I'd like to be able to tell to the site visitor that comes with his/her OpenID: you are using your XYZ id for the first time on mysite - please create your sceen name, where XYZ is a nice token that makes sense. For example - XYZ could be the provider name. I'd like to find a solution that works for OpenID as defined in the standard - i...
Google uses email addresses as OpenID login strings for its provider service. I was reading about a conference where they were pushing to have it incorporated into the standard. Microsoft was against this, the "official" reason being security vulnerabilities this would supposedly introduce. Is this bogus? If not, why is it insecure? ...
I'm implementing OpenID auth on a website and I'm using check_immediate. Now it works great with every big provider (google, myopenid, aol). But when a client from 1 certain OP tries to auth i always get Auth_OpenID_SetupNeededResponse. Now I've read that in this case the RP should retry without check_immediate (correct me if im wrong). ...
In order to store user information from people who login with OpenId I plan on creating a user table. My problem is that this new user table will contain new fields that I want the asp.net membership users to be able to fill in too (profile data). My plan is when a user wants a username and password, they register and the information i...
I'm really trying to understand the difference between OpenID and OAuth? Maybe they're two totally separate things and I'm just totally confused. Could someone explain it to me please? Thanks! ...
have anyone tried this, create openid4j servlet and try authenticate with google openid? i tried it and fail and so want to get confirmation from you all. i able to authenticate with yahoo_email and myopenid.com ...
I'm looking for some guidance on the best way to authenticate to my WebService. Right now, I have a standard WebService on .NET 3.5, and a MVC website that sits on top of this WebService. The MVC website uses OpenID to authenticate users, and during the development phase, we have simply been passing the user's OpenID Claimed Identifier...
Hi , I am using the below code. OpenIdRelyingParty createRelyingParty() { OpenIdRelyingParty openid = new OpenIdRelyingParty(); int minsha, maxsha, minversion; if (int.TryParse(Request.QueryString["minsha"], out minsha)) { openid.Settings.MinimumHashBitLength = minsha; } if (int.TryParse(Request.QueryStr...
What's the main advantage working with open ID? ...
I've implemented OpenID on my website but I'm having a hard time finding a list of OpenID Provider URLs. I thought this would be easy to find but I've scoured the web and only found a handful, mostly by accident. Is there a resource that lists available Providers and their authentication URLs? EDIT: Here are the ones I've found so far...
I am looking for an example of an openId sign-in just like stackoverlow. I saw a few around, but I don't like the idea of copying or memorizing a url to enter. I want to include options for openId with google/yahoo/etc buttons. I said something about not liking the standard openid login, however, that will be there as an example. I a...
i trying around with JanRain openid, i'm already add some required fields like email, nickname etc.. and some optional fields but openid provider dont send back to me any information but user's openid url. I'm trying on localhost. ...
I've got a membership site using the default ASP.NET membership setup. The user accounts are free, with capability of paying to activate other key parts of the site. In keeping with the nature of the site, i.e. embedded Google maps, Street View, and using Google's CDN to host jQuery/jQueryUI for me... it'd be nice to offload the authent...
For three days now I'm trying to add OpenID authentication to my Rails application. I've read many tutorials regarding this topic and it seems that eventually I'll get it working. The problem is that all pieces of information I needed so far and most likely also the ones I will be needing are scattered across the web. No tutorial had ...
I'm currently debating whether I should use OpenID login for one of my websites. OpenID may be harder for me to implement because I already have registration and login code written, but this is just a time consideration. What advantages and disadvantages are there to using OpenID in contrast to, say, a traditional website user account sy...
Hi, I am having a problem implementing OpenID on my ASP.NET site. I have got OpenID to work well when the return URL ends in .aspx, however whenever i try and return it to a rewriten URL (http://example.com/return/ is really http://example.com/return.aspx) it doesn't work. How can i set the rewrite rule so that OpenID will work. I am ...
Hi, I have managed to get all the authentication parts working, however i am confused about setting up registration. By registration i mean that if the OpenID is not attached to an existing account, then a new account must be created. Should i simply have it return to a registration page (with from fields for registration) and redirec...
I need an OpenID login widget like the one on Stackoverflow or Id Selector (which has been discontinued in favor of RPXnow which is a commercial service). What is the best way to make these? Is there a framework or example implementation anywhere? ...
I'm using the python-openid library from Janrain at http://openidenabled.com/python-openid/ I adapted their Django example to another framework called Web2Py and it appears to be working, but with some annoying side-effects. The first problem is that sreg (Simple Registration Extension) and ax (Attribute Exchange) don't seem to work...
Hi, I'm starting to work on a site that will be strongly connected to a corresponding Facebook app. I want the contents to be free for all to view, but only registered users will be able to edit it (quite similar to serverfault, actually). Since I think that most of my users will be logged in to facebook, I would really like to use the...