Subscribe

• Subscribe by Email
• Subscribe using any feed reader!
• Subscribe via RSS
• Subscribe to comments via RSS

Recent Posts

• ebuddy link
• TinyURL adds Custom alias
• Tesseract
• Lucene
• Getty Images are not Photoshopped
• MSN backs off on plans to nuke DRM-locked MSN Music collections
• My First MediaPlayer Test4
• Twingly
• Testing Twingly
• nmake
• Yahoo!
• Apple Software Update 2.1 crash
• RepRap makes its first complete working replicated copy!
• BlogTalkRadio
• Military Supercomputer Sets Record
• Buy your own Relakks service called SecureIX
• Windows XP gone next month ?
• Bob Dylan says Barack Obama is ‘changin’ America
• Milo Art 2
• My First MediaPlayer Test3

Categories

• Blogs
• Gadget
• Import
• Links
• Local News
• MARTINIC
• News
• nRing DB
• Perl
• Photos
• Pictures
• Podcast
• Uncategorized
• Video
• Web Development
• XSall

Archives

• July 2008
• June 2008
• May 2008
• April 2008
• March 2008
• February 2008
• January 2008
• December 2007
• November 2007
• October 2007
• September 2007
• July 2007
• June 2007

Links

• kacokijk
• My delicious page

Meta

• Log in

OpenID is looking for a new Executive Director

May 28th, 2008   Tagged OpenID, OpenSignOn
Posted in News, Web Development, XSall  

This seems more like fired for not pushing OpenID hard enough. The job is still vacant. It is a pity I am already the Executive Director of OpenSignOn

XSall login test

May 6th, 2008   Tagged login, PHP
Posted in Web Development, XSall  

Joren just created a WordPress php XSall ‘Login’. To leave a comment you must be logged in via the XSall login button on the upper right corner. We will try to create more ’Account’ options so everybody can leave comments.

OpenSignOn

May 5th, 2008   Tagged Domains
Posted in Web Development, XSall  

Working on the XSall OSO I just have been able to register OpenSignOn.com. It is just a name but it makes me happy to own it. More on XSall soon.

Clickpass OpenID

March 12th, 2008   Tagged Clickpass, XSall
Posted in Web Development, XSall  

Clickpass OpenID launched yesterday. They seem to make OpenID more usable. This is good. Perhaps we can add them as an XSall ID Provider.

Are IP addresses Personal?

February 29th, 2008   Tagged Google, IP numbers
Posted in Web Development, XSall  

Because we are building a Browser Based Authentication (BBA) system I came across this interesting article by Google. User trust is the most important factor of the BBA. We already have, with some regrets, striped some great features from the system because it would endanger the users privacy. The BBA will not use IP addresses to identify people and will safeguard the users privacy. More about the BBA when the system is ready.

OpenID 2.0

December 8th, 2007   Tagged OpenID
Posted in Web Development, XSall  

To go with the flow I think enabling XSall with OpenID will be a good thing. Read what Arthur Bergman has to say about OpenID here. Hulu will only let you see a video if your OpenID ends on the letter “U” or “S” ;-)

Perl HTTP_AUTHORIZATION test

October 10th, 2007   Tagged Apache, Authentication, Perl, XSall
Posted in Perl, XSall  

Theo wrote a HTTP_AUTHORIZATION test. If you have mod_rewrite enabled on your Apache 2 server put the following files in some folder. If you go to index.cgi from your browser it will show the default login box. Just enter  some username / password and they will be shown on the page. Very cool Theo. Thanks.

This will help me create the first XSall tests without using mod_perl. If someone likes to create a Digest example please do? I like to test it and perhaps blog about it.

---

.htaccess

RewriteEngine on
RewriteRule \.cgi$ - [E=HTTP_AUTHORIZATION:%{HTTP:AUTHORIZATION},L]

---

index.cgi

#!/usr/bin/perl

use strict;
use warnings;
use CGI ‘:cgi’;
use MIME::Base64;

binmode STDOUT;

my ($user, $password);
my $auth = $ENV{HTTP_AUTHORIZATION};

if(defined$auth and $auth =~ /^Basic\s+/) {
  $_ = decode_base64($’);
 ($user, $password) = split(‘:’); # What is the username or password contains a “:”?!
}

if(!defined($user) or $user eq ‘‘) {
 print “Status: 401\r\n”;
 print “WWW-Authenticate: Basic “;
 print “realm=\”testers\@taletn.com\”\r\n“;
 print “Content-Type: text/plain\r\n”;
 print “\r\n”;
 print “401\n”;
 exit 0;
}

print “Content-Type: text/plain\r\n”;
print “\r\n”;
print “Authorization: $auth\n”;
print “User: $user\n”;
print “Password: $password\n”;
exit 0;

Access $ENV{’HTTP_AUTHORIZATION’} from Perl/CGI update

October 8th, 2007   Tagged Apache, Authentication, Perl, XSall
Posted in Perl, XSall  

I wrote about the code from Munzli yesterday. It seems there where some copy and paste errors on his Blog. When I enabled mod_rewrite on my Apache 2 test PC Munzli’s code was not working even when I changed ‘o’ to ‘on’. The code that works for me is:

<ifmodule mod_rewrite.c>
 RewriteEngine on
 RewriteRule myscript.cgi - [E=HTTP_AUTHORIZATION:%{HTTP:AUTHORIZATION},L]
</ifmodule>

You can also write RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:AUTHORIZATION},L] to get it to work on any script. I still need to read about the PT or QSA you can put before the ,L.

Access $ENV{’HTTP_AUTHORIZATION’} from Perl/CGI

October 7th, 2007   Tagged Apache, Perl, XSall
Posted in Links, Perl, XSall  

It seems this change in the Apache 2 http.conf :

<ifmodule>
RewriteEngine o
RewriteRule ^scriptname(.*) scriptname$1 [E=HTTP_AUTHORIZATION:%{HTTP:AUTHORIZATION},PT,L]
</ifmodule>

will give me access to the $ENV{'HTTP_AUTHORIZATION'}Environment Variable in perl without using Mod-Perl. I still have to try it but this looks promising. Thanks Munzli. More here.

OAuth Core 1.0 Draft 4 was released October 3, 2007

October 6th, 2007   Tagged Authentication, XSall
Posted in Links, XSall  

It seems they forgot Domain Clouds like I will use for the XSall Authentication. Still it is some interesting draft to read.