Return-Path: X-Original-To: apmail-roller-commits-archive@www.apache.org Delivered-To: apmail-roller-commits-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id E9F7F10AFA for ; Sat, 24 Aug 2013 01:59:51 +0000 (UTC) Received: (qmail 2441 invoked by uid 500); 24 Aug 2013 01:59:51 -0000 Delivered-To: apmail-roller-commits-archive@roller.apache.org Received: (qmail 2399 invoked by uid 500); 24 Aug 2013 01:59:51 -0000 Mailing-List: contact commits-help@roller.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@roller.apache.org Delivered-To: mailing list commits@roller.apache.org Received: (qmail 2320 invoked by uid 99); 24 Aug 2013 01:59:51 -0000 Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 24 Aug 2013 01:59:51 +0000 Date: Sat, 24 Aug 2013 01:59:51 +0000 (UTC) From: "Glen Mazza (JIRA)" To: commits@roller.apache.org Message-ID: In-Reply-To: References: Subject: [jira] [Resolved] (ROL-1925) Patch for the bug of OpenID only authentication MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 [ https://issues.apache.org/jira/browse/ROL-1925?page=3Dcom.atlassian.= jira.plugin.system.issuetabpanels:all-tabpanel ] Glen Mazza resolved ROL-1925. ----------------------------- Resolution: Fixed Fix Version/s: (was: 5.0) 5.1 OpenID is working fine now using Spring Security 3.1.4 (supplied patch uses= Spring Security 2). Thanks for the patch anyway! =20 > Patch for the bug of OpenID only authentication > ----------------------------------------------- > > Key: ROL-1925 > URL: https://issues.apache.org/jira/browse/ROL-1925 > Project: Roller > Issue Type: Bug > Components: Authentication, Roles and Access Controls > Affects Versions: 5.0 > Reporter: Shutra > Assignee: Glen Mazza > Labels: patch > Fix For: 5.1 > > Attachments: roller-openid-only.patch > > > 1. Fix the javascript error in Register page: > =E9=94=99=E8=AF=AF=EF=BC=9A document.register['bean.passwordText'] is und= efined > =E6=BA=90=E6=96=87=E4=BB=B6=EF=BC=9Ahttps://example.com/roller/roller-ui/= register.rol;jsessionid=3D043E3D9D1D765A9BD3976074DC56670C > =E8=A1=8C=EF=BC=9A1062 > 2. Generate a random string for the non-nullable passphrase field. > 3. Override lookupRealm method of OpenIDAuthenticationProcessingFilter in= spring-security-openid-2.0.5 to ignore the issue about appending wrong por= t to the url, for example, it may append "80" to an url with https scheme. > 4. Use openid_identifier as the html form field to match the openid spec,= and ignore duplicate ID "j_username" while using hybrid authentication met= hods. Enhanced the function: restoring username from cookie. > 5. svn rm some .classpath .project .settings files > 6. orgnized the spring dependencies > The patch file is attached. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrato= rs For more information on JIRA, see: http://www.atlassian.com/software/jira