search

samimave / car-pool

Automatically exported from code.google.com/p/car-pool
0 stars 0 forks source link

OpenId implementation wrong. Was implementing a provider, when we need a consumer #1

Closed GoogleCodeExporter closed 9 years ago

GoogleCodeExporter commented 9 years ago 
I have found I am implementing a OpenId provider when what we really want
me to do is implement a consumer which checks the validity of the OpenId
supplied identity with a provider rather than trying to be a provider.  I
am having real trouble using the libraries provided. Thay all assume you
are using a URL which is not localhost, or if you are, are running a
localhost provider, which I tried doing but it didn't work for me for some
reason.

I feel I may need to implement my own library fo OpenId, I may have greater
control, and be able to use the entire protocol if neccessary.  I would
rather not, but if my head keeps banging against a brick wall for much
longer I will

Original issue reported on code.google.com by terrasea on 24 Jul 2008 at 11:40

GoogleCodeExporter commented 9 years ago 
Have solved the problem of authenticating the users OpenId.  I have created
a servlet called OpenIdConsumer.  It displays a form with a text field for
the users OpenId and a submit button.  The user enters their id into the
text field and hits the submit button.  The user is redirected to the
provider, where they click a allow button to authenticate themselves for
this site, and then gets redirected back to the page.  This initially
worked fine, but once I signed out the id, the next time it would not
recognise the fact that my id is valid.  I know partly why this is, and
think I can fix it with a hack, as the right parameters are being recieved,
just not being put into the session attributes which is where the library
is supposed to put them.  So I think I may have to do this in the
OpenIdConsumer servlet.

This maybe just an issue for my system, and might work fine elsewhere.

Original comment by terrasea on 28 Jul 2008 at 8:30

GoogleCodeExporter commented 9 years ago 
I have fixed the bugs to do with this problem and I have more understanding of 
how
openid authentication works

Original comment by terrasea on 8 Aug 2008 at 8:03