specifications - How does OpenID delegation work on the Relying Party? Have the specs changed recently? -


Consider this scenario is my own website, that I use as my identifier, but I have a third Use the party's open-end provider (Yahoo in my case), as described, login to the Release Party (RP) websites on such Stackworflow and Sourceform.

It seemed like an intelligent trick:

  • I'm not closing with an open-end provider, because if Yahoo! will no longer offer the service, or its I will start charging for them, or I will not believe them now, I can switch the provider without painting
  • I have the financial, administrative, to install and maintain an open-end provider on my server And there is no security burden

Rsn

How to RP should work? My understanding is that the identifier should provide I , and the provider (Yahoo) should use only for authentication (and not for identification). Is that right? Recently there was some change? Just to be clear, I mean that my identity will not be

and

(this is where my website is "redirected" form of authentication

Side note

I also ask this question because the things are broken now (they were exactly fine a few months back). I try to log in on stackworflow, so I write mysite.com url, I get it right here on the website "redirection "I am the one to whom I log in, it asks me if I want to" continue on the Stackflow ", I say Yes, this" Redirect "and at the StakeVerf Flow site, I think" It's an OpenID Which we have not seen before ", it shows my Yahoo ID and I'm actually locked!

Is this a bug, or am I missing something?

EDIT: My answer in the answer given below is correct with Andrew Arnet The recommended way to do (i.e. switching to a different provider) But I still have an interest in some details: What has changed about the delegation in OpenID 1.1 to 2.0? Why is it chosen to give the "brake" delegation to the provider in glasses? The more you understand, the better, the more acceptable your answer is.

I believe Andrew's answer is quite right. The only thing I can add is a little bit about how the v2.0 imagination was eliminated, allowing the provider to not work with the delegation. I think there was a server-guided identity selection from the motivator, in which the user provides "yahoo.com" (or clicks on the Yahoo button), and then returns the ID selected by the server to the ID_res response. It also allows the server to do things like provide an option to select an ID (Yahoo does) or send a unique identifier to each RP (as Google does).

It also means that all required information is in a id_res response, which means that to process RP response to the state, your checkid No need to store from the request. In fact, a provider can send a id_res response to RP, RP can start with no checkid request.

A v1. The delegation was getting in the evening when the X provider was completely unaware. This design prevented a provider from choosing not to support the delegation, but also created for some UI problems; It would be asking if you wanted to provide the "joe.coolprovider.com" ID when you were actually using your "joesmith.org" id.

Therefore, the delegation is still possible, so it was hoped that the users who are actually going to be dwarf based on the number of users from the delegation (who face it, these large sites) are those providers You can choose who they need. (In other words, exit the market.)


Comments

Post a Comment

Popular posts from this blog

python - Overriding the save method in Django ModelForm -

I'm having trouble overriding a ModelForm save method. I get this error I'm: Exception type: TypeErier Exception Value: Save () found an unexpected keyword argument 'committed' My intentions include a form 3 fields Submit several values ​​for, then create an object for each combination of those areas, and to save each object file models.py class collarsult type (models.Model): id = model. AutoField (db_column = 'icontact_result_code_type_id', primary_key = true) callResult = models.ForeignKey ( 'CallResult', db_column = 'icontact_result_code_id') campaign = models.ForeignKey ( 'campaign', db_column = 'icampaign_id') CALLTYPE = models.ForeignKey ( 'CALLTYPE', db_column = 'icall_type_id') agent = models.BooleanField (db_column = 'bagent', default = true) teamLeader = models.BooleanField (db_column = 'bTeamLeader', default = true) active = models.BooleanField (db_column = Django.form...
Read more

html - CSS autoheight, but fit content to height of div -

I have a div in which there are three children- div in the left and middle div: float: left while true: float: true because it is my layout Actually will spoil, I've used ClearFix Hack: .cf {zoom: 1; }. Cf: First,. Cf: {content: ""; Display: Table; }. Cf: After {clear: both; } It still works, but I want to be the right div an indicator. So it should fill 100% of the parent unit of height. How can I complete this? PS is the full code: & Lt; / Div & gt; & Lt; Div class = "mobile_content" & gt; & Lt; H5 & gt; {{Data.titel}} & lt; / H5> & Lt; Table & gt; & Lt; TR & gt; & Lt; Th & gt; Komponist: & lt; / Th & gt; & Lt; TD & gt; {{Data.komponist}} & lt; / TD & gt; & Lt; / TR & gt; & Lt; TR & gt; & Lt; Th & gt; Instrument: & lt; / Th & gt; & Lt; TD & gt; {{Data.instrumente}} & lt; / TD & gt; & Lt; / TR & gt;...
Read more

qt - How to prevent QAudioInput from automatically boosting the master volume to 100%? -

I have been trying to use Qt5 multimedia to record audio with QAudioInput, however, when I see If QAudioInput is started, it increases the master volume of my sound device to 100%. How can I prevent QAudioInput from changing the master volume? My current development platform is Linux with PalsAdio (with flat audio disabled). How can I use QAudioInput : QAudioDeviceInfo device_info = QAudioDeviceInfo :: defaultInputDevice (); QAudio format format; Format.setSampleRate (44100); Format.setChannelCount (1); Format.setSampleSize (16); Format.setCodec ("Audio / PCM"); Format.setSampleType (QAudioFormat :: SignedInt); Format.setByteOrder (QAudioFormat :: LittleEndian); Std :: cout & lt; & Lt; Device_info.deviceName (). ToUtf8 (). ConstData () & lt; & Lt; Std :: endl; QAudioInput * default_device = new QAudioInput (device_info, format); QIODevice * default_io_device = default_device-> Start (); a QAudioInput.setVolume () method is not you I ...
Read more