Interoperability with python-openid
29 views
Skip to first unread message
Richard Collette
May 8, 2012, 12:02:15 PM5/8/12
to dotnet...@googlegroups.com
I need to implement an OP on our side sending unsolicited assertions to the RP. The RP is python based with no previous open id experience so I am trying to provide some direction. Searching around I have found a few different libraries. The python-openid library (https://github.com/openid/python-openid) seems to be one of the simpler ones although that in itself may present a problem. There are various topics posted about it not supporting POST assertions, which is what the examples I have looked at in DotNetOpenAuth use. That library also seems to be updated infrequently.
Does anyone know of any interoperability issues with python-openid for the stated use case?
Is there an example of sending unsolicited assertions as an HTTP GET using DotNetOpenAuth?
Does anyone recommend and alternate python based open Id library?
Thank you,
Rich
Andrew Arnott
May 10, 2012, 11:49:50 PM5/10/12
to dotnet...@googlegroups.com
Not all libraries support unsolicited assertions (although technically a full and correct implementation of the spec means that receiving unsolicited assertions will "just work"). I don't know if the Python one(s) support them.
--
Andrew Arnott
"I [may] not agree with what you have to say, but I'll defend to the death your right to say it." - S. G. Tallentyre
DNOA prefers to use HTTP GET for all message passing between OpenID parties. It only uses POST if the message payload is too large for a URL. When I just double checked, I saw a GET sent to the RP with the assertion. The RP then uses a POST directly back to the OP (not via the browser) to verify the assertion, and this is per mandate in the spec. So I think it's doing what you're wanting it to do.
--
Andrew Arnott
"I [may] not agree with what you have to say, but I'll defend to the death your right to say it." - S. G. Tallentyre
--
You received this message because you are subscribed to the Google Groups "DotNetOpenAuth" group.
To view this discussion on the web visit https://groups.google.com/d/msg/dotnetopenid/-/XJV516XMkPgJ.
To post to this group, send email to dotnet...@googlegroups.com.
To unsubscribe from this group, send email to dotnetopenid...@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/dotnetopenid?hl=en.
Reply all
Reply to author
Forward
0 new messages