[OpenID] concordia's mediawiki and openid handling: fussy? pape sensitive?
Peter Williams
pwilliams at rapattoni.com
Mon Apr 7 05:50:33 UTC 2008
On http://projectconcordia.org/index.php/User:Homepw, I posted a couple of screen shots of succeeding and failing messages sent to mediawiki, attempting to logon to the concordia website. MyOpenID works. (Vidoop also works. openid.trustbearer.com even works, with its smartcard logon.) My OP at TrustBearer does not (even tho its openids work on Plaxo and various other sites).
I notice that both vidoop and myopenid send open.identity fields in strict normal form. They do not send http://homepw.myopenid.com but http://homepw.myopenid.com/ (with trailing slash). Is Media Wiki fussier about such things than plaxo? I suspect not, as openid.trustbearer.com works on mediawiki even though it sends openid.identity=http%3A%2F%2Fopenid.trustbearer.com%2Fpeterw .
I notice that unlike myopenid, vidoop, and trustbearer , my OP at trustbearer is sending openid.pape signals..
Is Media Wiki fussy about such verifying such pape signals -- that it may not have requested?
I suppose the final question is: Could concordia's deployment of its RP be operating a whitelist of OPs?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20080406/51435b26/attachment-0001.htm>
More information about the general
mailing list