Ticket #1115 (new defect)

Opened 9 years ago

[S] OpenID Provider SSL validation broken on ndg_security 1.5.7

Reported by: pjkersha Owned by: pjkersha
Priority: critical Milestone:
Component: security Version:
Keywords: OpenID Cc:

Description

Applying openid.relyingparty.idpWhitelistConfigFilePath setting fails.

  • "certFilePath", "priKeyFilePath" and "priKeyPwd" have to be set - default doesn't work
  • Setting SSL params breaks discovery stage:
    Error attempting to use stored discovery information: <openid.consumer.consumer.TypeURIMismatch: Required type http://specs.openid.net/auth/2.0/signon not found in ['http://specs.openid.net/auth/2.0/server'] for endpoint <openid.consumer.discover.OpenIDServiceEndpoint server_url='<<Provider URL>>' claimed_id=None local_id=None canonicalID=None used_yadis=True >>
    
Note: See TracTickets for help on using tickets.