allauth_authentic2: use Authorization header instead of query string to pass the access token

2014-03-26 12:24:12 +01:00 · 2014-03-26 12:24:12 +01:00 · e7bb03920f
parent 402dff8f9c
commit e7bb03920f
1 changed files with 1 additions and 1 deletions
--- a/views.py
+++ b/views.py
@ -33,7 +33,7 @@ class Authentic2OAuth2Adapter(OAuth2Adapter):

    def complete_login(self, request, app, token, **kwargs):
        resp = requests.get(self.profile_url,
-                            params={'access_token': token.token})
+                headers={'authorization': 'Bearer %s' % token.token})
        extra_data = resp.json()
        return self.get_provider().sociallogin_from_response(request,
                extra_data)