<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 TRANSITIONAL//EN">
<HTML>
<HEAD>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; CHARSET=UTF-8">
<META NAME="GENERATOR" CONTENT="GtkHTML/3.18.3">
</HEAD>
<BODY>
Hello,<BR>
<BR>
<BR>
I think i have not made myself very clear and i am sorry for that. It is OpenID where the problem is. First i authenticate with the OpenID server and then i verify that authentication with that same OpenID server, our own protocol has not yet even started yet because it already (sometimes) failes in the OpenID check.<BR>
<BR>
First i do the redirect to the OpenID server for the user to fill in his password, then it will redirect back to a location which i put in the parameters. Back in my own code we do a openid_mode=check_authentication, passing the openid.assoc_handle, openid_signed and openid_sig parameters.<BR>
<BR>
This step should return, somewhere in the body, a is_valid: true, but it _sometimes_ returns an is_valid: false instead, thus failing the authentication.<BR>
<BR>
This has been tested, as said before, standalone so without our own proprietary protocol.<BR>
<BR>
<BR>
Thanks for your answers so far and kind regards,<BR>
<BR>
<BR>
<TABLE CELLSPACING="0" CELLPADDING="0" WIDTH="100%">
<TR>
<TD>
<PRE>
-
Markus Jelsma Buyways B.V.
Technisch Architect Friesestraatweg 215c
<A HREF="http://www.buyways.nl">http://www.buyways.nl</A> 9743 AD Groningen
Alg. 050-853 6600 KvK 01074105
Tel. 050-853 6620 Fax. 050-3118124
Mob. 06-5025 8350 In: <A HREF="http://www.linkedin.com/in/markus17/">http://www.linkedin.com/in/markus17/</A>
</PRE>
</TD>
</TR>
</TABLE>
<BR>
<BR>
On Thu, 2009-09-10 at 09:27 -0700, Yang Zhao wrote:
<BLOCKQUOTE TYPE=CITE>
<PRE>
2009/9/10 Markus Jelsma - Buyways B.V. <<A HREF="mailto:markus@buyways.nl">markus@buyways.nl</A>>
> It always authenticates well, but the final validation fails sometimes. Server sometimes respond with is_valid: false while it actually should be is_valid: true. The flow between my own local central server is alright. The OpenID problem persists when i use the OpenID authentication and validation stand alone.
As far as I understand it, this isn't a OpenID-related problem at all.
I'm not exactly sure what kind of help you're expecting, especially
since, I'm assuming, that the final validation step is a proprietary
protocol.
--
Yang Zhao
<A HREF="http://yangman.ca">http://yangman.ca</A>
</PRE>
</BLOCKQUOTE>
</BODY>
</HTML>