[Yanel-dev] OpenID integration working now

Michael Wechner michael.wechner at wyona.com
Sun Jan 27 16:06:10 CET 2008 

Michael Wechner wrote:

> Michael Wechner wrote:
>
>> Hi
>>
>> I have finished the OpenID consumer integration (at least I hope so ;-)
>
>
>
> well, I have deployed Yanel behind a reverse proxy now and then the 
> redirect somehow is wrong, whereas it is very strange, because the log 
> files states the right redirect, but when ngrepping the network 
> traffic, it has a bad redirect in it.
>
> Will debug it and try to fix it as soon as possible.


It seems that Yanel does everything correctly

T 127.0.0.1:9190 -> 127.0.0.1:33248 [AP]
  HTTP/1.1 301 Moved Permanently..Location: 
http://www.ezra.com:80/test.html..Content-Length: 0..Date: S
  un, 27 Jan 2008 14:56:54 GMT..Server: Apache-Coyote/1.1....

but the load balancer for whatever strange reason is rewriting the redirect:

T 127.0.0.1:9090 -> 127.0.0.1:47680 [AP]
  HTTP/1.1 301 Moved Permanently..Location: 
http://127.0.0.1:9090/test.html..Content-Length: 0..Date:
   Sun, 27 Jan 2008 14:56:54 GMT..Server: Apache-Coyote/1.1....

whereas the reverse proxy (httpd) seems to be fine again

T 127.0.0.1:80 -> 127.0.0.1:45522 [AP]
  HTTP/1.1 301 Moved Permanently..Date: Sun, 27 Jan 2008 14:56:54 
GMT..Server: Apache-Coyote/1.1..Loc
  ation: http://127.0.0.1:9090/test.html..Content-Length: 0..Keep-Alive: 
timeout=5, max=100..Connecti
  on: Keep-Alive..Content-Type: text/html....


This seems to me rather a bug of the load balancer than Yanel and for 
whatever strange reason we haven't noticed it yet.

Will debug some more and hopefully have it fixed soon.

Cheers

Michi

>
> Cheers
>
> Michi
>
>>
>> In order to give access to certain resources one has to change ac 
>> policies accordingly, e.g.
>>
>> <policy>
>>  <usecase id="toolbar">
>>    <group id="admin" permission="true"/>
>>    <user id="http://michaelwechner.livejournal.com/" permission="true"/>
>>  </usecase>
>>
>> and that's it :-)
>>
>> The next step would be that Yanel could act as OpenID provider, but 
>> first I need to document all of the existing stuff and also do some 
>> other stuff ;-)
>>
>> In case somebody would like to give it a try please see
>>
>> http://code.google.com/p/openid4java/
>>
>> or in particular
>>
>> http://code.google.com/p/openid4java/wiki/SampleServer
>>
>> which I guess could be implemented as a Yanel resource
>>
>> Cheers
>>
>> Michi
>>
>
>


-- 
Michael Wechner
Wyona      -   Open Source Content Management - Yanel, Yulup
http://www.wyona.com
michael.wechner at wyona.com, michi at apache.org
+41 44 272 91 61

More information about the Yanel-development mailing list