On Wed, Jan 13, 2010 at 02:08, Ryan Govostes <[email protected]> wrote:
> I noticed today that I can't connect to AOL's secure login server > (slogin.oscar.aol.com) but the unsecured server (login.oscar.aol.com) > works fine. > > I get: > > Received unexpected response from > http://api.oscar.aol.com/aim/startOSCARSession > > It looks like the response the server is sending is: > > <?xml version="1.0" encoding="UTF-8"?> > <response > xmlns="http://developer.aim.com/xsd/aim.xsd > "><statusCode>400</statusCode><statusText>useTLS=1 > is not allowed for non secure > > requests.</statusText><data><ts>1263366228</ts><upgradeData></upgradeData><betaData></betaData></data></response> > > I interpret this as a complaint that we're asking for a secure > connection but using HTTP rather than HTTPS. > > I figure this is handled in libpurple so I'll report this there > tomorrow. Either way we'll need to update something on our end. > > -- Ryan > > The only version of Adium with clientLogin enabled is the nightly. The libpurple devs are very much aware of the issue, since their release product ships with it enabled. -- Zachary West
