diff options
| author | Joey Hess <joey@gnu.kitenet.net> | 2009-05-19 13:06:35 -0400 |
|---|---|---|
| committer | Joey Hess <joey@gnu.kitenet.net> | 2009-05-19 13:06:35 -0400 |
| commit | 53b1c6f559c1d09fbdbc28c8e4d5090dd455cd26 (patch) | |
| tree | d379bb0acd2dd3e9370c37b27f03989398694977 /doc/index/openid/discussion.mdwn | |
| parent | 18695056917a2f34a36e5e89df7f01deff9ab640 (diff) | |
| parent | 4558457402a4ab6bc795589a2e400fa66144f76e (diff) | |
Merge commit 'intrigeri/po' into po
Diffstat (limited to 'doc/index/openid/discussion.mdwn')
| -rw-r--r-- | doc/index/openid/discussion.mdwn | 33 |
1 files changed, 33 insertions, 0 deletions
diff --git a/doc/index/openid/discussion.mdwn b/doc/index/openid/discussion.mdwn index ae614e5ac..4a50fd9dd 100644 --- a/doc/index/openid/discussion.mdwn +++ b/doc/index/openid/discussion.mdwn @@ -26,4 +26,37 @@ do=postsignin&oic.time=1238224497-1450566d93097caa707f&openid.assoc_handle=%7BHM The `return_to` arg should NOT be `signed`, it should be the originating URL where you initially logged in. +>> Yes, exactly. That's also my understanding of the spec. + +> I think you're confusing 'openid.return_to' with 'return_to'. The +> former is present above, and is, indeed, the originating url, the latter +> is part of the *value* of the 'openid.signed' parameter generated by myopenid.com. --[[Joey]] + Also, I dunno what the assoc_handle is doing spitting out an arg like `{HMAC-SHA1}{49cdce76}{BhuXXw%3D%3D}` it should be processed further. I have the needed perl packages installed (latest for Lenny). Hrm, would endianness matter? + +> Again, this value is created by the openid server, not by ikiwiki. +> I see the same HMAC-SHA1 when using myopenid, and completly different +> things for other openid servers. (Ie, when using livejournal as an openid server, +> `openid.assoc_handle=1239305290:STLS.QiU6zTZ6w2bM3ttRkdaa:e68f91b751`) + +>> OK, I wasn't too sure about that, seemed bogus or somehow wrong or in error, like it wasn't actually being `completed`. + +> I'm fairly sure that is all a red herring. +> +> So, when I was talking about reproducing the bug, I was thinking perhaps you could tell me what openid server you're using, +> etc, so I can actually see the bug with my own eyes. + +>> myopenid.com, with the CNAME option turned on. + +> The sanitised url parameters you've provided are not generated by ikiwiki at all. +> They don't even seem to be generated by the underlying [[!cpan Net::OpenID]] library. + +>> That was a server log entry with date/host/time stripped, and my URL also stripped. Everything else is as was in the log. I installed the Debian packages in Lenny, both server and consumer OpenID Perl packages. + +> I'm pretty sure that what you're showing me is the url myopenid redirects +> the browser to after successfully signing in. At that point, ikiwiki +> should complete the signin. What fails at this point? How can I reproduce this failure? --[[Joey]] + +I'll try it again myself. I had tried it oh probably 6 times before I finally gave up on it. Maybe I'm getting rusty and I'm just PEBKACing all over the place. :P + +Also, to address the point about this discussion being in the wrong area (not under bugs), should I move it, or will you? I don't mind doing it, if you can't. |