[jira] [Commented] (WOOKIE-100) Open ID/OAuth Support

Tue, 25 Oct 2011 13:28:54 -0700 

    [ 
https://issues.apache.org/jira/browse/WOOKIE-100?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13135396#comment-13135396
 ] 

Scott Wilson commented on WOOKIE-100:
-------------------------------------

Thanks Tien, I added your test server cert to my keystore so I could test a 
little further.

On Safari, Chrome and Opera, the widget seems to go in a loop:

1. on first run, I get automatically redirected to a European Schoolnet OpenID 
server (which I log into)
2. I get "identity veritifed" and press "proceed"
3. I get the actual widget page with the quote image and "get quote" button
4. I click "get quote"
5. I get redirected to (2), and off we go again

On Firefox, the widget gets stuck:
1. on first run, I get automatically redirected to a European Schoolnet OpenID 
server (which I log into)
2. I get my Profile page. Thats it.

In the first case, taking a look at the actual request being sent, the URL is:

http://localhost:8080/wookie/proxy?instanceid_key=WXeajzoG98IdbDTabpfz2Y8OsBc.eq.&url=https://hogwarts.info.fundp.ac.be/ITEC/quotes&client_id=WXeajzoG98IdbDTabpfz2Y8OsBc.eq.&access_token=20111025T202126jfpdeRMR8sTVcv9YiRDdN%252FbONYw%253D

However, if I try to open this in the browser directly it returns 
"{"error":"access_denied"}" which is presumably why it keeps redirecting back 
to the identity manager.
                
> Open ID/OAuth Support
> ---------------------
>
>                 Key: WOOKIE-100
>                 URL: https://issues.apache.org/jira/browse/WOOKIE-100
>             Project: Wookie
>          Issue Type: New Feature
>            Reporter: Ross Gardler
>              Labels: gsoc, mentor
>             Fix For: 0.9.2, 0.9.3
>
>         Attachments: WOOKIE-WookieOpenIDsupport-110711-0506-358.pdf, 
> WOOKIE_OPENID_AUTH_FLOW.png, hogwarts.info.fundp.ac.be, oAuthClient.java, 
> wookie-oauth.zip
>
>
> OpenID support for widgets would be really useful, as suggested by Bernhard 
> Hoisl. [1]
> Bryan Copeland indicated that he has already done some OpenID/OAuth work and 
> has provided a very useful proposal (see attached file)
> [1] http://markmail.org/thread/qyjhlm2f3v3cben5

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: 
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

Reply via email to