PHP Standalone Server 1.1 Checkid_Setup

Jean-Mathieu Marchetti-Ettori jm.marchetti at gmail.com
Thu Apr 19 01:52:30 PDT 2007 

Hi,

I managed to set up the PHP OpenID standalone Server 1.1, and then I wanted
to test it with the Diagnose-server tool. That's where the problem is.

The first test was successfull, but since the checkid_setup test, I always
get some errors from the assoc_handle. When I try to trust any site I always
get the same error : "check_auth failed : is_valid  was false". It seems
that there is a signature problem.

I'm running PHP standalone Server, so I think it's not the store that is
misconfigured (MySQL).

If you have any suggestions that would help me to pass these tests...

For information, here is the output I get from the diagnose-server tool:



Server responds that checkAuth call is not valid

Latest response: Successful checkid_setup

   - Redirecting to
   http://my.server.com/index.php/serve?openid.assoc_handle=%7BHMAC-SHA1%7D%7B46272298%7D%7BoyHiKQ%3D%3D%7D&openid.identity=http%3A%2F%2Fmy.server.com%2Fopenid%2Fjm&openid.mode=checkid_setup&openid.return_to=http%3A%2F%2Fwww.openidenabled.com%2Fresources%2Fopenid-test%2Fdiagnose-server%2FTestCheckidSetup%2F%3Faction%3Dresponse%26attempt%3D1%26nonce%3DhRexoKvw&openid.trust_root=http%3A%2F%2Fwww.openidenabled.com%2Fresources%2Fopenid-test%2Fdiagnose-server%2FTestCheckidSetup%2F
   openid.assoc_handle{HMAC-SHA1}{46272298}{oyHiKQ==} openid.identity
   http://my.server/jm openid.modecheckid_setup openid.return_to
   http://www.openidenabled.com/resources/openid-test/diagnose-server/TestCheckidSetup/?action=response&attempt=1&nonce=hRexoKvw
   openid.trust_root
   http://www.openidenabled.com/resources/openid-test/diagnose-server/TestCheckidSetup/
   - Response received: actionresponse attempt1 noncehRexoKvw
   openid.assoc_handle{HMAC-SHA1}{462722a3}{tEurKg==} openid.identity
   http://my.server.com/jm openid.invalidate_handle
   {HMAC-SHA1}{46272298}{oyHiKQ==} openid.modeid_res openid.return_to
   http://www.openidenabled.com/resources/openid-test/diagnose-server/TestCheckidSetup/?action=response&attempt=1&nonce=hRexoKvw
   openid.sig/td2pm3cJsF8otpQpkE0PjLcalw= openid.signed
   identity,return_to,mode
   - Server denied check_authentication

This attempt is *failing*.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openidenabled.com/pipermail/dev/attachments/20070419/654033c2/attachment.htm

More information about the Dev mailing list