OpenID development and debugging tools

Question

Any pointers to development, primarily debugging tools, for OpenID? In particular, I'm looking for a tool to record and view the OpenID traffic through the User-Agent during an indirect communication authentication session. An OpenID provider and relying party that offered debugging info about authentication attempts would be nice, too.

Yes, I've asked Mr. Google about this, and haven't hit the right keywords or I wouldn't be asking here. I can build this myself, but if someone else has already done the work...

Thanks for any help.

Answer 1

A few suggestions on where you might find information other than google: there are a few links on dmoz, and there are several OpenID related project on freshmeat and sourceforge. While you might not find what you ask for there, perhaps you could directly ask one or some of the authors of the various openid servers or post on corresponding mailing lists. I would assume that some of those have done their share of debugging and would have some tips to provide.

Answer 2

The DotNetOpenAuth library does both RP and OP and has very verbose logging for diagnostic purposes, which can be tuned to whatever logs you're interested in. You can use it to test against your OpenID site, regardless of what its platform is.

You can check out a sample of the logs by logging into the demo RP and then visiting the log page that it accumulated from your login.

Then there's the equivalent demo OP and the associated log page.

If you like what you see, you can either just use these sites yourself to test your OpenID site against, or you can download DotNetOpenAuth and use it locally and further customize the logs.

Answer 3

I think the TamperData extension for FireFox is what I used to look at communication through the user-agent. The script "openid-parse" in python-openid/contrib/ will take data copied out of a TamperData logs and parse it out into OpenID fields for you.