IRC Log for #openid on 2007-11-27

Timestamps are in UTC.

  1. [00:02:06] * SamRose (n=chatzill@c-71-197-16-138.hsd1.mi.comcast.net) has joined #openid
  2. [00:24:02] * Syn- (n=hisyn@c-76-117-94-125.hsd1.pa.comcast.net) Quit (Read error: 110 (Connection timed out))
  3. [00:39:17] * shigeta (n=shigeta@124.32.114.226) has joined #openid
  4. [00:58:52] <_keturn> hmm. it's hard to use the "type the first letter" keyboard navigation trick of drop-down boxes when all OpenIDs start with "http"
  5. [01:04:26] * marclaporte (n=Marc_Lap@tikiwiki/marclaporte) has left #openid
  6. [01:05:48] * Roebot (n=AaronF@wsip-68-15-8-102.sd.sd.cox.net) Quit ("Leaving")
  7. [01:07:04] * lucca (n=lucca@kuu.accela.net) has joined #openid
  8. [01:10:04] <lucca> hm, I realize I may sound like something of a luddite, but is anyone using this for non-web related technologies? (e.g. an openid SASL authmech, etc)
  9. [01:12:28] <PibbRelay> <cygnus> people ask about that all the time. it's not uncommon, or (entirely) unreasonable..
  10. [01:12:39] <PibbRelay> <cygnus> but I have to go.
  11. [01:12:52] <lucca> fair enough; I'll lurk
  12. [01:56:17] * ianloic (i=yakk@glub.dreamhostps.com) Quit (Remote closed the connection)
  13. [02:08:54] * stub (n=stub@canonical/launchpad/stub) Quit (Read error: 110 (Connection timed out))
  14. [02:09:55] * stub (n=stub@canonical/launchpad/stub) has joined #openid
  15. [02:10:50] <don-o> i believe oauth is the thing the cool kids use for that
  16. [02:22:53] * SamRose (n=chatzill@c-71-197-16-138.hsd1.mi.comcast.net) Quit (Remote closed the connection)
  17. [04:21:02] <PibbRelay> <Blueberry> You can use openid auth inside an application
  18. [04:21:41] <PibbRelay> <Blueberry> but you need to embed some kind of browser window to show the authentication pages, or else launch those in the user's default browser
  19. [04:21:52] <PibbRelay> <Blueberry> there are a bunch of interesting ways of doing it
  20. [04:22:36] <PibbRelay> <Blueberry> the simplest is to have a webservice which your app submits the openid to and runs in the embedded browser until the web service somehow tells the host app it's done with the authenticating
  21. [04:24:13] <PibbRelay> <Blueberry> quickly pondering it, I think that an entirely client side application could probably support openid (in dumb mode) entirely on it's own by doing the openid consumer functions inside the app and asking the provider to return to some funny custom url handler which your app takes control of when the browser navigates to it
  22. [04:25:22] <PibbRelay> <Blueberry> whats more, the downside of dumb mode I believe is increased effectiveness of replay attacks? thats not an issue in client side software as only you have access to it anyway, unless it's a shared computer
  23. [04:25:55] <PibbRelay> <Blueberry> but even then some brain could probably think up a way to stop replays in an entirely client side desktop app using openid for authentication
  24. [04:50:44] * _keturn (n=acapnoti@pdpc/supporter/sustaining/keturn) Quit (Read error: 110 (Connection timed out))
  25. [04:52:44] * rorek (n=rorek@c-71-236-228-127.hsd1.or.comcast.net) Quit (Read error: 110 (Connection timed out))
  26. [04:53:13] * jrbot (n=supybot@c-71-236-228-127.hsd1.or.comcast.net) Quit (Read error: 110 (Connection timed out))
  27. [05:22:59] * rorek (n=rorek@c-71-236-228-127.hsd1.or.comcast.net) has joined #openid
  28. [05:23:38] * _keturn (n=acapnoti@pdpc/supporter/sustaining/keturn) has joined #openid
  29. [05:26:43] * jrbot (n=supybot@c-71-236-228-127.hsd1.or.comcast.net) has joined #openid
  30. [05:27:44] <VxJasonxV> _keturn, then strip everything up to // :)
  31. [05:27:57] <VxJasonxV> (or hide them in combo box text nodes. leave them in the value of said nodes)
  32. [05:41:33] * tbbrown (i=tbbrown@cpe-66-68-116-231.austin.res.rr.com) has joined #openid
  33. [08:09:59] * peace-keeper (n=peace-ke@chello084114169104.2.15.vie.surfer.at) has joined #openid
  34. [09:04:55] * SvenDowideit_ (n=SvenDowi@twiki/developer/SvenDowideit) has joined #openid
  35. [09:19:32] * SvenDowideit__ (n=SvenDowi@124-168-131-250.dyn.iinet.net.au) Quit (Read error: 101 (Network is unreachable))
  36. [09:27:06] * tjohns (n=tjohns@cpe-76-170-58-80.socal.res.rr.com) has joined #openid
  37. [10:06:04] * hillsy (i=shaunh@npfit2.dh.bytemark.co.uk) has joined #openid
  38. [10:08:33] * digitalspaghetti (n=digitals@drupal.org/user/88490/view) has joined #openid
  39. [10:08:47] * digitalspaghetti (n=digitals@drupal.org/user/88490/view) has left #openid
  40. [10:50:27] * JoeSniff (n=joe@82.108.166.130) Quit (Read error: 104 (Connection reset by peer))
  41. [11:55:16] * SvenDowideit_ (n=SvenDowi@twiki/developer/SvenDowideit) Quit ("Leaving")
  42. [12:14:36] * stub (n=stub@canonical/launchpad/stub) Quit (Read error: 104 (Connection reset by peer))
  43. [12:15:25] * JoeSniff (n=joe@82.108.166.130) has joined #openid
  44. [12:15:51] * stub (n=stub@ppp-58.8.12.182.revip2.asianet.co.th) has joined #openid
  45. [12:22:27] * shigeta (n=shigeta@124.32.114.226) Quit ("Leaving...")
  46. [12:42:45] * Loolyan (i=Al@gateway/tor/x-cb9037fc4dfa06b2) Quit (Remote closed the connection)
  47. [12:43:30] * Loolyan (i=Al@gateway/tor/x-0066fedb8419fd53) has joined #openid
  48. [12:44:36] * pvandewyngaerde (n=pvandewy@230.26-201-80.adsl-dyn.isp.belgacom.be) has joined #openid
  49. [12:52:07] * Loolyan (i=Al@gateway/tor/x-0066fedb8419fd53) Quit (Remote closed the connection)
  50. [13:08:21] * SamRose (n=chatzill@c-71-197-16-138.hsd1.mi.comcast.net) has joined #openid
  51. [13:26:26] * pisi (n=pisi@isabel.offline.ee) has joined #openid
  52. [13:26:55] <pisi> I'm afraid there's something rong with the setup.py of 2.1.0rc1 of openid libs
  53. [13:29:19] <pisi> it doesn't do anything
  54. [13:44:58] * Loolyan (i=Al@gateway/tor/x-999d764240816de1) has joined #openid
  55. [13:46:52] <pisi> ok, not anything but what i need.
  56. [14:09:35] <pisi> small bug..
  57. [14:09:38] * pisi (n=pisi@isabel.offline.ee) Quit ("leaving")
  58. [14:19:45] * SamRose (n=chatzill@c-71-197-16-138.hsd1.mi.comcast.net) Quit (Remote closed the connection)
  59. [14:39:23] * MrTopf (i=hidden-u@oecher.info) has joined #openid
  60. [14:47:49] * mmealling (n=mmeallin@c-69-180-6-105.hsd1.ga.comcast.net) has joined #openid
  61. [14:50:06] <mmealling> has anyone seen any kind of analysis of the entire federated identity space and the various problem spaces? I.e. OAuth solves one problem, OpenID solves another, and WS-F solves yet another. Are there others? Is there any kind of gap analysis that's been done?
  62. [15:02:21] * tjohns (n=tjohns@cpe-76-170-58-80.socal.res.rr.com) Quit ()
  63. [15:03:07] * JoeSniff (n=joe@82.108.166.130) Quit (Connection timed out)
  64. [15:03:18] * JoeSniff (n=joe@82.108.166.130) has joined #openid
  65. [15:16:09] * shigeta (n=shigeta@79.125.111.219.dy.bbexcite.jp) has joined #openid
  66. [15:19:58] * westpjc (n=chatzill@c-71-229-229-248.hsd1.co.comcast.net) has joined #openid
  67. [15:47:56] * Loolyan (i=Al@gateway/tor/x-999d764240816de1) Quit (Remote closed the connection)
  68. [16:05:12] * Syn- (n=hisyn@c-76-117-75-151.hsd1.pa.comcast.net) has joined #openid
  69. [16:10:21] * pvandewyngaerde (n=pvandewy@230.26-201-80.adsl-dyn.isp.belgacom.be) Quit ("leaving")
  70. [16:15:23] * dazjorz (n=dazjorz@server.dazjorz.com) has joined #openid
  71. [16:15:24] <dazjorz> Hi
  72. [16:15:44] <dazjorz> I'm trying to get my OpenID login thingy to work using the JanRain library
  73. [16:15:45] <dazjorz> http://beta.dazjorz.com//openid.php
  74. [16:16:05] <dazjorz> My identity is http://dazjorz.myopenid.com/ and is delegated to from http://dazjorz.com/
  75. [16:16:15] <dazjorz> however, when I try to enter http://dazjorz.com/, I get Failed to authenticate: Server denied check_authentication
  76. [16:16:51] <dazjorz> The same happens with http://dazjorz.myopenid.com/
  77. [16:16:57] <dazjorz> Does anybody know what to do about this?
  78. [16:19:04] <PibbRelay> <VxJasonxV> dazjorz: Just FYI, you have your delegation backwards.
  79. [16:19:21] <PibbRelay> <VxJasonxV> MyOpenIDs don't delegate out. You delegate dazjorz.com to dazjorz.myopenid.com
  80. [16:19:27] <dazjorz> VxJasonxV: What do you mean with that?
  81. [16:20:00] <dazjorz> VxJasonxV: Yeah, dazjorz.com delegates to dazjorz.myopenid.com, but that's what I said
  82. [16:20:22] <PibbRelay> <VxJasonxV> no you didn't
  83. [16:20:27] <PibbRelay> <VxJasonxV> oh, wait
  84. [16:20:33] <dazjorz> "and is delegated to from dazjorz.com"
  85. [16:20:46] <dazjorz> anyway that's not going to help me any closer to solving "Server denied check_authentication"... ;)
  86. [16:20:50] <PibbRelay> <VxJasonxV> delegated "to from" doesn't make sense :P
  87. [16:20:56] <PibbRelay> <VxJasonxV> oh, maybe it does
  88. [16:21:01] <PibbRelay> <VxJasonxV> ... that's too awkward a sentence for me this early in the morning XD
  89. [16:21:15] <dazjorz> :P
  90. [16:21:36] <PibbRelay> <VxJasonxV> I unfortunately ultimately don't have an answer, and suggest you wait for keturn or someone to help you through this issue.
  91. [16:21:42] <PibbRelay> <VxJasonxV> I know I've heard of it before, but it's not quite coming to me.
  92. [16:22:12] <dazjorz> Okay... thanks :)
  93. [16:22:35] <PibbRelay> <VxJasonxV> Searching Pibb shows me:
  94. [16:22:46] <PibbRelay> <VxJasonxV> http://archive.pibb.com/OpenID+Development/server+denied+check-authentication/1/0
  95. [16:23:43] <PibbRelay> <VxJasonxV> There's also http://archive.pibb.com/OpenID/General/38/929
  96. [16:23:49] <PibbRelay> <VxJasonxV> this very room! :D
  97. [16:24:38] <dazjorz> It seems like I need to set up my database
  98. [16:24:52] <dazjorz> It's using my mysql database, but it didn't create any tables in it when I first used it
  99. [16:24:55] <dazjorz> do I need to set it up first?
  100. [16:25:26] <PibbRelay> <VxJasonxV> probably :)
  101. [16:35:59] <westpjc> I have 2.1.0 rc1 ... after install sreg shows deprecation warning ... the extensions subdir is in the source but does not get installed.
  102. [16:36:10] <westpjc> bug or feature
  103. [16:45:17] * Roebot (n=AaronF@wsip-68-15-8-102.sd.sd.cox.net) has joined #openid
  104. [17:18:54] <westpjc> Well copying the extensions subdir from the build location to the corresponding location in site-packeages "makes it work" I won't post it as a bug unless someone here knows whether it is "a bug or feature"
  105. [17:22:02] * marclaporte (n=Marc_Lap@tikiwiki/marclaporte) has joined #openid
  106. [17:32:45] * westpjc (n=chatzill@c-71-229-229-248.hsd1.co.comcast.net) Quit ("ChatZilla 0.9.79 [Firefox 2.0.0.9/2007102514]")
  107. [17:41:50] * ArlequinNoir (n=Horst@dtmd-4db5c329.pool.einsundeins.de) has joined #openid
  108. [17:49:37] * MrTopf (i=hidden-u@oecher.info) Quit ()
  109. [17:50:27] * MrTopf (i=hidden-u@oecher.info) has joined #openid
  110. [17:50:37] * MrTopf (i=hidden-u@oecher.info) Quit (Client Quit)
  111. [19:03:58] * ArlequinNoir (n=Horst@dtmd-4db5c329.pool.einsundeins.de) Quit ("Verlassend")
  112. [19:20:47] * hillsy (i=shaunh@npfit2.dh.bytemark.co.uk) Quit ("Leaving")
  113. [19:24:47] * MrTopf (n=tao@pD9EBDFD3.dip.t-dialin.net) has joined #openid
  114. [19:46:09] * Roebot_ (n=AaronF@wsip-68-15-8-102.sd.sd.cox.net) has joined #openid
  115. [19:46:13] * Roebot (n=AaronF@wsip-68-15-8-102.sd.sd.cox.net) Quit (Read error: 104 (Connection reset by peer))
  116. [20:00:33] * fen_ (n=openpriv@pool-71-182-156-244.pitbpa.fios.verizon.net) has joined #openid
  117. [20:05:30] * johill (i=johannes@crystal.sipsolutions.net) Quit (Read error: 101 (Network is unreachable))
  118. [20:10:12] <fen_> yo GabeW - r u there?
  119. [20:17:24] <PibbRelay> <polira> Anyone know how long on average it takes to implement OpenID?
  120. [20:26:05] <fen_> you mean other than using the JanRain libraries?
  121. [20:52:49] * claudio (n=claudioc@pdpc/supporter/active/flexer) has joined #openid
  122. [21:16:30] * johill (i=johannes@crystal.sipsolutions.net) has joined #openid
  123. [21:22:07] <PibbRelay> <polira> sure, i mean its an open standard, are the janrain libraries the best?
  124. [21:22:34] <PibbRelay> <polira> you referring to: http://www.openidenabled.com/php-openid/ ?
  125. [21:22:40] <PibbRelay> <polira> for php implementation
  126. [21:32:58] <fen_> janrain's libraries are working in many implementations. personally, I'd like to see a new OpenID library that makes better use of barx <http://xrisoft.net/> as XRI provides much greater flexibility/security/etc. than "pure" OpenID
  127. [21:39:46] * marclaporte (n=Marc_Lap@tikiwiki/marclaporte) Quit (Read error: 104 (Connection reset by peer))
  128. [21:40:43] <PibbRelay> <cygnus> We (JanRain) have implemented OpenID in Python, Java, Perl, .NET (Boo), PHP, and Ruby. Nowadays, we still actively maintain those in Ruby, PHP, and Python, and one should look to Sxip for Java. I'm not sure about perl or .NET, but I understand there are some things floating around.
  129. [21:41:38] <PibbRelay> <cygnus> speaking strictly of PHP, Python, and Ruby, our implementations are the most heavily tested and documented, and work on a wide variety of platforms (which is saying a lot for PHP, trust me). They enjoy fairly wide usage, too, from what we've gathered, at least.
  130. [21:42:33] <PibbRelay> <cygnus> All three implementations have seen many months (years, in the case of Python) by several engineers.
  131. [21:42:38] <claudio> btw, what is that fuzz about the "openid" support on PHP 5.3?
  132. [21:42:44] <PibbRelay> <cygnus> months of labor, that is.
  133. [21:42:48] <claudio> I thought they included janrain lib in the core
  134. [21:42:57] <PibbRelay> <cygnus> Nope.
  135. [21:43:09] <PibbRelay> <cygnus> Someone has been working on a PHP5-only implementation.
  136. [21:43:20] <PibbRelay> <cygnus> Ostensibly for inclusion in PEAR.
  137. [21:43:31] <claudio> ah ok... PEAR
  138. [21:43:43] <PibbRelay> <cygnus> I've read that they aim to utilize DH functionality in OpenSSL to aid in the math in the library.
  139. [21:44:11] <claudio> ah yeah yeah, now I recall...
  140. [21:45:26] * marclaporte (n=Marc_Lap@tikiwiki/marclaporte) has joined #openid
  141. [21:54:22] * digitalspaghetti (n=digitals@drupal.org/user/88490/view) has joined #openid
  142. [21:58:07] * rebel_leader (n=Horst@dtmd-4db5c329.pool.einsundeins.de) has joined #openid
  143. [22:04:57] <GabeW> fen_: I am just stopping by
  144. [22:05:14] <GabeW> hopefully someone here can help with the openid auth on iiw.identitycommons.net
  145. [22:05:23] <GabeW> er
  146. [22:05:27] <GabeW> iiw.idcommons.net
  147. [22:07:08] <fen_> GabeW, thanks - just got an answer from Jonathan Daugherty http://lists.openidenabled.com/pipermail/dev/2007-November/000912.html
  148. [22:07:33] <fen_> I'm going to be afk for the next couple hours, so I'll see if I can understand what he's suggesting later tonight ;-)
  149. [22:08:21] <GabeW> coolness
  150. [22:08:23] <GabeW> thx
  151. [22:14:17] <PibbRelay> <cygnus> that'd be me.
  152. [22:14:18] <PibbRelay> <cygnus> :)
  153. [22:16:50] <fen_> so Jonathan - the mediawiki openid lib says "Patches for YADIS support and FileStore storage by Jonathan Daugherty"
  154. [22:17:17] <fen_> but it's not compatible with janrain's openid 2.0.0-rc5?
  155. [22:19:13] <PibbRelay> <cygnus> those patches were written for the 1.x.x series of the PHP OpenID library. they should still work, possibly with minimal changes.
  156. [22:19:35] <PibbRelay> <cygnus> but I didn't write (and don't maintain) the plugin itself; that's evanpro's job.
  157. [22:19:55] <PibbRelay> <cygnus> but the plugin itself probably won't need to change much. at least one change would be the one I mentioned, i.e., the call to $consumer->complete($query) which should be $consumer->complete($return_to)
  158. [22:20:08] <PibbRelay> <cygnus> I can't remember why $query was passed, and it probably shouldn't be.
  159. [22:20:12] * idnar (i=mithrand@unaffiliated/idnar) Quit (Nick collision from services.)
  160. [22:20:14] * idnar_ (i=mithrand@unaffiliated/idnar) has joined #openid
  161. [22:20:45] <PibbRelay> <cygnus> in fact, I'm going to patch the library to complain more usefully when someone passes an array for $return_to; lots of people are going to be upgrading and running into that.
  162. [22:33:27] * idnar_ is now known as idnar
  163. [22:38:11] * mmealling (n=mmeallin@c-69-180-6-105.hsd1.ga.comcast.net) Quit ()
  164. [22:56:00] * digitalspaghetti (n=digitals@drupal.org/user/88490/view) Quit ()
  165. [23:02:04] * shigeta (n=shigeta@79.125.111.219.dy.bbexcite.jp) Quit ()
  166. [23:14:40] * claudio is now known as claudio\out
  167. [23:14:53] * peace-keeper (n=peace-ke@chello084114169104.2.15.vie.surfer.at) Quit (Read error: 110 (Connection timed out))
  168. [23:26:16] * pvandewyngaerde (n=pvandewy@79.87-64-87.adsl-dyn.isp.belgacom.be) has joined #openid
  169. [23:26:23] * marclaport1 (n=Marc_Lap@bas3-montreal02-1096689404.dsl.bell.ca) has joined #openid
  170. [23:45:28] * marclaporte (n=Marc_Lap@tikiwiki/marclaporte) Quit (Read error: 110 (Connection timed out))

These logs were automatically created by OpenIDlogbot on chat.freenode.net using a modified version of the Java IRC LogBot.