[jira] [Commented] (SHIRO-21) Add OpenId as an authentication mechanism

[Roman S (Commented) (JIRA)]

    [ 
https://issues.apache.org/jira/browse/SHIRO-21?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13118288#comment-13118288
 ] 

Roman S commented on SHIRO-21:
------------------------------

Maria, thank you the patch! It worked great!

But I do have a kind of semi-problem and I'm not sure what is causing it:

If time on the server (my server) is a little bit ahead (>1 min), then Nonce 
verification fails, thus OpenId authentication itself fails and I get the 
following exception:

java.lang.IllegalStateException
        at 
org.apache.catalina.connector.ResponseFacade.sendError(ResponseFacade.java:433)
        at 
org.apache.catalina.servlets.DefaultServlet.serveResource(DefaultServlet.java:775)
        at 
org.apache.catalina.servlets.DefaultServlet.doGet(DefaultServlet.java:408)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:621)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:722)
        at 
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:304)
        at 
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210)
        at 
org.apache.shiro.web.servlet.ProxiedFilterChain.doFilter(ProxiedFilterChain.java:67)
        at 
org.apache.shiro.web.servlet.AdviceFilter.executeChain(AdviceFilter.java:108)
        at 
org.apache.shiro.web.servlet.AdviceFilter.doFilterInternal(AdviceFilter.java:137)
        at 
org.apache.shiro.web.servlet.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:125)
        at 
org.apache.shiro.web.servlet.ProxiedFilterChain.doFilter(ProxiedFilterChain.java:72)
        at 
org.apache.shiro.web.servlet.AbstractShiroFilter.executeChain(AbstractShiroFilter.java:449)
        at 
org.apache.shiro.web.servlet.AbstractShiroFilter$1.call(AbstractShiroFilter.java:365)
        at 
org.apache.shiro.subject.support.SubjectCallable.doCall(SubjectCallable.java:90)
        at 
org.apache.shiro.subject.support.SubjectCallable.call(SubjectCallable.java:83)
        at 
org.apache.shiro.subject.support.DelegatingSubject.execute(DelegatingSubject.java:376)
        at 
org.apache.shiro.web.servlet.AbstractShiroFilter.doFilterInternal(AbstractShiroFilter.java:362)
        at 
org.apache.shiro.web.servlet.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:125)
        at 
org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:237)
        at 
org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:167)
        at 
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:243)
        at 
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210)
        at 
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:240)
        at 
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:164)
        at 
org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:498)
        at 
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:164)
        at 
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:100)
        at 
org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:562)
        at 
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:118)
        at 
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:394)
        at 
org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:243)
        at 
org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:188)
        at 
org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:302)
        at 
java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1110)
        at 
java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:603)
        at java.lang.Thread.run(Thread.java:722)

Do you have any hint for that, guys? I'd really want verification to fail 
gracefully.

Thank you!
                
> Add OpenId as an authentication mechanism
> -----------------------------------------
>
>                 Key: SHIRO-21
>                 URL: https://issues.apache.org/jira/browse/SHIRO-21
>             Project: Shiro
>          Issue Type: New Feature
>            Reporter: Alan Cabrera
>            Assignee: Les Hazlewood
>         Attachments: patch-OpenId_01.txt, patch-shiro-openid4j-01.patch, 
> patch-shiro-web-01
>
>
> From the forums:
> Are there any plans to incorporate OpenId as an authentication mechanism in 
> JSecurity?
> Mike
> Tue, 02/19/2008 - 2:58pm ? lhazlewood
> Hi Mike, If you would please
> Hi Mike,
> If you would please open an issue for us (http://issues.jsecurity.org), you 
> can bet that we'll try to get it incorporated as soon as possible. Also, if 
> you have any code that you might be able to kickstart us, please include it.
> Thanks!
> Les 

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: 
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira