Confusing message while logging in using openid on istylr.com
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Canonical SSO provider |
Fix Released
|
Low
|
Unassigned |
Bug Description
Steps to reproduce:
1. Open http://
2. Click the Open ID link
3. Enter the identity URL (e.g. https:/
4. Click Login
5. You're redirect to a Launchpad page that says: "A site identifying as http://
That message doesn't make much sense.
This is a bug in the canonical open id provider. Wgrant analysed it:
----
The XRDS served by c-i-p is wrong for delegated identities, yet it is
linked from https:/
elements, so XRDS-capable consumers attempt to authenticate to
https:/
https:/
Adding
<openid:Delegate>https:/
to the produced XRDS makes everybody happy again.
----
Changed in canonical-identity-provider: | |
status: | Confirmed → Triaged |
tags: |
added: meta633877 removed: openid ui |
tags: |
added: proj-openit removed: meta633877 |
User, William Grant, wrote:
The XRDS served by c-i-p is wrong for delegated identities, yet it is linked from https:/ /launchpad. net/~USER. It has no openid:Delegate elements, so XRDS-capable consumers attempt to authenticate to https:/ /login. launchpad. net/+openid with the original URL, not https:/ /login. launchpad. net/+id/ SOMETHING.
Adding <openid:Delegate>https:/ /login. launchpad. net/+id/ SOMETHING</openid:Delegate> to the produced XRDS makes everybody happy again.