Reenabled OAUTHLIB_INSECURE_TRANSPORT

app.py

@@ -14,8 +14,9 @@ def create_app(test_config=None):
 		app.config.from_pyfile('config.py', silent=True)
 	else:
 		app.config.from_mapping(test_config)
-	# oauthlib enforces the OAuth2.0 requirement to use HTTPS, when this is not set
-	if app.debug:
+	# OAuth2Session.fetch_token verifies that the passed URIs scheme (the scheme
+	# of request.url) is HTTPS. The way we deploy this app, request.url does not
+	# reflect the actual request url, so we disable this check.
 	os.environ['OAUTHLIB_INSECURE_TRANSPORT'] = '1'
 
 	@app.route('/auth')
@@ -51,7 +52,6 @@ def create_app(test_config=None):
 
 	@app.route('/cookiecheck')
 	def login_cookiecheck():
-		print(session)
 		if not session.get('cookies_enabled'):
 			session.clear()
 			session['cookies_enabled'] = True