[Code] (no subject)

Markus Jelsma - Buyways B.V. markus at buyways.nl
Thu Sep 10 16:52:54 UTC 2009 

Hello,


I think i have not made myself very clear and i am sorry for that. It is
OpenID where the problem is. First i authenticate with the OpenID server
and then i verify that authentication with that same OpenID server, our
own protocol has not yet even started yet because it already (sometimes)
failes in the OpenID check.

First i do the redirect to the OpenID server for the user to fill in his
password, then it will redirect back to a location which i put in the
parameters. Back in my own code we do a
openid_mode=check_authentication, passing the openid.assoc_handle,
openid_signed and openid_sig parameters.

This step should return, somewhere in the body, a is_valid: true, but it
_sometimes_ returns an is_valid: false instead, thus failing the
authentication.

This has been tested, as said before, standalone so without our own
proprietary protocol.


Thanks for your answers so far and kind regards,


-  
Markus Jelsma          Buyways B.V.            
Technisch Architect    Friesestraatweg 215c    
http://www.buyways.nl  9743 AD Groningen       


Alg. 050-853 6600      KvK  01074105
Tel. 050-853 6620      Fax. 050-3118124
Mob. 06-5025 8350      In: http://www.linkedin.com/in/markus17/


On Thu, 2009-09-10 at 09:27 -0700, Yang Zhao wrote:

> 2009/9/10 Markus Jelsma - Buyways B.V. <markus at buyways.nl>
> > It always authenticates well, but the final validation fails sometimes. Server sometimes respond with is_valid: false while it actually should be is_valid: true. The flow between my own local central server is alright. The OpenID problem persists when i use the OpenID authentication and validation stand alone.
> 
> As far as I understand it, this isn't a OpenID-related problem at all.
>  I'm not exactly sure what kind of help you're expecting, especially
> since, I'm assuming, that the final validation step is a proprietary
> protocol.
> 
> --
> Yang Zhao
> http://yangman.ca
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-code/attachments/20090910/58866261/attachment.htm>

More information about the Code mailing list