Shinyshell Community Forums > Announcements >
OpenID, and how I broke it


February 19 02010, 02:33 GMT
Supra stultitiam

lec's avatar
Location: Varaždin, Croatia
Post count: 173
If you're a regular here, you've probably noticed that OpenID never really worked here, though the form's been here for a while.

I actually succeeded in making a basic implementation in one night a while back (it was actually almost two years ago - here's the news post that I made when I was done). I never really went on to develop it because in about 10 days the login developed a strange error - whenever I tried to log in, it gave me a "bad signature" error.

Today, I finally summoned up the resolve to figure this out. I updated the library, but it still didn't work. Next I tested the login on a local server, and it worked perfectly, so I was at a loss. After wasting about 6 hours re-coding my session management module (which was perfectly functional), and rewriting the OpenID glue code piece by piece, I came across the erroneous code (which was, typically, in the last 20 lines of a 400 line long script).. and it turned out to be


I forgot to decode the url before passing it to the consumer library in step two of authentication, when the provider sent back the data. As a consequence, I got this bizarre and obscure "bad signature" error. There was really no way for me to know.

Anyway, I've now fixed it up and even added code that lets people register with the form as well as log in. An additional page in the User Control Center is coming soon that will let you attach OpenIDs to your account so you can use it for logging in. But essentially, it's more useful for registering.

The next "version" of shinyshell I'm working on will use both OpenID and Facebook Connect heavily for user authentication, and hopefully I'll be able to phase out the conventional login almost entirely. Also coming soon are other mildly exciting things like gravatar and feeds, as well as better javascripted forms and controls.


Forum Information
  Currently Active Members [detailed] (0 members and ? guests)
Forum Statistics
Topics: 0, Posts: 0, Members: 108.
Welcome to our newest member, adamthephantump
Most members online was 5, on August 28 2009, at 21:49:28.
    Forums with unread topics in them are indicated by a strong yellow colouring around the forum icon.
    Forums with no unread topics have the standard pale yellow colouring around the forum icon.
    Forums with a blue arrow icon will redirect you to a non-forum page.
    Locked forums have a little padlock by their icon. You won't be able to post in these forums.
Shinyshell Home | Contact | Staff List | Archive | Top 

Conventional Login

Don't have an account? You may want to create one.

OpenID Login
OpenID login and registration is usable, but not finished.
What is OpenID?

(advanced search)
Site Stats
  Total members: 108
  Latest member: adamthephantump
  Members currently online: 0
  Most online: 5 - Aug 28, 2009 (21:49)
  Front page hits: 79087
Developer info
  Site version: 3.5 Alpha
  16 queries - 9 templates
Under the Spotlight
Collide Site
Collide make fabulously dreamy electronic-industrial music, they're one of my favourite bands! Give them a chance to take control of your life - myspace | youtube - "Euphoria".

Collide Site - Hits: 3295

5/5 (2) | Rate this site?