tags:

views:

106

answers:

1
+1  Q: 

Delegated openid does not work on slashdot.org

I created an open-id recently on myopenid.com: http://axqd.myopenid.com/

And I own a domain, which reads 'axqd.net'. So I wrote down the following lines in the <head> section of index.htm page( http:// axqd.net or http:// www.axqd.net/ ).

<link rel="openid.server" href="http:// www.myopenid.com/server" />
<link rel="openid.delegate" href="http:// axqd.myopenid.com" />
<link rel="openid2.local_id" href="http:// axqd.myopenid.com" />
<link rel="openid2.provider" href="http:// www.myopenid.com/server" />
<meta http-equiv="X-XRDS-Location" content="http://www.myopenid.com/xrds?username=axqd.myopenid.com" />

Then I can login with open-id http:// axqd.net/ successfully on many sites except http:// slashdot.org/. It keeps telling me 'Invalid identity supplied'. But if I use open-id http:// axqd.myopenid.com/ instead of the delegated one, everything went fine.

Am I missing something here or is it just a bug of slashdot?

[Of course, I know there is no blank space after 'http://'. I'm just a new user here who is not allowed to add too much hyperlinks in my post]

+1  A: 

Slashdot has one of the buggiest OpenID implementations I've seen. It's most likely not you.

Andrew Arnott  2010-01-21 13:55:07
Guess so. I just need some confirmation because this is my first time to deal with openid :P
aXqd  2010-01-22 02:28:10
If you want further confirmation, try your delegating OpenID at this interop testing site: http://test-id.org/OP/Sreg.aspx If it works there, then you're doing it right.
Andrew Arnott  2010-01-22 14:21:58
Thanks, Andrew. I can login with http:// axqd.net successfully. But it said "login as http:// axqd.myopenid.com" instead of "login as http:// axqd.net". I don't know if that is what I should expect.
aXqd  2010-01-23 03:29:20
It sounds like you have it configured correctly then. Yes, myopenid.com prompts you to log in with your "local id" rather than your "claimed id" when you use delegation. I find it weird too, but arguably it may be the right thing.
Andrew Arnott  2010-01-24 15:18:19
Score:3 (insightful)
skaffman  2010-01-29 08:45:46
frankly, myopenid's not-prompting-with-the-claimed-id thing is more than likely a holdover from OpenID 1.x, when the OpenID provider was entirely ignorant of what claimed ID was being used. v2.0 passes this information to the provider, and would probably make better for more consistent user experience. ...unless you still use some v1.x relying parties. Then you're just doomed to confusion.
keturn  2010-01-29 08:50:37
Cannot agree more...
aXqd  2010-04-26 08:30:18

related questions

how to get login credentials by openId?
OpenID Migration
PHP Tutorial for OpenId and OAuth
OpenID login workflow?
OpenID support for Ruby on Rails application
Using OpenID for both .NET/Windows and PHP/Linux/Apache web sites
What is the benefit of using ONLY OpenID authentication on a site?
Problems with migrating Cardspace cards between computers
secure way to authenticate administrator in ASP.NET site using OpenID with DotNetOpenID
How do I enable open id on a Java Webapp?
What would it take to make OpenID mainstream?
What's the best .NET library for OpenID and ASP.NET MVC?
Useful browser plugins for openid authentication?
How do I implement an OpenID server in Rails?
How do I implement OpenID in my web application?
Why is HTML form redirection used in OpenID 2?
How do you set up an OpenID provider (server) in Ubuntu?
OpenID as a Single Sign On option??
Should my website abandon username/password authentication in favor of OpenID?
OpenID authentication in ASP.NET?
Open ID - What happens when you decide you don't like your existing provider?
OpenID authentication in Ruby on Rails
OpenID Attribute Exchange - should I use it?
OpenID: which provider should I recommend to my users?
How do I use more than one OpenID?