From 3e086c84a2f826c77322a5dabdff1277eeb7152c Mon Sep 17 00:00:00 2001
From: "http://www.cse.unsw.edu.au/~willu/"
 <http://www.cse.unsw.edu.au/~willu/@web>
Date: Fri, 14 Aug 2009 19:10:57 -0400
Subject: [PATCH] Related comments on openid redirection.

---
 doc/forum/google_openid_broken__63__.mdwn | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/doc/forum/google_openid_broken__63__.mdwn b/doc/forum/google_openid_broken__63__.mdwn
index 0e0d8d118..1be9d0487 100644
--- a/doc/forum/google_openid_broken__63__.mdwn
+++ b/doc/forum/google_openid_broken__63__.mdwn
@@ -16,3 +16,15 @@ http://openid-provider.appspot.com/larrylud
 > <https://rt.cpan.org/Ticket/Display.html?id=48728> on the Openid perl
 > module. It's a pretty easy fix, so I hope upstream will fix it quickly.
 > --[[Joey]] 
+
+>> A little more information here:  I'm using that same openid provider at the moment.  Note that
+>> that provider isn't google - it is someone using the google API to authenticate.  I normally have it
+>> set up as a redirect from my home page (which means I can change providers easily).
+
+    <link rel="openid.server" href="http://openid-provider.appspot.com/will.uther">
+    <link rel="openid.delegate" href="http://openid-provider.appspot.com/will.uther">
+
+>> In that mode it works (I used it to log in to make this edit).  However, when I try the openid
+>> URL directly, it doesn't work.  I think there is something weird with re-direction.  I hope this
+>> isn't a more general security hole.
+>> -- [[Will]]
-- 
2.45.0