tags:

views:

152

answers:

2
Q: 

DotNetOpenAuth with Ajax on Visual Studio 2010 .NET 4 problem

I have been using DotNetOpenAuth's "OpenIdTextBox" control on our login page. We used VS 2008 + .NET 3.5 + Ajax UpdatePanel without any issues.

Today we tried to upgrade the whole project to VS 2010 + .NET 4.0, the Ajax UpdatePanel gives me a javascript error when it redirects to the provider (such as Google) to sign in.

"Sys.WebForms.PageRequestManagerParserErrorException: The message received from the server could not be parsed. Common causes for this error are when the response is modified by calls to Response.Write(), response filters, HttpModules, or server trace is enabled"

Is there any settings I can make this work? The weird thing is... it worked on VS 2008 + .NET 3.5. Thanks....

+1  A: 

I don't know how the UpdatePanel works, but the OpenIdTextBox control needs the ability to redirect the entire browser document to another URL, which perhaps UpdatePanel isn't allowing because it only expects a content response to update a small area of the web page. So perhaps OpenIdTextBox is fundamentally incompatible with UpdatePanel -- just a guess.

I wonder if you can elect somehow at the server side while processing the page to disable the UpdatePanel's optimizations, if for example the OpenIdTextBox_LoggingIn event was fired.

Otherwise of course you can move the text box outside the UpdatePanel, but perhaps that can't be done while maintaining the appearance of yoru web page.

I could tell you how to override the way OpenIdTextBox redirects the web page, but anything you might do that is equivalent would likely run into the same problem.

Andrew Arnott  2010-06-30 19:53:10
Hi Andrew.. Yes, if you can tell me how to overrite OpenIdTextBox redirect please? that would be helpful.. really appreciated that.
userb00  2010-07-01 00:44:10
Override the LoggingIn event, and set the `e.Cancel = true` to stop the control from doing the redirect. Then you can use the information in `e.RedirectingResponse` to perform the redirect yourself. Be careful though. It's *not* always just a simple 301 Redirect with a URL. That `RedirectingResponse` can include a self-posting HTML FORM for extra large auth requests. So you have to send *all* the data in that object to the client to be reliable.
Andrew Arnott  2010-07-01 01:40:00
Thanks Andrew!!!
userb00  2010-07-05 18:12:39
You're welcome. (slight correction: `e.RedirectionResponse` above should be `e.Request.RedirectingResponse`)
Andrew Arnott  2010-07-05 21:27:12
A: 

Thanks Andrew! It worked (I am answering to my own post). Basically, I solved this Ajax problem by using "Response.RedirectLocation".

According to some articles, this is an Ajax friendly call for some reasons, I don't exactly know what's the difference because I guess "e.Request.RedirectingResponse" is doing the same thing. Anyways, I then extacted the location from "RedirecingResponse" header. I tested with 8 providers, it seems working! 

e.Cancel = true; 
OutgoingWebResponse webResponse = e.Request.RedirectingResponse; 
string location = webResponse.Headers["Location"]; 
Response.RedirectLocation = location;
userb00  2010-07-05 18:12:18

related questions

how to get login credentials by openId?
OpenID Migration
PHP Tutorial for OpenId and OAuth
OpenID login workflow?
OpenID support for Ruby on Rails application
Using OpenID for both .NET/Windows and PHP/Linux/Apache web sites
What is the benefit of using ONLY OpenID authentication on a site?
Problems with migrating Cardspace cards between computers
secure way to authenticate administrator in ASP.NET site using OpenID with DotNetOpenID
How do I enable open id on a Java Webapp?
What would it take to make OpenID mainstream?
What's the best .NET library for OpenID and ASP.NET MVC?
Useful browser plugins for openid authentication?
How do I implement an OpenID server in Rails?
How do I implement OpenID in my web application?
Why is HTML form redirection used in OpenID 2?
How do you set up an OpenID provider (server) in Ubuntu?
OpenID as a Single Sign On option??
Should my website abandon username/password authentication in favor of OpenID?
OpenID authentication in ASP.NET?
Open ID - What happens when you decide you don't like your existing provider?
OpenID authentication in Ruby on Rails
OpenID Attribute Exchange - should I use it?
OpenID: which provider should I recommend to my users?
How do I use more than one OpenID?