Closed GoogleCodeExporter closed 9 years ago
The consumer should call ConsumerManager.authenticate() with the URL where it
expects to receive the responses. The OpenID Provider will copy its exact
string
value into the authentication response.
Adding extra logic is unnecessary in this case and can potentially add bugs;
for
example, it is incorrect to default to port 80 without checking the protocol
being
used.
Original comment by Johnny.B...@gmail.com
on 24 Mar 2010 at 1:57
Hi,
we did the method call ConsumerManager.authenticate() with the URL which we
receive
from the response. I can not explain why I run into the situation described
above.
I have attached the JSR-196 Auth Module which I have developed. Maybe you can
take a
Look at this code.
I also asked a long time before if I may contribute this code to your project?
But I
did not yet receive an answer. Maybe this JSR-196 Module is useful.
I have written a blog about this implementation
http://www-02.imixs.com/roller/ralphsjavablog/entry/openid_serverauthmodule_jsr_
196_with
Original comment by atari.60...@gmail.com
on 24 Mar 2010 at 9:15
Attachments:
ConsumerManager.authenticate() should be called with the return URL that the
consumer/RP has configured for receiving and handling authentication responses,
not
with the value received in such an authentication response.
Original comment by Johnny.B...@gmail.com
on 24 Mar 2010 at 5:45
Original issue reported on code.google.com by
Ralph.so...@imixs.com
on 18 Jan 2010 at 11:05