Identifier_select response

Eddy Nigg (StartCom Ltd.) eddy_nigg at startcom.org
Wed Feb 6 16:17:20 PST 2008 

Hi Kevin,

After much trial and error (and lots of logging and debug printing) I 
got it work. At least that's correct when using the example consumer at 
openidenabled.com. At this stage my thanks for providing this service 
which allows us to check server implementations etc!

One thing however I must clarify here. Why does the consumer use the 
openid.claimed_id field for discovering the second step (for XRDS) and 
not the openid.identity? I expected the openid.identity field to be 
authoritative and not openid.claimed_id! This looks somehow not really 
correct to me...

You can check this by sending different values at the id_select stage, 
where openid.claimed_id isn't the same as openid.identity with 
openid.identity the only correct value for discovery.

Kevin Turner wrote:
> On Wed, 2008-02-06 at 22:45 +0200, Eddy Nigg (StartCom Ltd.) wrote:
>   
>> At this stage the RP sends this: [openid_claimed_id] =>
>> http://specs.openid.net/auth/2.0/identifier_select
>>
>> How do you know that the claimed_id field is supposed to be
>> "http://kevin.janrain.com/"?
>>     
>
> Because you asked me which of my identifiers I wanted to use, and I
> picked that one.  For an example of this in the wild, see Yahoo!'s
> implementation, which will let you choose between a yahoo.com identifier
> and a www.flickr.com identifier.
>
> The more common case, as is the current implementation on myOpenID, is
> for the claimed identifier and the local identifier (openid.identity) to
> be the same.
>
>   
>   
>> OK, slowly now. First the xrds sends "Auth_OpenID_TYPE_2_0_IDP".
>>     
>
> The XRDS for myopenid.com sends that type, the "this URL is an OP."
> The XRDS for keturn.myopenid.com sends the other type, "this URL is an
> OpenID Identifier."
>
>
>
>
> _______________________________________________
> Dev mailing list
> Dev at lists.openidenabled.com
> http://lists.openidenabled.com/mailman/listinfo/dev
>   

-- 
Regards 
 
Signer:  	Eddy Nigg, StartCom Ltd. <http://www.startcom.org>
Jabber:  	startcom at startcom.org <xmpp:startcom at startcom.org>
Blog:  	Join the Revolution! <http://blog.startcom.org>
Phone:  	+1.213.341.0390
 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openidenabled.com/pipermail/dev/attachments/20080207/235d2dfd/attachment.htm

More information about the Dev mailing list