Launchpad itself

logging into sourceforge with openid breaks

Bug #449105 reported by Robert Collins
10
This bug affects 1 person
Affects Status Importance Assigned to Milestone
Canonical SSO provider
Invalid
Undecided
Unassigned
Launchpad itself
Invalid
High
Unassigned

Bug Description

Go to http://sourceforge.net and try to log in with openid. The third
box on the right hand side should be 'open id'.

In there put in
http://launchpad.net/~<yourlpid>

LP gives an error that 'https://launchpad.net/~YOURID' is not an open
identity url like 'https://launchpad.net/~USER'.

This is bong

 affects launchpad

--

Revision history for this message
William Grant (wgrant) wrote :

The XRDS served by c-i-p is wrong for delegated identities, yet it is linked from https://launchpad.net/~USER. It has no openid:Delegate elements, so XRDS-capable consumers attempt to authenticate to https://login.launchpad.net/+openid with the original URL, not https://login.launchpad.net/+id/SOMETHING.

Adding <openid:Delegate>https://login.launchpad.net/+id/SOMETHING</openid:Delegate> to the produced XRDS makes everybody happy again.

affects: launchpad → canonical-identity-provider
Revision history for this message
Stuart Metcalfe (stuartmetcalfe) wrote :

Looks like this is a bug introduced in a recent update (possibly rev no. 8896 [1]?). Assigning back to flacoste to investigate and decide whether launchpad want to dedicate the resources to fix for their users.

[1] https://bazaar.launchpad.net/~launchpad-pqm/canonical-identity-provider/trunk/revision/8896

Changed in canonical-identity-provider:
status: New → Incomplete
importance: Undecided → High
assignee: nobody → Francis J. Lacoste (flacoste)
Francis J. Lacoste (flacoste)
affects: canonical-identity-provider → launchpad-foundations
Changed in launchpad-foundations:
status: Incomplete → Confirmed
assignee: Francis J. Lacoste (flacoste) → nobody
status: Confirmed → Triaged
Curtis Hovey (sinzui)
Changed in launchpad-foundations:
status: Triaged → In Progress
assignee: nobody → Curtis Hovey (sinzui)
Revision history for this message
Curtis Hovey (sinzui) wrote :

My thanks to wgrant, phuff, and sosborn for discussing this issue on
#launchpad. My examination of the code and tests in the code bases were
not making progress; their timely conversation helped be understand what
what was wrong with the openid transaction.

    sinzui: wgrant: c-i-p does not use ~user. that is a launchpad social
        feature
    wgrant: sinzui: But the XRDS is served by the SSO server.
    phuff: wgrant: It's actually a bug on our side
    phuff: wgrant: I can fix it.
    phuff: :)
    phuff: We're not respecting xrds delegation correctly
    phuff: And you guys are doing <LocalId> in your xrds file
    phuff: See https://launchpad.net/~<hidden>/+xrds
    phuff: The error message is a bit confusing
    phuff: But other than that, you're probably doing things right.
    wgrant: phuff: The XRDS I see has no openid:Delegate or LocalId.
    sosborn: it's linked to in the headers
    sosborn: X-Xrds-Location: https://launchpad.net/~<hidden>/+xrds
    phuff: Well, it looks like your header one is valid, we're just not
        parsing it correctly...

Changed in launchpad-foundations:
assignee: Curtis Hovey (sinzui) → nobody
status: In Progress → Invalid
Changed in canonical-identity-provider:
status: New → Invalid
Revision history for this message
Paul Huff (phuff) wrote :

I have a fix for this in our repo, should get QAd and hopefully go out tomorrow.

Revision history for this message
Appiah (appiah) wrote :

It's working now!

Revision history for this message
Nick Barcet (nijaba) wrote :

I'm having a similar issue at the moment with en.oreilly.com/oscon2010 which answers "unable to find OpenID Server for https://launchpad.net/~nijaba" while the same url seems to work on other sites.

Unsure if this bug should be reoppened, a new one created, or if this is just a temporary glitch on the other side...

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.