Comments on: OpenID weirdness http://blog.xcski.com/2007/03/15/openid-weirdness Everything I used to bore people on newsgroups and mailing lists with, now in one inconvenient place. Sun, 20 Jul 2008 00:39:44 +0000 http://wordpress.org/?v=2.6 By: Paul Tomblin http://blog.xcski.com/2007/03/15/openid-weirdness#comment-18682 Paul Tomblin Thu, 15 Mar 2007 21:28:57 +0000 http://blog.xcski.com/2007/03/15/openid-weirdness#comment-18682 If I'm reading the source code for these things correctly, it appears that OpenID works by doing an HTML GET on the openID server which passes in various parameters along with its own URL, and the OpenID server does a GET with those parameters back to the original site. If that's correct, the reason SpamKarma2 is missing the payload is that those extra input fields aren't being passed to the OpenID server to be passed back. I'm going to do an experiment in a little while with a "foreach ($_POST" to get all the extra input fields and put them in the array of data being sent to the OpenID server. If I’m reading the source code for these things correctly, it appears that OpenID works by doing an HTML GET on the openID server which passes in various parameters along with its own URL, and the OpenID server does a GET with those parameters back to the original site. If that’s correct, the reason SpamKarma2 is missing the payload is that those extra input fields aren’t being passed to the OpenID server to be passed back. I’m going to do an experiment in a little while with a “foreach ($_POST” to get all the extra input fields and put them in the array of data being sent to the OpenID server.

]]> By: jenniferm@livejournal http://blog.xcski.com/2007/03/15/openid-weirdness#comment-18681 jenniferm@livejournal Thu, 15 Mar 2007 20:58:16 +0000 http://blog.xcski.com/2007/03/15/openid-weirdness#comment-18681 Something to keep in mind: not everyone in your previous test post was really using OpenID. For example, I don't think Vicki's comments were really authenticated through OpenID—notice that her username doesn't show up as oddprofessor@livejournal. This happens because she either has a cookie set that WP reads and uses to fill in the name, email, and URI OR the web browser is filling in the form field on its own. So, WP sees that there is information in the "normal" comment information fields and does not use the OpenID information at all. So, it may be that ALL comments signed with OpenID are being flagged as spam. I broke the comment form on redjen.net; I'll fix it when I have time and let you know if the behavior is the same or different for me. Something to keep in mind: not everyone in your previous test post was really using OpenID. For example, I don’t think Vicki’s comments were really authenticated through OpenID—notice that her username doesn’t show up as oddprofessor@livejournal. This happens because she either has a cookie set that WP reads and uses to fill in the name, email, and URI OR the web browser is filling in the form field on its own. So, WP sees that there is information in the “normal” comment information fields and does not use the OpenID information at all.

So, it may be that ALL comments signed with OpenID are being flagged as spam.

I broke the comment form on redjen.net; I’ll fix it when I have time and let you know if the behavior is the same or different for me.

]]> By: tripacerdriver@livejournal http://blog.xcski.com/2007/03/15/openid-weirdness#comment-18675 tripacerdriver@livejournal Thu, 15 Mar 2007 15:58:33 +0000 http://blog.xcski.com/2007/03/15/openid-weirdness#comment-18675 I got a different error when I used my OpenID: Sorry, but your comment has been flagged by the spam filter running on this blog: this might be an error, in which case all apologies. Your comment will be presented to the blog admin who will be able to restore it immediately. You may want to contact the blog admin via e-mail to notify him. I got a different error when I used my OpenID:

Sorry, but your comment has been flagged by the spam filter running on this blog: this might be an error, in which case all apologies. Your comment will be presented to the blog admin who will be able to restore it immediately.
You may want to contact the blog admin via e-mail to notify him.

]]> By: tripacerdriver@livejournal http://blog.xcski.com/2007/03/15/openid-weirdness#comment-18674 tripacerdriver@livejournal Thu, 15 Mar 2007 15:57:16 +0000 http://blog.xcski.com/2007/03/15/openid-weirdness#comment-18674 I just wanted to see if mine worked... I just wanted to see if mine worked…

]]>