IRC Log for #openid on 2008-01-25

• Index
• Next: 2008-01-26
• Previous: 2008-01-24

Timestamps are in UTC.

1. [00:16:17] * Roebot (n=Roebot@wsip-68-15-8-102.sd.sd.cox.net) Quit (Read error: 110 (Connection timed out))
2. [00:46:59] * shigeta (n=shigeta@124.32.114.226) has joined #openid
3. [01:04:21] * yonkeltron (n=yonkeltr@c-71-230-172-208.hsd1.pa.comcast.net) has left #openid
4. [02:04:14] * rorek (n=rorek@c-71-236-228-127.hsd1.or.comcast.net) has joined #openid
5. [02:05:26] * PibbRelay (n=supybot@nat/janrain/x-8293bece989d4785) has joined #openid
6. [02:10:31] * PibbRelay (n=supybot@nat/janrain/x-8293bece989d4785) Quit (Read error: 104 (Connection reset by peer))
7. [02:15:47] * PibbRelay (n=supybot@nat/janrain/x-90e6da485cdbf87a) has joined #openid
8. [02:19:13] * PibbRelay (n=supybot@nat/janrain/x-90e6da485cdbf87a) Quit (Read error: 104 (Connection reset by peer))
9. [02:27:35] * PibbRelay (n=supybot@nat/janrain/x-96f53572ba4f3d14) has joined #openid
10. [02:29:46] * stub (n=stub@ppp-58-8-8-18.revip2.asianet.co.th) has joined #openid
11. [02:31:02] * PibbRelay (n=supybot@nat/janrain/x-96f53572ba4f3d14) Quit (Connection reset by peer)
12. [02:37:20] * PibbRelay (n=supybot@nat/janrain/x-5b3662b267f58642) has joined #openid
13. [02:43:36] * PibbRelay (n=supybot@nat/janrain/x-5b3662b267f58642) Quit (Read error: 104 (Connection reset by peer))
14. [02:50:12] * PibbRelay (n=supybot@nat/janrain/x-9dcb8d37e99cf777) has joined #openid
15. [02:52:57] * PibbRelay (n=supybot@nat/janrain/x-9dcb8d37e99cf777) Quit (Connection reset by peer)
16. [03:08:46] * PibbRelay (n=supybot@nat/janrain/x-6f12d36668427c3d) has joined #openid
17. [03:11:12] * tjohns (n=tjohns@cpe-76-170-58-80.socal.res.rr.com) has joined #openid
18. [03:41:31] * SignpostMarv (n=Signpost@82-71-31-169.dsl.in-addr.zen.co.uk) has joined #openid
19. [04:02:46] * SignpostMarv (n=Signpost@82-71-31-169.dsl.in-addr.zen.co.uk) Quit (Read error: 104 (Connection reset by peer))
20. [04:24:21] * SignpostMarv (n=Signpost@82-71-31-169.dsl.in-addr.zen.co.uk) has joined #openid
21. [04:32:18] * Roebot (n=Roebot@ip68-107-88-95.sd.sd.cox.net) has joined #openid
22. [05:01:45] * Roebot (n=Roebot@ip68-107-88-95.sd.sd.cox.net) Quit (Read error: 104 (Connection reset by peer))
23. [05:01:57] * nateritter (n=nateritt@cpe-76-88-34-41.san.res.rr.com) has joined #openid
24. [05:02:40] <nateritter> ok I can't find crap on this error: "Server denied check_authentication"
25. [05:02:58] <nateritter> I could use any help, please
26. [05:12:50] <tjohns> Are you trying to setup an OP or an RP?
27. [05:14:23] <nateritter> sorry, not familiar with the acronym
28. [05:14:51] <tjohns> OP = OpenID Provider
29. [05:14:51] <tjohns> RP = Relying Party
30. [05:15:16] <tjohns> An OP is an OpenID server, whereas an RP is a service that users can log into via OpenID
31. [05:15:22] <nateritter> RP then.
32. [05:15:48] <nateritter> I'm using Yadis inside of CakePHP, if that helps at all.
33. [05:16:02] <tjohns> Is it just happening for one particular OpenID, or all of them?
34. [05:16:46] <nateritter> hmm. not sure.. i only use myopenid.com as my provider.
35. [05:16:51] <nateritter> I could sign up and try another.
36. [05:17:22] <tjohns> Well, its worth a try just in case, but myopenid.com is pretty good, so I doubt they're the problem
37. [05:17:33] <nateritter> yea, that's what i thought.
38. [05:18:07] <tjohns> I've never used CakePHP, so I'm shooting blind here...
39. [05:18:34] <tjohns> It uses the PHP OpenID library from openidenabled.com, correct?
40. [05:18:40] <nateritter> sure, i've seen this error with other languages though, so it seems like just a response from the provider
41. [05:19:14] <nateritter> yea, i believe so.
42. [05:19:20] <nateritter> http://cakebaker.42dh.com/2007/01/11/cakephp-and-openid/ is where i picked it up from
43. [05:19:30] <nateritter> the strikethrough line seems to indicate that
44. [05:19:37] <tjohns> Ah, okay
45. [05:19:47] <tjohns> Just a sec, let me take a look at it
46. [05:21:35] <nateritter> weird, just tried a claimID.com one and got a completely different error... I keep having issues with the Yadis ParanoidHTTPFetcher and keep squashing bugs there, but I can't imagine other people have this much trouble installing it.
47. [05:22:15] <tjohns> Ya, it's normally pretty straightforward to install.
48. [05:22:37] <tjohns> Hm, well, there's not too much to go on here
49. [05:22:45] <tjohns> Here's an idea...
50. [05:23:12] <tjohns> Go to openidenabled.com and download v1.2.3 of the PHP OpenID library. It should be a drop in replacement
51. [05:23:29] <tjohns> Just replace Vendor/Auth and Vendor/Services with what's in that download
52. [05:23:35] <nateritter> ok
53. [05:23:37] <tjohns> Then once you've done that...
54. [05:24:29] <tjohns> In the download, copy examples/detect.php somewhere on your webserver
55. [05:25:56] <nateritter> ok, trying that.. btw, thanks for your help
56. [05:25:58] <tjohns> If you need, add a line like this to the top of detect.php so that it can find your Vendor folder from the CakePHP component:
57. [05:25:58] <tjohns> ini_set("include_path", "/path/to/your/vendor/folder:$PATH");
58. [05:26:23] <tjohns> Once you've done that, go ahead and load detect.php in a web browser.
59. [05:26:43] <tjohns> That file will take a look and see if anything important is missing from your server that would cause problems.
60. [05:28:05] <nateritter> ok
61. [05:28:16] <tjohns> Err, excuse me. It should be:
62. [05:28:16] <tjohns> ini_set("include_path", "/path/to/your/vendor/folder" . PATH_SEPARATOR . ini_get("include_path"));
63. [05:28:40] <tjohns> [I've been doing a bit too much work with shell scripts lately. :)]
64. [05:31:03] <nateritter> ok so it has a few recommendations like Math support and randomness source. In the cakephp config for this script, I have the option (and do use it) to work around those two issues (see his documentation)
65. [05:31:19] <nateritter> otherwise it seems fine
66. [05:33:19] <tjohns> Ya, neither of those should be a big problem...
67. [05:33:45] <nateritter> so theoretically it's working right then
68. [05:33:53] <tjohns> In theory.
69. [05:34:28] <tjohns> If you want to be sure, there's an example consumer in examples/consumers. Same drill as before, except put the ini_set stuff in examples/consumer/common.php
70. [05:34:55] <tjohns> If that works, then it's likely a problem inside the CakePHP component
71. [05:35:08] <nateritter> k
72. [05:35:22] * _keturn (n=acapnoti@pdpc/supporter/sustaining/keturn) Quit (Read error: 110 (Connection timed out))
73. [05:35:22] * jrbot (n=supybot@c-71-236-228-127.hsd1.or.comcast.net) Quit (Read error: 110 (Connection timed out))
74. [05:35:56] * rorek (n=rorek@c-71-236-228-127.hsd1.or.comcast.net) Quit (Read error: 110 (Connection timed out))
75. [05:47:27] <nateritter> hmm.. now i'm not getting any errors except definition problems...
76. [05:47:36] <nateritter> it's strange... trying to figure this otu.
77. [05:47:37] <nateritter> out
78. [05:53:15] <nateritter> "No session state found" is my new error. whee
79. [05:57:37] * Ikil (n=not@CPE0002b34fdfb9-CM000f9fac975c.cpe.net.cable.rogers.com) has joined #openid
80. [05:58:10] <Ikil> hi erbody
81. [05:58:38] <tjohns> Hm, maybe there's a problem with the way your copy of PHP is storing sessions?
82. [05:58:56] <nateritter> that would be strange
83. [05:59:21] <tjohns> Ya, it would
84. [06:02:45] <tjohns> Well, if you can't figure it out, definitely send a message to dev@lists.openidenabled.com
85. [06:02:59] <nateritter> Found it!
86. [06:03:15] <tjohns> What was it?
87. [06:03:22] <nateritter> The session problem had something to do with the fact I was in debug mode 2 in cakephp. I set it to 0 and everything worked smoothly.
88. [06:03:27] <nateritter> wow, that was stupid
89. [06:03:42] <nateritter> but you helped me in a HUGE way with that first error
90. [06:03:52] <nateritter> the updated libraries were helpful.
91. [06:04:03] <nateritter> I also had to define a few things in very particular locations
92. [06:04:06] <tjohns> Glad I could help :)
93. [06:05:12] <nateritter> ie, setting define('Auth_OpenID_RAND_SOURCE', null); BEFORE any inclusions inside of Consumer.php was key
94. [06:05:29] <nateritter> and setting define('Auth_OpenID_NO_MATH_SUPPORT', true); AFTER the inclusions.
95. [06:05:44] <nateritter> not sure if the latter was necessary to be after the inclusions, but hey, it works.
96. [06:13:10] <Ikil> hey guys, have a Q about OpenID's specification
97. [06:13:24] <Ikil> 3.3.3 states: Consumer Site Fetches the Identifier URL
98. [06:13:55] <Ikil> oh I see, nm was being a doorknob
99. [06:14:35] <shrapnel> wish there was a detect.rb for rails
100. [06:21:44] * quirim (i=potato@dsl-242-20-120.telkomadsl.co.za) Quit (Read error: 110 (Connection timed out))
101. [06:30:41] * rorek (n=rorek@c-71-236-228-127.hsd1.or.comcast.net) has joined #openid
102. [06:31:06] * _keturn (n=acapnoti@pdpc/supporter/sustaining/keturn) has joined #openid
103. [06:32:57] * jrbot (n=supybot@c-71-236-228-127.hsd1.or.comcast.net) has joined #openid
104. [06:37:08] <Ikil> any of you using the JanRain PHP classes for OpenID?
105. [06:53:58] * tjohns (n=tjohns@cpe-76-170-58-80.socal.res.rr.com) Quit ()
106. [07:11:28] * SignpostMarv (n=Signpost@82-71-31-169.dsl.in-addr.zen.co.uk) Quit ("Leaving")
107. [07:18:15] * polyonymous (n=hacker@pD953818C.dip0.t-ipconnect.de) Quit (Read error: 101 (Network is unreachable))
108. [07:21:55] * polyonymous (n=hacker@pD9538341.dip0.t-ipconnect.de) has joined #openid
109. [07:23:40] * shrapnel (n=shrapnel@pool-64-223-240-71.port.east.verizon.net) Quit ("Leaving")
110. [07:25:30] * nateritter (n=nateritt@cpe-76-88-34-41.san.res.rr.com) Quit ()
111. [07:46:10] * Bill_Gates (i=w@195-133.tr.cgocable.ca) has joined #openid
112. [07:46:31] <Bill_Gates> is this easy to install openid with apache, winxp, php5, mysql ?
113. [07:49:40] * priidu (n=aa@221.220.73.34) has joined #openid
114. [07:51:17] * priidu (n=aa@221.220.73.34) Quit (Read error: 104 (Connection reset by peer))
115. [07:52:16] * priidu_ (n=aa@221.220.73.34) has joined #openid
116. [08:50:34] <Ikil> seen this before?
117. [08:50:34] <Ikil> Define Auth_OpenID_RAND_SOURCE as null
118. [08:50:38] <Ikil> ...
119. [08:50:45] <Ikil> Fatal error: Define Auth_OpenID_RAND_SOURCE as null to continue with an insecure random number generator. in D:\php\PEAR\Auth\OpenID\CryptUtil.php on line 52
120. [08:52:46] <Ikil> related to lack of /dev/urandom on Win?
121. [08:53:01] <Bill_Gates> I have a site: www.userdream.org
122. [08:53:13] <Bill_Gates> I would like to enable openID, someone is able to do it for me ?
123. [08:57:10] * potato (i=potato@dsl-242-13-92.telkomadsl.co.za) has joined #openid
124. [08:57:13] * potato (i=potato@dsl-242-13-92.telkomadsl.co.za) Quit (Client Quit)
125. [08:57:29] * potato (i=potato@dsl-242-13-92.telkomadsl.co.za) has joined #openid
126. [08:57:45] * potato is now known as quirim
127. [08:58:43] <Ikil> you may want to post to the user lists Bill
128. [09:06:39] <Bill_Gates> hey
129. [09:06:42] <Bill_Gates> what's the OpenID library
130. [09:09:02] <Bill_Gates> I get this error:
131. [09:09:03] <Bill_Gates> Cannot find the OpenID library. It must be in your PHP include path. Your PHP include path is currently:
132. [09:10:47] <Bill_Gates> what should I put
133. [09:11:56] <Makenshi> Bill_Gates: Check the documentation of whatever it is you are installing. There are several OpenID libraries.
134. [09:13:52] * Ikil (n=not@CPE0002b34fdfb9-CM000f9fac975c.cpe.net.cable.rogers.com) Quit ()
135. [09:16:13] <Bill_Gates> PHP OpenID is one of them?
136. [09:18:40] <Bill_Gates> is this open_basedir = "/tmp:..." or open_basedir = "/tmp:"
137. [09:21:04] <Makenshi> You should put the path that you installed the library in
138. [09:22:12] <Bill_Gates> I installed php openID on /php/pear
139. [09:22:51] <Bill_Gates> you mean the include path ?
140. [09:24:27] * priidu_ (n=aa@221.220.73.34) Quit (Remote closed the connection)
141. [09:36:59] <Makenshi> oh, never mind me
142. [09:37:09] <Makenshi> bad information
143. [10:22:22] * hillsy (i=shaunh@npfit2.dh.bytemark.co.uk) has joined #openid
144. [10:27:21] * stub (n=stub@canonical/launchpad/stub) Quit (Read error: 113 (No route to host))
145. [11:44:54] * shigeta (n=shigeta@124.32.114.226) Quit ("Leaving...")
146. [13:16:07] * dbounds (n=user@c-76-18-200-33.hsd1.fl.comcast.net) Quit (Read error: 110 (Connection timed out))
147. [14:02:28] * shigeta (n=shigeta@70.36.100.220.dy.bbexcite.jp) has joined #openid
148. [14:41:06] * ichigo (n=ichigo@chello062178051055.18.11.vie.surfer.at) Quit (Read error: 104 (Connection reset by peer))
149. [15:18:54] * priidu_ (n=aa@220.205.62.173) has joined #openid
150. [16:02:21] * cr4ft (n=alex@brenta.dit.unitn.it) has joined #openid
151. [16:06:53] * cr4ft (n=alex@brenta.dit.unitn.it) Quit ("Lost terminal")
152. [16:48:45] * Didac (n=Nightmar@79.145.3.52) has joined #openID
153. [16:50:09] * Mitsurugi (n=Nightmar@86.Red-83-37-226.dynamicIP.rima-tde.net) Quit (Read error: 110 (Connection timed out))
154. [17:07:46] * michelp (n=michelp@69-30-72-119.dq1sf.easystreet.com) Quit (Read error: 104 (Connection reset by peer))
155. [17:11:53] * michelp (n=michelp@69-30-72-119.dq1sf.easystreet.com) has joined #openid
156. [17:38:00] * danbri (n=danbri@77-101-209-30.cable.ubr04.azte.blueyonder.co.uk) has joined #openid
157. [17:55:49] * pvandewyngaerde (n=pvandewy@103.125-201-80.adsl-dyn.isp.belgacom.be) has joined #openid
158. [17:58:19] * cygnus (n=cygnus@c-71-236-228-127.hsd1.or.comcast.net) has joined #openid
159. [17:58:52] <cygnus> Oh well. nateritter is gone now. But the 1.x.x versions of the openidenabled.com PHP library are not the latest ones. :/
160. [17:59:35] * pvandewyngaerde (n=pvandewy@103.125-201-80.adsl-dyn.isp.belgacom.be) Quit (Remote closed the connection)
161. [18:07:54] * imarcusthis (n=marcus@193.214.115.201) has joined #openid
162. [18:11:01] * forsaken (n=eric@192.65.245.91) has joined #openid
163. [18:29:03] * priidu_ (n=aa@220.205.62.173) Quit (Read error: 113 (No route to host))
164. [18:41:45] * forsaken (n=eric@192.65.245.91) Quit (Connection reset by peer)
165. [18:49:30] * tjohns (n=tjohns@cpe-76-170-58-80.socal.res.rr.com) has joined #openid
166. [19:06:45] * Roebot (n=Roebot@wsip-68-15-8-102.sd.sd.cox.net) has joined #openid
167. [19:09:34] * SamRose (n=chatzill@c-71-197-25-225.hsd1.mi.comcast.net) has joined #openid
168. [19:12:04] * cygnus (n=cygnus@c-71-236-228-127.hsd1.or.comcast.net) has left #openid
169. [19:12:35] * SamRose (n=chatzill@c-71-197-25-225.hsd1.mi.comcast.net) has left #openid
170. [19:43:29] * Mark17 (n=Mark@vnc.streamservice.nl) Quit (Remote closed the connection)
171. [19:44:43] * forsaken (n=eric@192.65.245.91) has joined #openid
172. [19:44:49] * rebel_leader (n=Horst@dtmd-4db22516.pool.einsundeins.de) has joined #openid
173. [19:54:17] * rebel_leader (n=Horst@dtmd-4db22516.pool.einsundeins.de) Quit ("Verlassend")
174. [20:11:27] * forsaken (n=eric@192.65.245.91) Quit (SendQ exceeded)
175. [20:11:34] * MrTopf (n=cs@pD9EBF8C8.dip.t-dialin.net) has joined #openid
176. [20:32:51] * tjohns (n=tjohns@cpe-76-170-58-80.socal.res.rr.com) Quit ()
177. [20:40:11] * SignpostMarv (n=Signpost@82-71-31-169.dsl.in-addr.zen.co.uk) has joined #openid
178. [20:43:36] * MrTopf (n=cs@pD9EBF8C8.dip.t-dialin.net) Quit ()
179. [20:45:02] * Cody`macbook (n=Cody@74-129-166-74.dhcp.insightbb.com) Quit ("Leaving")
180. [20:55:49] * hillsy (i=shaunh@npfit2.dh.bytemark.co.uk) Quit (Remote closed the connection)
181. [21:11:25] * brett (n=brett@meat.kavi.com) has joined #openid
182. [21:11:31] * brett (n=brett@meat.kavi.com) has left #openid
183. [21:11:38] * brett (n=brett@meat.kavi.com) has joined #openid
184. [21:20:28] <brett> Is there a starting point or framework somewhere for federating openid logins?
185. [21:33:24] * shigeta (n=shigeta@70.36.100.220.dy.bbexcite.jp) Quit ("Leaving...")
186. [21:38:35] <SignpostMarv> define "federating"
187. [21:41:04] * Makenshi wonders if anyone has registered an X.500 schema containing an attribute for openid url
188. [22:24:24] * danbri (n=danbri@unaffiliated/danbri) Quit ()
189. [22:31:25] <brett> SignpostMarv: in essence, if I login on one site, I'm automatically logged in on any other sites that share that identity
190. [22:32:01] <SignpostMarv> I believe someone came in the channel a while ago asking about that
191. [22:32:12] <SignpostMarv> made rather of an ass of themselves too :-P
192. [22:32:51] <SignpostMarv> I don't believe that OpenID currently supports federated logins
193. [22:33:21] <SignpostMarv> although you could possibly just ping the user around a bunch of login portals upon succesful login to one place
194. [22:33:49] <SignpostMarv> the user would need to grant permissions to each end point in the network of sites
195. [22:34:57] <SignpostMarv> one method would be to use the OpenID protocol to create an account within the network, then just ping around using the internal login system instead of OpenID
196. [22:36:32] <brett> SignpostMarv: cool, thanks
197. [22:36:46] <brett> Just wondering if there was work in this direction yet.
198. [22:37:22] <brett> hopefully I didn't make an ass of myself :)
199. [22:39:57] <SignpostMarv> nah,
200. [22:40:05] <SignpostMarv> my memory is a little hazy,
201. [22:40:20] <SignpostMarv> but the guy I'm referring to had a rather asinine sense of entitlement,
202. [22:40:35] <SignpostMarv> and was rather insulting to the developers
203. [22:40:50] <brett> aka a troll?
204. [22:41:27] <PibbRelay> <mpg4> you could do what (I believe) jyte does -- if the user isn't signed in, but you know they've signed in before, try a checkid_immediate request with that id
205. [22:42:02] <brett> I found that 'LID' thing, but it doesn't seem to have caught on yet.
206. [22:42:03] <_keturn> Is there anything about OpenID that would require a federation framework to be specific to it? Couldn't you just pass the OpenID identifier through any such existing framework?
207. [22:42:30] <PibbRelay> <mpg4> it relies on each site to store the non-signed-in identity somewhere -- but you'd need that anyway.
208. [22:42:41] <brett> _keturn: nah there's not
209. [22:43:08] <brett> but it would be nice to have a common framework
210. [22:43:08] <brett> so disperate sites could work together
211. [22:43:58] <brett> seems if there was some standard protocol for providers to talk to consumers, it wouldn't be that hard
212. [22:44:49] <brett> mpg4: yeah, each site could store the user's id in a cookie that never expires
213. [22:45:05] <brett> but what if you're using somebody else's computer?
214. [22:47:12] <_keturn> you could implement it by having the first site have something that behaved like an OP endpoint, and would send id_res responses to its federated sites.
215. [22:48:34] <_keturn> it'd definately be a non-standard use of the protocol, as those sites would have to have their verification logic overridden to always trust that site to make those assertions, even though it's making assertions about identifiers that are outside its authority.
216. [22:52:45] <brett> Hrm yeah
217. [22:53:22] <brett> Unless I'm missing something I don't see how it's any less secure
218. [22:54:09] <brett> I pass my identifier to an external site, it passes me back an url to get the cookie or whatever from that site
219. [22:54:27] <brett> Maybe I'll hack up a prototype this weekend.
220. [23:37:21] * shigeta (n=shigeta@70.36.100.220.dy.bbexcite.jp) has joined #openid
221. [23:55:34] * SignpostMarv (n=Signpost@82-71-31-169.dsl.in-addr.zen.co.uk) Quit ("Leaving")
222. [23:57:18] * dude_ (n=chatzill@d118-75-31-24.try.wideopenwest.com) has joined #openid
223. [23:57:25] <dude_> hello
224. [23:58:04] * Cody`macbook (n=Cody@74-129-166-74.dhcp.insightbb.com) has joined #openid
225. [23:59:16] <dude_> Looking for help using the php openid library with yahoo's service

These logs were automatically created by OpenIDlogbot on chat.freenode.net using a modified version of the Java IRC LogBot.