openid consumer only valid for http://authorized_openid_identifier/

Details

Type: Bug
Status: Closed
Priority: Blocker
Resolution: Fixed
Affects Version/s: 0.7.2
Fix Version/s: 0.7.4
Component/s: Chef Server
Labels:
None
Environment:

Chef 0.7.2 (0.7.3)

Description

/etc/chef/server.rb:

authorized_openid_providers [ "https://ops1test.localdomain", "https://chef", "myopenid.com" ]
authorized_openid_identifiers [ "some_user.myopenid.com", "http://some_user.myopenid.com" ]

When logging in as "some_user.myopenid.com" or "http://some_user.myopenid.com", the server throws a 401 unauthorized exception.

However, if I change the authorized_openid_identifiers to:

authorized_openid_identifiers [ "some_user.myopenid.com", "http://some_user.myopenid.com/" ]

(note the trailing slash on the URL)

Then "some_user.myopenid.com" or "http://some_user.myopenid.com/" work just fine.

Activity

Hide

Permalink

jtimberman added a comment - 26/Jun/09 12:28 AM

Resolved with change to =~ for ~~CHEF-403~~.

Show

jtimberman added a comment - 26/Jun/09 12:28 AM Resolved with change to =~ for CHEF-403 .

People

Assignee:

AJ Christensen

Reporter:

jtimberman

Vote (0)

Watch (0)

Dates

Created:

25/Jun/09 10:15 PM

Updated:

01/Jul/09 11:56 PM

Resolved:

26/Jun/09 12:28 AM