Hi,
I have implemented a relying party that consumes OpenID and it works good. Now, I am trying to change the configuration using <dotNetOpenAuth> in the web.config file of my ASP .NET application. Somehow, it turns out that the changes I am making in the onfig file does not take place at all. For example, although I set <security requireSsl="true"/>, the RP wirks also without SSL. And ofcourse when I set thi sproperty in my code (openid.SecuritySettings.RequireSsl = true;), it works. However, I must set this property in the config file. Here is how my config file looks like.
Can anybody tell me where I am going wrong?
<dotNetOpenAuth>
<openid>
<relyingParty>
<security requireSsl="true"/>
<behaviors>
<!-- <add type="Fully.Qualified.ClassName, Assembly" /> -->
</behaviors>
<store type="RelyingParty.AssociationStore, RelyingParty"/>
</relyingParty>
</openid>
<messaging>
<untrustedWebRequest>
<whitelistHosts>
<!-- since this is a sample, and will often be used with localhost -->
<add name="localhost" />
<add name="me.yahoo" />
</whitelistHosts>
<whitelistHostsRegex>
<!-- since this is a sample, and will often be used with localhost -->
<!-- <add name="\.owndomain\.com$" /> -->
</whitelistHostsRegex>
<blacklistHosts>
</blacklistHosts>
<blacklistHostsRegex>
</blacklistHostsRegex>
</untrustedWebRequest>
</messaging>
</dotNetOpenAuth>