Loading Profile...
Should a relying party resolve filenames?
I am trying to develop a site that will be an OpenID relying party. I am using the C# library DotNetOpenAuth (dotnetopenauth.net). I am a bit confused about what should actually be the key to identify an OpenID user. I have two OpenID URL's, both of wich are using delegation, but one of them lets me identify as http://example.com/index.html and the other lets me identify as http://example.com/. I type in the OpenID URL I never type the protocol nor the file name, just something like example.com.
The difference is that one of the servers is returning the header field content-location in the HTTP response, something like:
Content-Location: http://example.com/index.html
So my question is which one is the correct one for the library to use? Should the library resolve the content location of the page served by default and use it as the key for the user?
Thank you
The difference is that one of the servers is returning the header field content-location in the HTTP response, something like:
Content-Location: http://example.com/index.html
So my question is which one is the correct one for the library to use? Should the library resolve the content location of the page served by default and use it as the key for the user?
Thank you
I’m looking for answers
1
person has this question
I have this question, too!
Tell me when someone answers.
The more people who ask this question, the more it gets noticed.
The more people who ask this question, the more it gets noticed.
