[foaf-protocols] some more .net code for an FOAFSSL.org RP site, interworking with foafssl.org IDP (with Unit Test).
Peter Williams
home_pw at msn.com
Tue Feb 23 20:42:51 CET 2010
If the auth request has 127.0.0.1 as the authority, I can verify the
signature.
If the auth request has a browser-local synonym for the requesting entity
(e.g. the name "me"), I cannot verify the resultant token's signature. Thus
suggests that the IDP is not signing the authreqissuer parameter as
indicated by the requestor.
3sjchk1.rapnt.com:8080 also fails.
The cause is not known. May be related to the form of the authority name,
the use of ports, the lack of public DNS entry for the authority (me or
3sjchk1.rapnt.com ).
I just don't know (and cannot tell).
HTTP/1.1 302 Found
X-WebID-Status: notpresent
location:
https://foafssl.org:443/srv/idp?authreqissuer=http%3a%2f%2fme%3a8080%2ffoafd
otme.aspx
expires: -1
content-type: text/html; charset=utf-8
pragma: no-cache
cache-control: no-cache
<cr><lf>
<html><head><title>Object moved</title></head><body>
<h2>Object moved to <a
href="https://foafssl.org:443/srv/idp?authreqissuer=http%3a%2f%2fme%3a8080%2
ffoafdotme.aspx">here</a>.</h2>
</body></html>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.foaf-project.org/pipermail/foaf-protocols/attachments/20100223/3d213be8/attachment.htm
More information about the foaf-protocols
mailing list