<div>Eric,</div>
<div> </div>
<div>I believe it is exactly the problem that Peter is facing.</div>
<div> </div>
<div>Regarding the behavior you saw, Eric, DotNetOpenId doesn't ever demote https to http (or if so it would be a bug), but it will go through <em>all</em> endpoints listed for a given OpenID and chooses from among that list. So if your OpenID has multiple service endpoints listed (through an XRDS file) can you check whether a non HTTPS OP Endpoint is among the list?</div>
<div> </div>
<div>I'd very much like to know the particular OpenID you were trying it with so I can examine the behavior if you'd care to share (perhaps off the list if you wish).</div>
<div><br clear="all">--<br>Andrew Arnott<br>"I [may] not agree with what you have to say, but I'll defend to the death your right to say it." - Voltaire<br><br><br></div>
<div class="gmail_quote">On Thu, Jan 1, 2009 at 12:52 PM, Eric Norman <span dir="ltr"><<a href="mailto:ejnorman@doit.wisc.edu">ejnorman@doit.wisc.edu</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="PADDING-LEFT: 1ex; MARGIN: 0px 0px 0px 0.8ex; BORDER-LEFT: #ccc 1px solid">
<div class="Ih2E3d"><br>On Jan 1, 2009, at 12:14 PM, Andrew Arnott wrote:<br><br>> Because of that, the list of CAs that work with <a href="http://nerdbank.org/" target="_blank">http://nerdbank.org</a> is<br>> whatever list GoDaddy happens to use (since they happen to host that<br>
> web site).<br><br></div>That may be the case, but it's probably not relevant or at best<br>only a part of the problem.<br><br>When I tried going to <a href="http://nerdbank.org/rp" target="_blank">nerdbank.org/rp</a> and typing in an OpenID<br>
that starts with "https:", the server at nerdbank changed it<br>to "http:" and used that to connect with my OP. Other than<br>the fact that I don't appreciate the weakening of security,<br>it also failed and said "Login failed: The 'openid.identity'<br>
parameter was expected to have the value 'https:...' but had<br>'http:...' instead".<br><font color="#888888"><br>Eric Norman<br></font>
<div>
<div></div>
<div class="Wj3C7c"><br>_______________________________________________<br>general mailing list<br><a href="mailto:general@openid.net">general@openid.net</a><br><a href="http://openid.net/mailman/listinfo/general" target="_blank">http://openid.net/mailman/listinfo/general</a><br>
</div></div></blockquote></div><br>