From b353a5b0252bba2a27e23a86d57c8d4b1c132380 Mon Sep 17 00:00:00 2001
From: Florian Dold <florian.dold@gmail.com>
Date: Sat, 24 Aug 2019 18:13:02 +0200
Subject: payment session logic

---
 talerblog/blog/blog.py | 9 +--------
 1 file changed, 1 insertion(+), 8 deletions(-)

(limited to 'talerblog/blog/blog.py')

diff --git a/talerblog/blog/blog.py b/talerblog/blog/blog.py
index b636aa5..2c1cf86 100644
--- a/talerblog/blog/blog.py
+++ b/talerblog/blog/blog.py
@@ -271,12 +271,6 @@ def article(article_name, data=None):
         return render_article(article_name, data, cached_order_id)
 
     ##
-    # If there was an order_id but no session_sig, either the user played
-    # around with the URL or the wallet is old/broken.
-    if order_id and not session_sig:
-        err_abort(400, message=("Bad request (session_sig missing). "
-                                "Your wallet might be broken or outdated"))
-    ##
     # First-timer; generate order first.
     if not order_id:
         order = dict(
@@ -290,8 +284,7 @@ def article(article_name, data=None):
         return flask.redirect(
                 flask.url_for("article",
                     article_name=article_name,
-                    order_id=order_id,
-                    session_id=session_id))
+                    order_id=order_id))
 
     ##
     # The resource URL uniquely identifies the Web resource that
-- 
cgit v1.2.3