[Openid-specs-ab] [board-private] OpenID Connect Launch Commencement

Eric Sachs esachs at google.com
Mon Jul 18 15:14:26 UTC 2011 

>> So =ritou / @ritou / Ryo Ito has implemented a sample OpenID Connect RP
for the Google.

I can't tell if it works yet.  Below is what I see after I try to login and
it looks like it is failing

OpenID Connect Sample RP

This is OpenID Connect Sample RP  using Google(OP).
Flow : Authorization Code Flow

Google's sample RP and Document : http://oauthssodemo.appspot.com/step/1

Reload <http://www8322u.sakura.ne.jp/oidconnect/> Access Token
Refresh<http://www8322u.sakura.ne.jp/oidconnect/?refresh=1>
 Restart <http://www8322u.sakura.ne.jp/oidconnect/?clear=1>Obtain Access
TokenRequest :

Response :

Token Info EndpointRequest :

GET /o/oauth2/tokeninfo?access_token= HTTP/1.1
User-Agent: OpenID Connect Sample RP v0.0.1
Host: accounts.google.com
Accept: */*


Response :

HTTP/1.1 400 Either access_token or id_token should be specified by
client, not both
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Date: Mon, 18 Jul 2011 15:12:14 GMT
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Transfer-Encoding: chunked

<HTML>
<HEAD>
<TITLE>Either access_token or id_token should be specified by client,
not both</TITLE>
</HEAD>
<BODY BGCOLOR="#FFFFFF" TEXT="#000000">
<H1>Either access_token or id_token should be specified by client, not both</H1>
<H2>Error 400</H2>
</BODY>
</HTML>

Resource AccessRequest :

GET /oauth2/v1/userinfo?access_token= HTTP/1.1
User-Agent: OpenID Connect Sample RP v0.0.1
Host: www.googleapis.com
Accept: */*


Response :

HTTP/1.1 401 Unauthorized
WWW-Authenticate: GoogleLogin
realm="https://www.google.com/accounts/ClientLogin", service="lso"
Content-Type: application/json; charset=UTF-8
Date: Mon, 18 Jul 2011 15:12:16 GMT
Expires: Mon, 18 Jul 2011 15:12:16 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Transfer-Encoding: chunked

{
 "error": {
  "errors": [
   {
    "domain": "com.google.auth",
    "reason": "invalidAuthentication",
    "message": "invalid header",
    "locationType": "header",
    "location": "Authorization"
   }
  ],
  "code": 401,
  "message": "invalid header"
 }
}

------------------------------
© 2011 ritou <http://d.hatena.ne.jp/ritou>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-ab/attachments/20110718/c28762b9/attachment.html>

More information about the Openid-specs-ab mailing list