public
anonymous / log
Created

openid4java direct verification

  • Download Gist
log
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132
2012-07-19 11:37:26 INFO com.cx.Core2Common.servlet.PreLogHandler - JjT-DKxAR7C0_gysQMewCw: REQUEST R:127.0.0.1:49412 POST "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_4) AppleWebKit/536.11 (KHTML, like Gecko) Chrome/20.0.1132.57 Safari/536.11" "" "/0/openId/validate" "openIdParams=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&receivingUrl=http://localhost:6788/mycx/openid_complete?_method=post&openid.ns=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0&openid.op_endpoint=https%3A%2F%2Fbusinessapps.bell.ca%2Fopenid%2Fop&openid.claimed_id=https%3A%2F%2Fbusinessapps.bell.ca%2Fopenid%2Fid%2Fc52e175c-1d5d-4644-99b2-d91332f6923e&openid.response_nonce=2012-07-19T18%3A37%3A26Z133&openid.mode=id_res&openid.identity=https%3A%2F%2Fbusinessapps.bell.ca%2Fopenid%2Fid%2Fc52e175c-1d5d-4644-99b2-d91332f6923e&openid.return_to=http%3A%2F%2Flocalhost%3A6788%2Fmycx%2Fopenid_complete%3F_method%3Dpost&openid.assoc_handle=a979451cdd9f1810&openid.signed=op_endpoint%2Cclaimed_id%2Cidentity%2Creturn_to%2Cresponse_nonce%2Cassoc_handle&openid.sig=fNPRstMZShOoBfSDoLiVb9gIekA%3D&email=&apiKey=TestApiKey" 0
2012-07-19 11:37:27 INFO com.cx.Core2Common.servlet.PreLogHandler - JjT-DKxAR7C0_gysQMewCw: HEADERS: Accept: */*; q=0.5, application/xml, Accept-Encoding: gzip, deflate, User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_4) AppleWebKit/536.11 (KHTML, like Gecko) Chrome/20.0.1132.57 Safari/536.11, Referer: , X-Internal-Requester: rails, Content-Length: 0, Content-Type: application/x-www-form-urlencoded, Host: 10.0.2.2:9996
2012-07-19 11:37:27 DEBUG com.cx.Core2Common.LocalCacheResetFilter - JjT-DKxAR7C0_gysQMewCw: Clearing Local Request Cache
2012-07-19 11:37:27 DEBUG org.openid4java.discovery.Discovery - discovery.xri.resolver:org.openid4java.discovery.xri.XriDotNetProxyResolver
2012-07-19 11:37:27 WARN org.openid4java.server.RealmVerifier - RP discovery / realm validation disabled;
2012-07-19 11:37:27 INFO org.openid4java.consumer.ConsumerManager - Associations disabled.
2012-07-19 11:37:27 DEBUG org.openid4java.discovery.Discovery - Creating URL identifier for: https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e
2012-07-19 11:37:27 DEBUG org.openid4java.discovery.UrlIdentifier - Normalized: https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e to: https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e
2012-07-19 11:37:27 INFO org.openid4java.discovery.Discovery - Starting discovery on URL identifier: https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e
2012-07-19 11:37:27 DEBUG org.openid4java.discovery.yadis.YadisResolver - Performing HTTP HEAD on: https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e ...
2012-07-19 11:37:27 DEBUG org.openid4java.discovery.yadis.YadisResolver - Performing HTTP GET on: https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e ...
2012-07-19 11:37:27 DEBUG org.openid4java.util.HttpCache - Read 456 bytes.
2012-07-19 11:37:27 DEBUG org.openid4java.discovery.xrds.XrdsParserImpl - Parsing XRDS input for service types: [http://specs.openid.net/auth/2.0/signon, http://openid.net/signon/1.0, http://openid.net/signon/1.1, http://specs.openid.net/auth/2.0/server]
2012-07-19 11:37:27 DEBUG org.openid4java.discovery.xrds.XrdsParserImpl - Parsing XRDS input: <?xml version="1.0" encoding="UTF-8"?>
<xrds:XRDS xmlns:xrds="xri://$xrds">
<XRD xmlns="xri://$xrd*($v*2.0)">
<Service priority="0">
<Type>http://specs.openid.net/auth/2.0/signon</Type>
<Type>http://openid.net/srv/ax/1.0</Type>
<Type>http://openid.net/sreg/1.0</Type>
<Type>http://openid.net/extensions/sreg/1.1</Type>
<URI>https://businessapps.bell.ca/openid/op</URI>
</Service>
</XRD>
</xrds:XRDS>
 
 
2012-07-19 11:37:27 DEBUG org.openid4java.discovery.xrds.XrdsParserImpl - Found 1 services for the requested types.
2012-07-19 11:37:27 DEBUG org.openid4java.discovery.xrds.XrdsParserImpl - Discovered endpoint:
Service priority: 0
Type: [http://openid.net/srv/ax/1.0, http://specs.openid.net/auth/2.0/signon, http://openid.net/sreg/1.0, http://openid.net/extensions/sreg/1.1]
URI: https://businessapps.bell.ca/openid/op
URI Priority: -1
LocalID: null
2012-07-19 11:37:27 DEBUG org.openid4java.discovery.yadis.YadisResult - Setting X-XRDS-Location for yadis result: https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e
2012-07-19 11:37:27 INFO org.openid4java.discovery.yadis.YadisResolver - Yadis discovered 1 endpoints from: https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e
2012-07-19 11:37:27 DEBUG org.openid4java.discovery.UrlIdentifier - Normalized: https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e to: https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e
2012-07-19 11:37:27 INFO org.openid4java.discovery.Discovery - Discovered 1 OpenID endpoints.
2012-07-19 11:37:27 WARN org.openid4java.consumer.ConsumerManager - Association failed; using first entry: https://businessapps.bell.ca/openid/op
2012-07-19 11:37:27 DEBUG org.openid4java.message.ParameterList - Creating parameter list:
openid.signed:op_endpoint,claimed_id,identity,return_to,response_nonce,assoc_handle
openid.return_to:http://localhost:6788/mycx/openid_complete?_method=post
openid.op_endpoint:https://businessapps.bell.ca/openid/op
openid.identity:https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e
openid.assoc_handle:a979451cdd9f1810
openid.claimed_id:https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e
openid.ns:http://specs.openid.net/auth/2.0
openid.sig:fNPRstMZShOoBfSDoLiVb9gIekA=
openid.response_nonce:2012-07-19T18:37:26Z133
openid.mode:id_res
 
2012-07-19 11:37:27 INFO org.openid4java.consumer.ConsumerManager - Verifying authentication response...
2012-07-19 11:37:27 DEBUG org.openid4java.message.ParameterList - Created empty parameter list.
2012-07-19 11:37:27 DEBUG org.openid4java.util.InternetDateFormat - Parsed 2012-07-19T18:37:26Z into Data object: Thu Jul 19 11:37:26 PDT 2012
2012-07-19 11:37:27 DEBUG org.openid4java.message.AuthSuccess - Created positive auth response:
openid.signed:op_endpoint,claimed_id,identity,return_to,response_nonce,assoc_handle
openid.return_to:http://localhost:6788/mycx/openid_complete?_method=post
openid.op_endpoint:https://businessapps.bell.ca/openid/op
openid.identity:https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e
openid.assoc_handle:a979451cdd9f1810
openid.claimed_id:https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e
openid.ns:http://specs.openid.net/auth/2.0
openid.sig:fNPRstMZShOoBfSDoLiVb9gIekA=
openid.response_nonce:2012-07-19T18:37:26Z133
openid.mode:id_res
 
2012-07-19 11:37:27 INFO org.openid4java.consumer.ConsumerManager - Received positive auth response.
2012-07-19 11:37:27 DEBUG org.openid4java.util.InternetDateFormat - Parsed 2012-07-19T18:37:26Z into Data object: Thu Jul 19 11:37:26 PDT 2012
2012-07-19 11:37:27 DEBUG org.openid4java.consumer.ConsumerManager - Verifying return URL; receiving: http://localhost:6788/mycx/openid_complete?_method=post
message: http://localhost:6788/mycx/openid_complete?_method=post
2012-07-19 11:37:27 DEBUG org.openid4java.discovery.Discovery - Creating URL identifier for: https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e
2012-07-19 11:37:27 DEBUG org.openid4java.discovery.UrlIdentifier - Normalized: https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e to: https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e
2012-07-19 11:37:27 DEBUG org.openid4java.consumer.ConsumerManager - Verifying discovered information for OpenID2 assertion about ClaimedID: https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e
2012-07-19 11:37:27 DEBUG org.openid4java.consumer.ConsumerManager - ClaimedID in the assertion was previously discovered: https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e
2012-07-19 11:37:27 DEBUG org.openid4java.consumer.AbstractNonceVerifier - Verifying nonce: 2012-07-19T18:37:26Z133
2012-07-19 11:37:27 DEBUG org.openid4java.util.InternetDateFormat - Parsed 2012-07-19T18:37:26Z133 into Data object: Thu Jul 19 11:37:26 PDT 2012
2012-07-19 11:37:27 DEBUG org.openid4java.consumer.InMemoryNonceVerifier - Nonce verified: 2012-07-19T18:37:26Z133
2012-07-19 11:37:27 DEBUG org.openid4java.discovery.Discovery - Creating URL identifier for: https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e
2012-07-19 11:37:27 DEBUG org.openid4java.discovery.UrlIdentifier - Normalized: https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e to: https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e
2012-07-19 11:37:27 INFO org.openid4java.consumer.ConsumerManager - No association found, contacting the OP for direct verification...
2012-07-19 11:37:27 DEBUG org.openid4java.message.ParameterList - Creating parameter list:
openid.signed:op_endpoint,claimed_id,identity,return_to,response_nonce,assoc_handle
openid.return_to:http://localhost:6788/mycx/openid_complete?_method=post
openid.op_endpoint:https://businessapps.bell.ca/openid/op
openid.identity:https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e
openid.assoc_handle:a979451cdd9f1810
openid.claimed_id:https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e
openid.ns:http://specs.openid.net/auth/2.0
openid.sig:fNPRstMZShOoBfSDoLiVb9gIekA=
openid.response_nonce:2012-07-19T18:37:26Z133
openid.mode:id_res
 
2012-07-19 11:37:27 DEBUG org.openid4java.message.ParameterList - Created empty parameter list.
2012-07-19 11:37:27 DEBUG org.openid4java.message.VerifyRequest - Delegating verification request validity check to auth response...
2012-07-19 11:37:27 DEBUG org.openid4java.util.InternetDateFormat - Parsed 2012-07-19T18:37:26Z into Data object: Thu Jul 19 11:37:26 PDT 2012
2012-07-19 11:37:27 DEBUG org.openid4java.message.VerifyRequest - Created verification request from a positive auth response:
openid.signed:op_endpoint,claimed_id,identity,return_to,response_nonce,assoc_handle
openid.return_to:http://localhost:6788/mycx/openid_complete?_method=post
openid.op_endpoint:https://businessapps.bell.ca/openid/op
openid.identity:https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e
openid.assoc_handle:a979451cdd9f1810
openid.claimed_id:https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e
openid.ns:http://specs.openid.net/auth/2.0
openid.sig:fNPRstMZShOoBfSDoLiVb9gIekA=
openid.response_nonce:2012-07-19T18:37:26Z133
openid.mode:check_authentication
 
2012-07-19 11:37:27 DEBUG org.openid4java.message.ParameterList - Created empty parameter list.
2012-07-19 11:37:27 DEBUG org.openid4java.consumer.ConsumerManager - Performing HTTP POST on https://businessapps.bell.ca/openid/op
2012-07-19 11:37:27 DEBUG org.openid4java.util.HttpCache - Performing HTTP POST on https://businessapps.bell.ca/openid/op
2012-07-19 11:37:28 DEBUG org.openid4java.util.HttpCache - Read 51 bytes.
2012-07-19 11:37:28 DEBUG org.openid4java.message.ParameterList - Creating parameter list from key-value form:
is_valid:false
ns:http://specs.openid.net/auth/2.0
 
2012-07-19 11:37:28 DEBUG org.openid4java.message.ParameterList - Created empty parameter list.
2012-07-19 11:37:28 DEBUG org.openid4java.message.ParameterList - Copying parameter list:
is_valid:false
ns:http://specs.openid.net/auth/2.0
 
2012-07-19 11:37:28 DEBUG org.openid4java.consumer.ConsumerManager - Retrived response:
is_valid:false
ns:http://specs.openid.net/auth/2.0
 
2012-07-19 11:37:28 DEBUG org.openid4java.message.ParameterList - Created empty parameter list.
2012-07-19 11:37:28 DEBUG org.openid4java.message.VerifyResponse - Created verification response:
is_valid:false
ns:http://specs.openid.net/auth/2.0
 
2012-07-19 11:37:28 DEBUG org.openid4java.consumer.ConsumerManager - Direct signature verification failed with OP: https://businessapps.bell.ca/openid/op
2012-07-19 11:37:28 ERROR org.openid4java.consumer.ConsumerManager - Verification failed for: https://businessapps.bell.ca/openid/id/c52e175c-1d5d-4644-99b2-d91332f6923e reason: Direct signature verification failed.
2012-07-19 11:37:28 INFO com.cx.Core2Common.servlet.PostLogHandler - JjT-DKxAR7C0_gysQMewCw: RESPONSE 400 75
scala verification
1 2 3 4 5 6 7 8 9
val consumerManager = new ConsumerManager()
 
// don't use the association handle passed in
consumerManager.setMaxAssocAttempts(0)
 
val discoveries = consumerManager.discover(queryStringParam.get("openid.identity")(0))
val discovered = consumerManager.associate(discoveries)
val openidResp = new ParameterList(queryStringParam)
val verification = consumerManager.verify(receivingUrl, openidResp, discovered)

Please sign in to comment on this gist.

Something went wrong with that request. Please try again.