PHP live RP demo: return URL does not match return_to

[Greg Byrd]

I've been using the PHP live RP demo to test an OP that I'm developing.  (Thanks
for providing this service, by the way!)  I keep getting the following response
from the RP:

OpenID authentication failed: return_to does not match return URL. Expected
http://openidenabled.com:80/php-openid/trunk/examples/consumer/finish_auth.php,
got
http://openidenabled.com:80/php-openid/trunk/examples/consumer/finish_auth.php?janrain_nonce=2008-06-11T15:46:12ZUS6f2P

(Of course, the nonce changes each time.)

Here's the redirect URL, copied from the Firefox navigator bar:

http://openidenabled.com/php-openid/trunk/examples/consumer/finish_auth.php?janrain_nonce=2008-06-11T15%3A46%3A12ZUS6f2P&openid.signed=return_to,claimed_id,identity,op_endpoint,response_nonce,assoc_handle&openid.assoc_handle=0v%605e*g&0gy@LGP!0lNT7s[rq*%22C/{)qX^5%2Oi$^%220=%60VuH;Od'QhNZ7aP;1j1(&openid.op_endpoint=http://gbyrd.ece.ncsu.edu:8080/TokenService/services/OpenID&openid.identity=gbyrd&openid.return_to=http://openidenabled.com:80/php-openid/trunk/examples/consumer/finish_auth.php?janrain_nonce=2008-06-11T15%3A46%3A12ZUS6f2P&openid.claimed_id=http://www.cesr.ncsu.edu/gbyrd/&openid.sig=eMCGp32HPF6QlGSM10ssnmB7t0Y=&openid.mode=id_res&openid.response_nonce=2008-05-11T15:46:24ZUNIQUE^cGG,1%3EP$PB1r#_%}fF_A$;9]-CaS&openid.ns=http://specs.openid.net/auth/2.0

The janrain_nonce field is clearly there, along with the openid.* parameters.
Am I formatting something incorrectly?  (I just noticed that there's an
ampersand ('&') in my assoc_handle.  Could this be a problem? I ran the redirect
URL string through an encoding routine.)


...Greg Byrd, NC State Univ.