我試圖使用googlesample爲hybrid protocol(OpenID+OAuth),但由於某些原因,它不是爲我工作問題與谷歌混合協議(OpenID的OAuth的+)演示
You are not authenticated
我嘗試使用谷歌的賬戶按鈕,沒有任何反應! 我試圖進入我的谷歌openID並再次沒有任何反應!
這可能是一個瀏覽器的問題??不見得!
能否請您舉報,如果你得到了相同的結果,或者如果有人有線索關於怎麼回事,請分享,感謝名單
我只是檢查雅虎的OpenID + OAuth的實現和得到這樣的警告消息
WARNING - PLEASE READ
Yahoo is strongly encouraging Yahoo! end-users not to authorize any new applications using OAuth until the recently discovered security issue with the OAuth protocol is resolved. Yahoo! is not aware of any exploits of this issue prior to April 23, 2009.
If you click the "continue at your own risk" button below, your private data may be exposed to unintended third parties.
Note: Unless you click "Continue at your own risk," your data has not been shared.
Note to Developers: Developers who are authorizing their own apps, for the purposes of testing, may proceed at their own risk. Yahoo! recommends that developers create test accounts with test data for testing their application.
顯然,OAuth正在發生一些可疑的事情,但是我看不出Google是否在這方面做出任何公告,也不知道Plaxo!
我只是試過了,它適用於我。
這OpenID+OAuth demo也剛剛對谷歌(Source code)。
我給了它另一次嘗試,這次它工作。問題在於我同時登錄了2個不同的Google帳戶,出於某種原因,我沒有重定向到Google帳戶的登錄管理頁面。
最近的OAuth安全漏洞不會影響OpenID + OAuth擴展。這並不意味着谷歌並沒有禁用它。 – 2009-05-04 22:16:56