[OpenID] Yahoo issue
Allen Tom
atom at yahoo-inc.com
Mon Feb 4 06:50:01 UTC 2008
Hi Shane,
The Yahoo OP does not support HMAC-SHA256 nor DH-SHA256, and thanks for
pointing out that our error response is not correct. We'll fix this soon.
Thanks
Allen
Shane B Weeden wrote:
>
> In case anyone from Yahoo is on the list, I have encountered a problem
> with the associate method implementation.
>
> If an associate request is sent with the HMAC-SHA256 association type
> and DH-SHA256 session type, the Yahoo OP (at
> https://open.login.yahooapis.com/openid/op/auth) is returning the
> following response:
>
> ns:http://specs.openid.net/auth/2.0
> mode:error
> error:assoc_type not supported
> error_code:unsupported-type
> session_type:HMAC-SHA1
> assoc_type:no-encryption
>
>
> I think you'll find the values for the assoc_type and session_type
> should be swapped.
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> general mailing list
> general at openid.net
> http://openid.net/mailman/listinfo/general
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20080203/4bc01c3f/attachment-0002.htm>
More information about the general
mailing list