<div dir="ltr">
<p class="MsoNormal"><span style lang="EN-US">I thought
that Facebook was using OpenId Connect, hence they are listed as one of the
companies that have helped to develop the protocol.</span></p>
</div><div class="gmail_extra"><br><div class="gmail_quote">On Tue, Jan 20, 2015 at 11:36 AM, Justin Richer <span dir="ltr"><<a href="mailto:jricher@mit.edu" target="_blank">jricher@mit.edu</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">It won't work without major rewrites: Facebook doesn't implement OpenID<br>
Connect, they have their own proprietary identity protocol, Facebook<br>
Connect.<br>
<span class="HOEnZb"><font color="#888888"><br>
-- Justin<br>
</font></span><div class="HOEnZb"><div class="h5"><br>
On 1/20/2015 8:35 AM, dejw wrote:<br>
> Just curious, have anyone of you tried to test the same thing with Facebook?<br>
><br>
> Dawid<br>
><br>
> On 2015-01-20 13:52, Justin Richer wrote:<br>
>> I've added a note to the wiki page that the code only works in the 1.2<br>
>> development branch at this time (due to Google's nonce bug).<br>
>><br>
>> I haven't done testing against Google personally but I know of several<br>
>> who have successfully made it work, the original thread is in the issue<br>
>> tracker here:<br>
>><br>
>> <a href="https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server/issues/683" target="_blank">https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server/issues/683</a><br>
>><br>
>><br>
>> Perhaps that will have some notes you can use. If there's anything else<br>
>> missing from the wiki page, please help us fix it!<br>
>><br>
>> -- Justin<br>
>><br>
>> On 1/19/2015 3:45 PM, dejw wrote:<br>
>>> OK I am one step further - it turned out that after upgrading jars i<br>
>>> simple-web-app to have support for enableNonce parameter some of it was<br>
>>> missing. Another this was that client secret also must be set. Now I do<br>
>>> not have the error as previously.<br>
>>> For some reason I can't get Google Login form and I get logged in<br>
>>> somehow without it but it isn't possible to get user info (what is<br>
>>> indeed logical consequence). I have to check why I can't get login form<br>
>>> displayed (this step is missing for me now).<br>
>>> Have some of you tested it and got the form displayed properly?<br>
>>><br>
>>> Best regards,<br>
>>> Dawid<br>
>>><br>
>>> On 2015-01-18 21:27, dejw wrote:<br>
>>>> Hello,<br>
>>>><br>
>>>> I tried to reconfigure simple-web-app to make it work with Google<br>
>>>> Accounts. I tried to apply this manual:<br>
>>>><br>
>>>> <a href="https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server/wiki/Sample-Static-Configuration-for-using-Google-Authentication" target="_blank">https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server/wiki/Sample-Static-Configuration-for-using-Google-Authentication</a><br>
>>>><br>
>>>><br>
>>>> Unfortunately it didn't work for me and I got such error:<br>
>>>><br>
>>>> java.lang.NullPointerException<br>
>>>> org.mitre.openid.connect.client.service.impl.StaticClientConfigurationService.getClientConfiguration(StaticClientConfigurationService.java:65)<br>
>>>><br>
>>>> org.mitre.openid.connect.client.OIDCAuthenticationFilter.handleAuthorizationCodeResponse(OIDCAuthenticationFilter.java:294)<br>
>>>><br>
>>>> org.mitre.openid.connect.client.OIDCAuthenticationFilter.attemptAuthentication(OIDCAuthenticationFilter.java:170)<br>
>>>><br>
>>>> org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter.doFilter(AbstractAuthenticationProcessingFilter.java:211)<br>
>>>><br>
>>>> org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)<br>
>>>><br>
>>>><br>
>>>> It might be my error so I'd like to ask if it is possible to get some<br>
>>>> example servlet-context.xml file which worked for anybody?<br>
>>>><br>
>>>> Best regards,<br>
>>>> Dawid Szejnfeld<br>
>>>> _______________________________________________<br>
>>>> mitreid-connect mailing list<br>
>>>> <a href="mailto:mitreid-connect@mit.edu">mitreid-connect@mit.edu</a><br>
>>>> <a href="http://mailman.mit.edu/mailman/listinfo/mitreid-connect" target="_blank">http://mailman.mit.edu/mailman/listinfo/mitreid-connect</a><br>
>>>><br>
>>> _______________________________________________<br>
>>> mitreid-connect mailing list<br>
>>> <a href="mailto:mitreid-connect@mit.edu">mitreid-connect@mit.edu</a><br>
>>> <a href="http://mailman.mit.edu/mailman/listinfo/mitreid-connect" target="_blank">http://mailman.mit.edu/mailman/listinfo/mitreid-connect</a><br>
> _______________________________________________<br>
> mitreid-connect mailing list<br>
> <a href="mailto:mitreid-connect@mit.edu">mitreid-connect@mit.edu</a><br>
> <a href="http://mailman.mit.edu/mailman/listinfo/mitreid-connect" target="_blank">http://mailman.mit.edu/mailman/listinfo/mitreid-connect</a><br>
<br>
_______________________________________________<br>
mitreid-connect mailing list<br>
<a href="mailto:mitreid-connect@mit.edu">mitreid-connect@mit.edu</a><br>
<a href="http://mailman.mit.edu/mailman/listinfo/mitreid-connect" target="_blank">http://mailman.mit.edu/mailman/listinfo/mitreid-connect</a><br>
</div></div></blockquote></div><br><br clear="all"><br>-- <br><div class="gmail_signature"><div dir="ltr">Rafael Weingärtner</div></div>
</div>