IRC Log for #openid on 2009-09-05

Timestamps are in UTC.

  1. [00:00:12] * Ideal (n=Ideal@2002:50f9:5cb0:0:0:0:0:1) has joined #openid
  2. [00:09:46] * Kaliya (n=Adium@75-101-29-7.dsl.static.sonic.net) Quit ("Leaving.")
  3. [00:10:54] * Kaliya (n=Adium@75-101-29-7.dsl.static.sonic.net) has joined #openid
  4. [00:11:55] * Kaliya1 (n=Adium@75-101-29-7.dsl.static.sonic.net) has joined #openid
  5. [00:12:04] * Kaliya (n=Adium@75-101-29-7.dsl.static.sonic.net) Quit (Read error: 104 (Connection reset by peer))
  6. [00:16:48] * Kaliya (n=Adium@75-101-29-7.dsl.static.sonic.net) has joined #openid
  7. [00:17:07] * Kaliya1 (n=Adium@75-101-29-7.dsl.static.sonic.net) Quit (Read error: 54 (Connection reset by peer))
  8. [00:22:41] * Kaliya (n=Adium@75-101-29-7.dsl.static.sonic.net) Quit ("Leaving.")
  9. [00:23:44] * Kaliya (n=Adium@75-101-29-7.dsl.static.sonic.net) has joined #openid
  10. [00:24:26] * Kaliya (n=Adium@75-101-29-7.dsl.static.sonic.net) Quit (Read error: 131 (Connection reset by peer))
  11. [00:24:34] * Kaliya (n=Adium@75-101-29-7.dsl.static.sonic.net) has joined #openid
  12. [00:52:21] * Kaliya (n=Adium@75-101-29-7.dsl.static.sonic.net) Quit ("Leaving.")
  13. [01:14:32] * tbbrown_ (n=tom@209.33.85.251) has joined #openid
  14. [01:15:21] * tbbrown (n=tom@209.33.85.251) Quit (Read error: 104 (Connection reset by peer))
  15. [02:10:20] * ronny (i=ronny@pida/ronny) Quit (Read error: 60 (Operation timed out))
  16. [02:10:26] * xpo (n=xpo@bearstech/xpo) has joined #openid
  17. [02:15:09] * xpo (n=xpo@bearstech/xpo) Quit (Client Quit)
  18. [02:15:28] * ronny (i=ronny@pida/ronny) has joined #openid
  19. [02:31:47] * shigeta (n=shigeta@50.29.100.220.dy.bbexcite.jp) has joined #openid
  20. [03:07:21] * shigeta (n=shigeta@50.29.100.220.dy.bbexcite.jp) Quit ("Leaving...")
  21. [03:41:23] * metadaddy (n=metadadd@c-24-6-252-144.hsd1.ca.comcast.net) Quit ()
  22. [05:07:00] * metadaddy (n=metadadd@c-24-6-252-144.hsd1.ca.comcast.net) has joined #openid
  23. [05:14:52] * metadaddy (n=metadadd@c-24-6-252-144.hsd1.ca.comcast.net) Quit ()
  24. [05:15:57] * shigeta (n=shigeta@50.29.100.220.dy.bbexcite.jp) has joined #openid
  25. [05:18:19] * shigeta (n=shigeta@50.29.100.220.dy.bbexcite.jp) Quit (Client Quit)
  26. [05:35:41] * shigeta (n=shigeta@50.29.100.220.dy.bbexcite.jp) has joined #openid
  27. [05:55:22] * shigeta (n=shigeta@50.29.100.220.dy.bbexcite.jp) Quit ("Leaving...")
  28. [06:27:20] * tbbrown (n=tom@209.33.85.251) has joined #openid
  29. [06:37:29] * Kaliya (n=Adium@adsl-68-125-128-183.dsl.pltn13.pacbell.net) has joined #openid
  30. [06:42:04] * tbbrown_ (n=tom@209.33.85.251) Quit (Read error: 110 (Connection timed out))
  31. [06:43:13] * shigeta (n=shigeta@50.29.100.220.dy.bbexcite.jp) has joined #openid
  32. [06:46:22] * shigeta (n=shigeta@50.29.100.220.dy.bbexcite.jp) Quit (Client Quit)
  33. [06:48:04] * flaccid (n=flaccid@unaffiliated/flaccid) has joined #openid
  34. [06:52:56] * Kaliya (n=Adium@adsl-68-125-128-183.dsl.pltn13.pacbell.net) has left #openid
  35. [07:10:44] * tbbrown_ (n=tom@209.33.85.251) has joined #openid
  36. [07:24:21] * tbbrown (n=tom@209.33.85.251) Quit (Read error: 110 (Connection timed out))
  37. [07:27:13] * niekie_ is now known as niekie
  38. [07:32:46] * tbbrown (n=tom@209.33.85.251) has joined #openid
  39. [07:44:11] * tbbrown_ (n=tom@209.33.85.251) Quit (Read error: 110 (Connection timed out))
  40. [07:45:51] * xpo (n=xpo@bearstech/xpo) has joined #openid
  41. [07:47:44] * jochen (n=jochen@91.182.161.154) has joined #openid
  42. [07:54:50] * tbbrown_ (n=tom@doc-209-33-85-251.kingwood.tx.cebridge.net) has joined #openid
  43. [08:07:45] * tbbrown (n=tom@209.33.85.251) Quit (Read error: 110 (Connection timed out))
  44. [08:27:11] * hillsy (n=shhi2@npfit3.dh.bytemark.co.uk) has joined #openid
  45. [08:27:31] * hillsy (n=shhi2@npfit3.dh.bytemark.co.uk) Quit (Remote closed the connection)
  46. [09:21:44] * SunWuKung (n=tenshiku@S0106000d93cb5211.vc.shawcable.net) has joined #openid
  47. [09:30:51] * dwhittle (n=dwhittle@nat/yahoo/x-fuyczoqxktxkjqgj) has joined #openid
  48. [09:50:56] * ponchopilate (n=markthom@host81-137-232-55.in-addr.btopenworld.com) has joined #openid
  49. [10:09:58] * dwhittle (n=dwhittle@nat/yahoo/x-fuyczoqxktxkjqgj) Quit ("Im gone.")
  50. [10:28:56] * daedeloth (n=daedelot@ip-81-11-174-103.dsl.scarlet.be) has joined #openid
  51. [10:44:05] * jochen (n=jochen@91.182.161.154) Quit (Remote closed the connection)
  52. [10:52:01] * flaccid (n=flaccid@unaffiliated/flaccid) Quit ()
  53. [11:27:49] * MrTopf (n=cs@p5B3D6C57.dip.t-dialin.net) has joined #openid
  54. [13:06:42] * MrTopf (n=cs@p5B3D6C57.dip.t-dialin.net) Quit ()
  55. [14:09:49] * Orango (n=s-e@wikimedia/Orango) has joined #openid
  56. [14:10:49] * daedeloth (n=daedelot@ip-81-11-174-103.dsl.scarlet.be) Quit (Remote closed the connection)
  57. [14:49:43] * xpo (n=xpo@bearstech/xpo) Quit ()
  58. [15:10:09] * Kaliya (n=Adium@adsl-68-125-128-183.dsl.pltn13.pacbell.net) has joined #openid
  59. [15:14:26] * Kaliya (n=Adium@adsl-68-125-128-183.dsl.pltn13.pacbell.net) Quit (Client Quit)
  60. [15:35:26] * flaccid (n=flaccid@64.136.144.227) has joined #openid
  61. [16:11:49] * metadaddy (n=metadadd@c-24-6-252-144.hsd1.ca.comcast.net) has joined #openid
  62. [16:11:55] * metadaddy (n=metadadd@c-24-6-252-144.hsd1.ca.comcast.net) Quit (Excess Flood)
  63. [16:17:44] * daleolds (n=daleolds@c-76-27-115-77.hsd1.ut.comcast.net) has joined #openid
  64. [16:19:01] * daleolds (n=daleolds@c-76-27-115-77.hsd1.ut.comcast.net) has left #openid
  65. [16:53:00] * jochen_ (n=jochen@91.182.161.154) has joined #openid
  66. [17:00:34] * daedeloth (n=daedelot@81.11.174.103) has joined #openid
  67. [17:07:49] * fizk_ (n=yonas@CPE001a706e7734-CM00111ade9e1c.cpe.net.cable.rogers.com) has joined #openid
  68. [17:07:57] <fizk_> hey guys
  69. [17:08:40] <fizk_> does anyone know of a standard way to publish all your online identities in one place?
  70. [17:16:00] <yangman> I'm not aware of something like that existing
  71. [17:17:11] * jochen_ (n=jochen@91.182.161.154) Quit (Remote closed the connection)
  72. [17:25:03] * ponchopilate (n=markthom@host81-137-232-55.in-addr.btopenworld.com) Quit ()
  73. [18:14:49] * tbbrown_ (n=tom@doc-209-33-85-251.kingwood.tx.cebridge.net) Quit ("leaving")
  74. [18:16:35] * SunWuKung (n=tenshiku@S0106000d93cb5211.vc.shawcable.net) Quit ()
  75. [18:28:10] * sanslocust (n=sanslocu@OXFAMMODELS.COM) has joined #openid
  76. [18:28:59] <sanslocust> having an issue with ruby-openid rubygem, am i in the right place?
  77. [18:29:56] <sanslocust> i have my app working with openid as a consumer. i can auth with yahoo for example
  78. [18:30:04] <sanslocust> but google fails
  79. [18:30:31] <sanslocust> gmail.com addresses more specifically
  80. [18:49:02] <flaccid> fizk_: define publish and define online identities
  81. [18:49:31] <flaccid> sanslocust: whats the actual error etc. and please link me to this software
  82. [18:51:33] <sanslocust> flaccid: No usable OpenID services were found for "nick.hildebrant@gmail.com"
  83. [18:51:58] <sanslocust> i actually get the same error on the openid demo page, so i thnk it's not just me
  84. [18:52:47] <sanslocust> here: http://openidenabled.com/ruby-openid/trunk/examples/consumer/
  85. [18:53:22] <sanslocust> => Discovery failed for nick.hildebrant@gmail.com: No usable OpenID services were found for "nick.hildebrant@gmail.com"
  86. [18:59:25] <flaccid> sanslocust: google has not enabled the EAUT or delegation yet in that respect
  87. [18:59:38] <flaccid> you have to use their endpoint uri
  88. [19:02:35] <flaccid> sanslocust: http://help.rightscale.com/cgi-bin/rightscale.cfg/php/admin/launch.php
  89. [19:02:38] <flaccid> oops
  90. [19:02:58] <flaccid> http://code.google.com/apis/accounts/docs/OpenID.html#endpoint
  91. [19:03:42] <sanslocust> great! thanks so much
  92. [19:04:06] <sanslocust> funny i googled this for hours, and google's own docs never come up
  93. [19:05:07] * daedeloth (n=daedelot@81.11.174.103) Quit (Remote closed the connection)
  94. [19:06:38] <sanslocust> so will this hackaround for google be implemented in the lib?
  95. [19:08:09] <flaccid> if you are using ruby-openid then it is
  96. [19:08:43] <flaccid> you just put in https://www.google.com/accounts/o8/id
  97. [19:10:04] <sanslocust> okay, thanks, i will read some more
  98. [19:11:30] <flaccid> so as you can see google didn't really implement it very well
  99. [19:17:55] <sanslocust> yeah, that's clear, think they'll fix it? I assume it's still Beta :)
  100. [19:21:38] <flaccid> who knows; but the big guns are sure failing to do openid properly
  101. [19:22:04] <yangman> they sure are
  102. [19:22:07] * xpo (n=xpo@bearstech/xpo) has joined #openid
  103. [19:22:17] <sanslocust> "extending standards"? Googles taking lessons from MS now?
  104. [19:23:11] <flaccid> its not extending, its forking
  105. [19:23:51] <flaccid> or bad implementation
  106. [19:24:01] <karstensrage> i dont think so
  107. [19:24:05] <karstensrage> i think its by design
  108. [19:24:36] <flaccid> yes and the design is either a fork or a bad implementation or both
  109. [19:25:22] <karstensrage> if i cared about security i wouldnt want to let ever tom, dick and harry IdP in
  110. [19:25:59] <flaccid> whats that got to do with security and local policy/logic + what do you me by IdP in ?
  111. [19:26:16] <karstensrage> huh?
  112. [19:26:25] <flaccid> im asking you..
  113. [19:26:34] <karstensrage> i know, i dont understand your words
  114. [19:26:35] <sanslocust> breaking a standard api and posting public dcumentation for the workaround doesn't increase your security
  115. [19:27:11] <flaccid> karstensrage: well basically i didn't understand your statement so if you could re explain please..
  116. [19:27:21] <karstensrage> anyone can set up an IdP
  117. [19:27:35] <karstensrage> if i were google, i wouldnt want to delegate to "anyone"
  118. [19:28:14] <flaccid> i think you mean an OP
  119. [19:28:18] <karstensrage> so whitelisting and forking make sense to me
  120. [19:28:20] <sanslocust> afaik, they don't allow anyone else as a provider, and their provider is borked
  121. [19:28:59] <flaccid> karstensrage: google wouldn't 'delegate to anyone' it would simple support EAUT and/or delegation of people's identity URL to its own OP - thats not anyone; thats their users only
  122. [19:29:21] <flaccid> sanslocust: they don't have control on who can become a provider or not
  123. [19:33:18] <sanslocust> right, i meant delegate, i don't know the proper terminology
  124. [19:33:38] <sanslocust> but i'm reasonably certain that this breakage does not improve their security
  125. [19:34:08] <flaccid> well pretty much all of the above has nothing to do with security, you are right, it relates more to business policy/logic
  126. [19:36:54] * xpo (n=xpo@bearstech/xpo) Quit ("see yas")
  127. [19:37:37] <fizk_> flaccid: something like .tel domains
  128. [19:37:43] <fizk_> or webfinger
  129. [19:37:56] <sanslocust> flaccid: so this o8/id url. from the rdoc it loooks like i need to set that explicitly on the dicovery manager, only if it's a gmail.com right?
  130. [19:37:56] <fizk_> online identities would be your facebook account, yahoo account, etc
  131. [19:40:14] <flaccid> fizk_: what is a .tel domain and what is webfinger, can you show me? but the question remains, what do you mean by publish? i mean you can do this on a html page..
  132. [19:40:34] <flaccid> sanslocust: discovery manager? this is the url the person points in the openid login
  133. [19:40:56] <fizk_> flaccid: lookup .tel domain and webfinger in wikipedia
  134. [19:41:39] <sanslocust> flaccid: oh, jeesh
  135. [19:42:00] <flaccid> sanslocust: sorry?
  136. [19:42:18] <sanslocust> that's just not what I expected
  137. [19:42:28] <fizk_> by publish, i mean add your online identities to a central place online
  138. [19:42:32] <flaccid> fizk_: webfinger is not in wikipedia and .tel is just another suffix..
  139. [19:42:56] <fizk_> http://code.google.com/p/webfinger/
  140. [19:43:08] <sanslocust> ok, so if i want some consistent behavior in my login box, just replace gmail address with that url before Consumer begin
  141. [19:43:32] <flaccid> fizk_: well i see what it does with dns, but not sure how that relates to openid spec in any way..
  142. [19:43:58] <flaccid> sanslocust: well thats the thing, its not consistent but yes this is the url you use to login to a relying party
  143. [19:44:16] <fizk_> K
  144. [19:44:25] * fizk_ (n=yonas@CPE001a706e7734-CM00111ade9e1c.cpe.net.cable.rogers.com) Quit ("Ex-Chat")
  145. [19:44:35] <sanslocust> flaccid: ok, thanks very much for your help
  146. [19:45:16] <flaccid> np
  147. [20:11:40] * MrTopf (n=cs@p5B3D6C03.dip.t-dialin.net) has joined #openid
  148. [21:38:06] <sanslocust> i've done oidreq.add_extension_arg('sreg', 'required', 'email'), but it's not coming back in the parameters. same for additional optionals.
  149. [21:40:13] <sanslocust> the authentocation is completed, but i am not asked at yahoo or google if it's accepted, so i think it's not in the request
  150. [21:59:30] <flaccid> not comeing back from the RP, sanslocust ?
  151. [22:03:43] <sanslocust> right, i'm on my dev box, so i'm not advertising XRDS, not sure if that's related
  152. [22:04:37] <sanslocust> and actually, how does one handle that? doing dev on my localhost, so it's not possible to answer a request for it
  153. [22:06:15] <flaccid> actually i think i meant coming back from the OP data wise
  154. [22:06:25] <flaccid> the RP requests SReg or AX data from the OP
  155. [22:06:45] <flaccid> where the RP and OP is host wise etc. is irrelevant
  156. [22:07:40] <sanslocust> yeah right, I'm developing the RP right? i'm only using consumer. OP is yahoo or google
  157. [22:08:18] <flaccid> yeah so if the OP doesn't return data on the fields requested etc. then that is their problem
  158. [22:08:32] <flaccid> ie. their business policy or lack of implementation
  159. [22:09:59] <sanslocust> ok
  160. [22:10:53] <flaccid> they should give users the control over that but providers like who you mentioned are not in the business of openid but rather using it for their own agenda..
  161. [22:14:51] <sanslocust> so, openid and who else???
  162. [22:20:33] <flaccid> what do you mean?
  163. [22:22:12] <sanslocust> so, openid is not a provider. what is a provider that doesn't suck?
  164. [22:24:13] <flaccid> openid is a specification and effectively a protocol. if you are after a specialist openid provider, myOpenID is an example of a decent one
  165. [22:50:11] * phphreak (n=phpcip@86.122.8.32) Quit (Connection timed out)
  166. [23:33:14] * xpo (n=xpo@bearstech/xpo) has joined #openid
  167. [23:54:30] * dwhittle (n=dwhittle@nat/yahoo/x-ulkjjuafgdrckxda) has joined #openid

These logs were automatically created by OpenIDlogbot on chat.freenode.net using a modified version of the Java IRC LogBot.