[Code] Python library only supports assertions sent as GET (not POST)
Jack Bates
d8526k at nottheoilrig.com
Wed Oct 26 16:51:51 UTC 2011
I think this is an important issue because many sites employ the Python
library, e.g. bitbucket.org
As a result of this issue, some users cannot log in to these sites with OpenID,
and only a general error explains why not
I think this issue hurts OpenID adoption because some users get an unreliable
experience (some users cannot log in to some sites with OpenID). I think it
also hurts adoption because site developers have an unreliable experience:
There's an interoperability problem between a popular library and some
conformant OpenID providers
If there are no objections to the change introduced in this pull request, is
anyone on this list able to accept it?
If there are any objections to the change introduced in this pull request, I am
happy to help address them!
On Thu, Oct 20, 2011 at 11:36:43AM -0700, Jack Bates wrote:
> According to OpenID specification, indirect messages can be sent as a GET or as
> a POST. However the Python library doesn't support assertions which are sent as
> a POST - it only supports assertions which are sent as a GET. Consequently the
> Python library fails to interoperate with some OpenID providers which
> nonetheless conform to the OpenID specification
>
> I opened this pull request to address this issue:
> https://github.com/openid/python-openid/pull/25
> _______________________________________________
> Code mailing list
> Code at lists.openid.net
> http://lists.openid.net/mailman/listinfo/openid-code
More information about the Code
mailing list