CrowdID Not Signing User Attributes Like Nickname or Email

XMLWordPrintable

    • Type: Bug
    • Resolution: Fixed
    • Priority: Medium
    • 1.2
    • Affects Version/s: 1.1 - OpenID Support
    • Component/s: OpenID
    • None

      CrowdID is not signing user attributes like nickname or email in responses. This breaks interop with ruby-openid gem.

      For more information, please see http://forums.atlassian.com/thread.jspa?messageID=257250147

      Current response parameters to a successful authentication are:

      {"openid.sreg.nickname"=>"admin", "openid.mode"=>"id_res", "openid.return_to"=>"http://localhost:3001/session;complete?nonce=JFnzeQ9l", "openid.sig"=>"t/j+saMjqdFUnGO7QcMDfXwhaoQ=", "openid.ns.sreg"=>"http://openid.net/sreg/1.0", "action"=>"complete", "openid.sreg.email"=>"sladd@camber.com", "controller"=>"session", "openid.identity"=>"http://localhost:8095/openidserver/users/admin", "nonce"=>"JFnzeQ9l", "openid.assoc_handle"=>"1184160377703-3", "openid.signed"=>"return_to,identity"}

      However, openid.signed should be at least "openid.signed"=>"return_to,identity,sreg.email,sreg.nickname"}

              Assignee:
              shihab
              Reporter:
              Seth Ladd
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

                Created:
                Updated:
                Resolved: