How to use the correct Google OpenID url to login to my site?
Asked Answered
K

1

14

I am trying to implement OpenID as one preferred option to my next web app here

The code is taken from this tutorial and works if I use my openID from myopenid.com

However, I believe most people would just love to use their everyday email address as their openID, as far as I know, Google, Yahoo, and some other big players have already done this in their systems.

My question is: how could I find the correct "url" to enter in the form to login? I used my Google OpenID account for StackOverflow and it works just fine. I try to copy my openID like this:

www.google.com/accounts/o8/id?id=aitoawllano10bzdzp3ht0diffry0qt6_j2ls-m

And paste it directly into my form, but it doesn't work.

I also tried to remove the url parameter, but that won't do, either.

Thanks a lot in advance for any tips and suggestions.

Koerner answered 19/4, 2010 at 12:45 Comment(2)
This would be a good place to start with code.google.com/apis/accounts/docs/OpenID.htmlMozzetta
@Mozzetta : indeed. I didn't know Google explains his way of doing OpenID there. Thanks for this reference!Koerner
K
13

Basically, you're not allowed to use a token produced for one site to authenticate to another. This is a security feature. (OK, the site which is allowed to see the OpenID identity could make an assertion accepted by the other site about your identity, but that's out-of-band w.r.t. OpenID.)

The URL you should use is just this:

https://www.google.com/accounts/o8/id
Keewatin answered 19/4, 2010 at 13:1 Comment(1)
@Donal Fellows : I see. security is the part that makes my head aching all the time. I will read the doc Amarghosh just posted and see if I can get this done myself.Koerner

© 2022 - 2024 — McMap. All rights reserved.