Reputation: 87047
How does a server discover an OpenId Provider's authentication's endpoint?
If a person enters in their OpenId authentication provider as: http://www.myopenid.com ... how can I discover that the real endpoint I need to 302 redirect them to is https://www.myopenid.com/server ?
BTW: I only know https://www.myopenid.com/server is the endpoint because I've been manually snopping the traffic in my browser (eg. when I attempt to login in on StackOverflow via their MyOpenId icon/pic).
Any clues, please?
Upvotes: 0
Views: 71
Answers (1)
Reputation: 1951
OpenID 2.0 Specification explains the discovery process [1]. There are three discovery methods discussed in the specification.
- XRI Resulution
- Yadis Protocol
- HTML Based Discovery
The libraries you are using to implement the OpenID Relying Party should be supporting these methods, so they would calculate the OP endpoint.
[1]. http://openid.net/specs/openid-authentication-2_0.html#discovery
Upvotes: 1
Related Questions
- How does token endpoint knows about user authenticated during authorization code generation
- IdentityServer4 - how does the API Server communicate with Identity Server
- How does an OpenID Provider authenticates an end-user?
- How authorization endpoint knows user is logged in?
- oauth2 - How does resource server know if user authorized?
- How to dynamically discover endpoint
- How are access tokens distinguished between resource providers in OpenID Connect?
- Where exactly is REST authentication used?
- OpenID endpoints
- what does openid provider return during discovery?