tags:

views:

266

answers:

3
+1  Q: 

openID with domain.mp

i developed a login form that allows the use of openID. Works fine for most users, but this user has a .mp address. The openID connection keeps on failing.

i tracked down the .mp domain to the provider http://chi.mp (yeah, i know).

I use the simpleOpenId php class to perform the connexion. It returns no error, just dies silently.

Anybody has idea on where this issue comes from?

UPDATE:

As suggested, i've set up the Janrain library at http://openidenabled.com/php-openid/ as that works with OpenID 2.x.

Alas, same goes here: login in using .. works, but .mp does not. It says "Authentication error; not a valid OpenID."

You can try it for yourself here.

+2  A: 

Is suspect it may be due to a differing OpenID protocol (if you can't login via OpenID using your Google Account, then this is a key sign). Try using the Janrain library at http://openidenabled.com/php-openid/ as that works with OpenID 2.x

Richy C.  2009-09-21 15:42:56
you mean Google Account like [email protected] ?
pixeline  2009-09-21 22:10:29
That is correct.
Richy C.  2009-09-22 12:41:12
i've updated the question with the result of my trying your suggestion.
pixeline  2009-09-24 08:50:17
Thanks - I've just setup a chi.mp account and tried logging into a (slightly modified version - PHP 5.3 fixes an debug logging mainly-still testing the changes though) of the Janrain library on http://www.mangahigh.com and it works without problems, but not yours. I assume your server is able to make outbound requests on port 80 and 443?
Richy C.  2009-09-24 14:16:15
hi Richy, i would assume so, but could you tell me how can I verify that?
pixeline  2009-09-25 18:38:16
ok, i' ve asked on another thread and it turns out i can fetch pages via http but not via https. Could that be it ?
pixeline  2009-09-27 18:53:12
If you have SSH access to the server, the easiest way would be to try something like "wget https://mail.google.com/" or "lynx https://mail.google.com/" - if they don't work, but using http instead of http does work, then that's your problem. If you haven't got SSH access, you could just add a call to curl in PHP to test.If outbound https is blocked from your server, this is probably the cause of your difficulties, but if you contact your server admin and ask them to "Allow TCP outbound from port 443 (https) to all", then this should get things working for you.
Richy C.  2009-09-27 19:54:55
+2  A: 

It looks like there is a newer version of the openid class your using. Take a look here: http://extremeswank.com/simpleopenid.html (It says version 1.2 where your link does not specify).

I tested the class you linked to and it had definite issues with any Identity url that has a "https://" prefix. It is seems to be broken for google openid and will convert "http**s**://www.google.com/accounts/o8/id" into "http://www.google.com/accounts/o8/id" which fails. Even the version 1.2 class fails the same way.

I think i would shop around for another php openid library here: http://openid.net/developers/libraries/

Tim Santeford  2009-09-21 20:13:35
Tim is right, it looks to me like the library itself is broken. I would switch libraries.
Bob Aman  2009-09-23 03:58:53
Tried that. I've updated the question with new updates.
pixeline  2009-09-24 08:50:52
hi Tim, i downvoted because the class itself didn't seem to be the use as per my test (using it on another server machine worked fine): but i somewhow missed the "https is the issue" part of your reply. It turns out it is my server curl implementation that breaks https requests ! SO does not allow me to reupvote it unless your answer is edited. So please edit it and i'll reupvote it. Sorry for the misuse.
pixeline  2009-09-28 08:33:50
A: 

I'll post the full explanation. The bounty should be splitted to go both to Tim Santeford and Richy C. Because it's thanks to their inputs and advises that i could nail down the issue.

I have no experience with bounties so i hope i can do that, or have the moderator do that.

As for the answer:

The reason why login in with some openid would work and others not was that those not working where openid redirecting to a https url. Yet, my server had libcurl compiled with the https Protocol disabled.

Enabling it makes the openid login works seamlessly.

pixeline  2009-09-28 14:22:58

related questions

IDE suggestions: Eclipse IDE vs. Zend Studio ( confused )
MySQL/Apache Error in PHP MySQL query
Lightweight IDE for Linux
What PHP framework would you choose for a new application and why?
Why is my ternary expression not working?
How can I get at the matches when using preg_replace in PHP?
Mechanisms for tracking DB schema changes
Wordpress theme development offline tools
Using object property as default for method property
How can I get the authenticated user name under Apache using plain HTTP authentication and PHP?
Make XAMPP/Apache serve file outside of htdocs
How do you debug PHP scripts?
PHP Variables passed by value or by reference?
Best way to implement unit testing in PHP
Connect PHP to an AS/400
Best way to access Exchange using PHP?
PHP Session Security
How do I access a remote form in php?
What's the best way to generate a tag cloud from an array? (using h1 through h6 for sizing)
Apache/PHP: error_log per Virtual Host?
How do I track file downloads with apache/PHP
How would you access Object properties from within an object method?
Flat File Databases in PHP
Best way to allow plugins for a PHP application
Latest information on PHP upcoming releases