Legacy issue tracker

You are currently viewing the legacy bug tracker for MediaGoblin. We have now switched to code hosting and issue tracking at SourceHut.

This legacy issue tracker remains available to allow us to reference old issues. If you find a ticket here which is still relevant, please feel free to continue the discussion. For new issues, please use SourceHut.

Context Navigation

← Previous Ticket
Next Ticket →

Opened 10 years ago

#941 new defect

OpenID fails with https site

Reported by:	sazius	Owned by:
Priority:	major	Milestone:
Component:	programming	Keywords:	openid
Cc:		Parent Tickets:

Description

When I try to log in with OpenID on my Mediagoblin site it fails with the following error:

Verification of None failed: return_to does not match return URL. Expected u'https://media.saz.im/auth/openid/login/finish/', got u'http://media.saz.im/auth/openid/login/finish/?janrain_nonce=SIKRITSTUFF'

where I have replaced the nonce with SIKRITSTUFF just to be sure :-)

In the file plugins/openid/views.py line 52 looks like this:

host = 'http://' + request.host

If I replace the "http" with "https" here OpenID works. My server does have automatic rewrite of http => https so that is not the problem. So perhaps it is possible to detect if we are serving over https and setting that accordingly?

Note: See TracTickets for help on using tickets.

Download in other formats: