http://localhost/ticket/940 <p> This has been noted twice in the last couple of weeks. </p> <p> Checking around my guess is this is due to someone logging in to www.ckan.net and ckan.net. Google generates openid based on the RP (requesting party) which is the requesting domain url unless the openid.realm is set. See: </p> <ul><li><a class="ext-link" href="http://groups.google.com/group/google-federated-login-api/web/the-most-important-technical-issue-in-using-the-google-accounts-api?pli=1"><span class="icon">​</span>http://groups.google.com/group/google-federated-login-api/web/the-most-important-technical-issue-in-using-the-google-accounts-api?pli=1</a> </li><li><a class="ext-link" href="http://stackoverflow.com/questions/3549953/how-to-get-unique-identifier-from-openid-google"><span class="icon">​</span>http://stackoverflow.com/questions/3549953/how-to-get-unique-identifier-from-openid-google</a> </li></ul><p> To fix this we should set the openid.realm (not sure how atm). </p> <p> If this is not possible an alternative is to make sure we redirect all users to a single site url (perhaps using ckan config option site_url, or doing this in apache). </p> <p> Cost: 1h </p> en-us http://assets.okfn.org/p/ckan/img/ckan_logo_shortname.png http://localhost/ticket/940 Trac 0.12.3 pudo Wed, 02 Feb 2011 14:20:33 GMT http://localhost/ticket/940#comment:1 http://localhost/ticket/940#comment:1 <ul> <li><strong>status</strong> changed from <em>new</em> to <em>assigned</em> </li> </ul> <p> It seems like even with openid.realm set we could only create two "zones": *.ckan.net and ckan.net. We do not want *.ckan.net because it interferes with ccCKANs. </p> <p> My vote for the moment would be to 303 www.ckan.net to ckan.net. </p> Ticket rgrp Fri, 04 Feb 2011 08:21:39 GMT http://localhost/ticket/940#comment:2 http://localhost/ticket/940#comment:2 <p> I agree with pudo (though it would not be the end of the world if these were treated as the same realm!). I've now created a permanent redirect for www.ckan.net to ckan.net. </p> <pre class="wiki"> RewriteEngine on RewriteCond %{HTTP_HOST} ^www\.ckan\.net$ [NC] RewriteRule ^(.*)$ http://ckan.net$1 [R=301,L] </pre> Ticket rgrp Mon, 07 Feb 2011 09:42:28 GMT http://localhost/ticket/940#comment:3 http://localhost/ticket/940#comment:3 <ul> <li><strong>status</strong> changed from <em>assigned</em> to <em>closed</em> </li> <li><strong>resolution</strong> set to <em>wontfix</em> </li> </ul> <p> Listing as wontfix now since: </p> <ol><li>Have workaround </li><li>Better for most sites to converge on a single domain anyway (for SEO etc) -- via std redirect approach or otherwise </li><li>Seems problematic to fix this via openid realm </li></ol> Ticket