_string u.email)
389
-
|> Jsont.Object.opt_mem "email_verified" Jsont.bool ~enc:(fun u ->
390
-
Option.map (fun _ -> true) u.email)
389
+
|> Jsont.Object.opt_mem "email_verified" Jsont.bool ~enc:(fun _ -> None)
391
390
|> Jsont.Object.mem "name" Jsont.string ~dec_absent:"" ~enc:(fun u -> u.name)
392
391
|> Jsont.Object.mem "picture" Jsont.string ~dec_absent:"" ~enc:(fun u ->
393
392
u.avatar_url)