Introduction OpenID Authentication 2.0 Revival

5,390 views
5,296 views

Published on

Published in: Technology
0 Comments
5 Likes
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total views
5,390
On SlideShare
0
From Embeds
0
Number of Embeds
26
Actions
Shares
0
Downloads
263
Comments
0
Likes
5
Embeds 0
No embeds

No notes for slide

Introduction OpenID Authentication 2.0 Revival

  1. 1. OpenID Tech Night #5
  2. 2. Identity Provider Identity Provider Identity Provider identity IdP     Identity Identity OpenID
  3. 3.            見     一           
  4. 4. zigorou.myopenid.com            自      入力  
  5. 5.                    
  6. 6.          
  7. 7.            
  8. 8.                            
  9. 9. User-Supplied Identifier OP Identifier     Claimed Identifier      
  10. 10.               Discovery             Association                     Authenticate Request       Authenticate Response               Verification  
  11. 11.               Discovery             Association                     Authenticate Request       Authenticate Response               Verification  
  12. 12. [zigorou ~] $ lwp-request -S -e -d http://zigorou.myopenid.com/ | grep XRDS X-XRDS-Location: http://zigorou.myopenid.com/?xrds=1 [zigorou ~] $ lwp-request http://zigorou.myopenid.com/?xrds=1 <?xml version=quot;1.0quot; encoding=quot;UTF-8quot;?> <xrds:XRDS xmlns:xrds=quot;xri://$xrdsquot; xmlns:openid=quot;http://openid.net/xmlns/1.0quot; xmlns=quot;xri://$xrd*($v*2.0)quot;> <XRD version=quot;2.0quot;> <Service priority=quot;0quot;> <Type>http://specs.openid.net/auth/2.0/signon</Type> <Type>http://openid.net/sreg/1.0</Type> <Type>http://openid.net/extensions/sreg/1.1</Type> <Type>http://schemas.openid.net/pape/policies/2007/06/phishing-resistant</Type> <Type>http://openid.net/srv/ax/1.0</Type> <URI>http://www.myopenid.com/server</URI> <LocalID>http://zigorou.myopenid.com/</LocalID> </Service>
  13. 13.               Discovery               Association                   Authenticate Request       Authenticate Response               Verification  
  14. 14. #!/usr/bin/perl sub sig { my %pairs = @_; use strict; my $keyval = format_keyval(%pairs); use warnings; hmac_sha256_hex($keyval, $hmac_key); use Digest::SHA qw(hmac_sha256_hex); } use Perl6::Say; say sig( foo => quot;abcquot;, bar => quot;xyzquot; ); our $hmac_key = quot;common_secretquot;; 89b7f51ec9b76e97d5a179f313af38e6cc8b5cb086 sub format_keyval { 0e266caf6847ded05428ce my %pairs = @_; join quot;nquot; => map { $_ . ':' . $pairs{$_} } keys %pairs; }
  15. 15.               Discovery               Association                   Authenticate Request       Authenticate Response               Verification  
  16. 16.               Discovery             Association                     Authenticate Request   Authenticate     Response               Verification  

×