Using openID has brought up some questions that I'm hoping the SO community can help me answer.
OpenID and the (now obsolete) Username
From what I've read, one of the main goals of openID is to eliminate the need for someone to create yet another username and password for some site they may only use once. While I think this is a reall...
how to get end point url of a openid provider like for google if we get from https://www.google.com/accounts/o8/id or for yahoo it is http://me.yahoo.com .Similarly , for others how to find this information.
...
This webservice is written in C#, and I want to use an OpenID to authenticate.
This authentication request will be called by a WPF, and an asp.net applicantion.
the webservice will then try to authenticate in OpenID server, and in this case I use OpenID-LDAP software.
The big problem is how to use OpenID without showing the web page to...
I've configured a new MVC2 site to use JanRain Engage (formerly RPXNow) for authentication.
I would like to be able to associate multiple OpenID's to a single user account, but still use the built in providers.
Is there a good solution for handling this without creating new tables or heavy modification to the built-in stored procs?
Po...
I am using the open_id_authentication plugin for login purpose. I am able to integrate the plugin correctly and it works well. I would like to retrieve additional values like the nickname and email of the user, which I am not able to retrieve. I am using the following code but the registration fields are empty . Am I doing something corr...
In the OpenID specs, it says:
Identifier:
An Identifier is just a URL. The whole flow of the OpenID Authentication protocol is about proving that an End User is, owns, a URL.
Claimed Identifier:
An Identifier that the End User says they own, though that has not yet been verified by the Consumer.
Ver...
Recently, I've begun writing my own PHP OpenID consumer class in order to better understand openID. As a guide, I've been referencing the [LightOpenID Class][1]. For the most part, I understand the code and how OpenID works. My confusion comes when looking at the author's discover function:
function discover($url)
{
if(!$url) throw ...
I am integrating openid in my website.
I am able to retrieve data(ex email) from op provider(by query string).
But different op provider gives data in different key like gmail gives it under openid.ext1.value.alia2 key and yahoo gives it in under some different key.
how should i retrieve value from query string.
...
I am storing response from opeid provider using
NameValueCollection query = HttpContext.Current.Request.QueryString;
I am sending request for emailid as
"&openid.ax.type.email=" +
HttpUtility.UrlEncode("http://schema.openid.net/contact/email"))
but receiving emailid in openid.ext1.value.email in some case and openid.ax....
how to make discovery for openid provider like for orange.fr?
...
Hi,
I am writing a system of comments in DJango and I want to authenticate my users with OpenID.
I see a lot of solutions that integrate DJango and OpenID, but all of these consist on a login form.
I don't want to provide a login form to my users (in fact, i don't want to have a users table).
In my comment form there is a URL field. ...
I have a main website running on AppEngine. It's on a subdomain like main.example.com. This main application is a content portal for our customers. It offers an Ajax application built on YUI. Customers can upload data to it. Users authenticate using Federated Login.
The Ajax application on it allows users to process the data previousl...
when to use openid.ax.required in making request for authentication.Because if this option is required by google but it is not required by yahoo.
...
when to use http://schema.openid.net/contact/email and when to use http://axschema.org/contact/email in openid request.
...
I'm trying to find the way to face this situation.
Having these tables in my database related to "native" users and "external" users to log "native" users, and OpenId users:
--native user--
id (primary key)
email (unique)
screen_name (unique)
--external user--
openid_id
native_user_id
When a new user logs with an OpenId account, I...
I'm trying to use Codeigniter OpenID library (http://codeigniter.com/wiki/OpenID/) and everythyng work fine with default configuration of ci without .htaccess. When I remove index.php by changing config.php and .htaccess I get 404 Page Not Found when I try to verify my openid (http://ci.dlsb.eu/test/)
Can anybody tell me where I'm wrong...
I am trying to validate using this parameters:
"openid.mode=check_authentication"
+ "&openid.assoc_handle=" + txtAssocHandle.Text
+ "&openid.response_nonce=" + HttpUtility.UrlEncode(txtNonce.Text)
+ "&openid.op_endpoint=" + txtEndpoint.Text
+ "&openid.sig=" + txtSignature.Text
+ "&openid.signed=mode,identity,return_to";
and it returns
...
what security aspects should be kept in mind while implementing openid from scratch(without using library).
...
I am using OpenID in our website but yahoo id is not verified. And from other OpenID I am not getting user detail so that I can store in the database.
...
I am using AXFetchAsSregTransform behavior in dotopenidauth and thereafter using claimRequest( Email = DemandLevel.Request,
FullName = DemandLevel.Request) . I am using var claimsResponse = response.GetExtension();
to receive response.It's working fine with google , but in case of aol , myopenid it is returning nul...