Issue612

Title Unable to log in with OpenId, "Not authenticated (no session)"
Priority bug Status unread
Superseder Nosy List JDLH
Assigned To Topics

Created on 2017-02-03.05:57:07 by JDLH, last changed 2017-02-03.05:57:07 by JDLH.

Messages
msg3245 (view) Author: JDLH Date: 2017-02-03.05:57:06
I log in via OpenID as http://id.jdlh.com/jdlh . When I try to log in at the Python Issues Tracker http://bugs.python.org/, it fails with an error message,
    Not authenticated (no session)

To reproduce:
• Browse to http://bugs.python.org/. The main bug tracker page appears. In the left pane are two text entry boxes, the upper with an OpenID logo in it.
• In the first text box, enter http://id.jdlh.com/jdlh
• Don't touch the second text box.
• Press the [Login] button.
• The first time I did this, the login UI of my delegated provider, openid.stackexchange.com, appeared, and I logged in normally.  Subsequently, this step did not occur. 
• The main bug tracker page appears again, with a looong URL beginning:
     http://bugs.python.org/?@action=openid_return....

Expected behaviour:
• I am logged in with a tracker user based on my OpenID.
• No error messages.

Observed behaviour:
• An error message, in white letters on a red background, appears at the top of the screen. It reads, 
    Not authenticated (no session)
• I am not logged in.

Discussion:
This bug is identical to http://psf.upfronthosting.co.za/roundup/meta/issue440 from 2013. This was reported on 14. March 2013, and on 2. April of that year, the reporter said that it worked again.  The issue has no details about what might have caused the problem to occur or to stop.

I have worked around this bug by registering my own user ID, as "JDLH".
 
I am using Firefox 51.0.1 (64-bit) on a Mac OS X 10.10.5 OS.

The more complete URL is: 
http://bugs.python.org/?@action=openid_return&__came_from=&openid.claimed_id=http%3A%2F%2Fid.jdlh.com%2Fjdlh&openid.identity=https%3A%2F%2Fopenid.stackexchange.com%2Fuser%2F&;
   [...snip...]
&openid.op_endpoint=https%3A%2F%2Fopenid.stackexchange.com%2Fopenid%2Fprovider&openid.return_to=http%3A%2F%2Fbugs.python.org%2F%3F%40action%3Dopenid_return%26__came_from%3D&openid.response_nonce=2017-02-03T05%3A[...snip...]&openid.mode=id_res&openid.ns=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0

(I snipped out some opaque data from the URL, for greater security, though if I understand OpenID correctly, that data isn't sensitive anyway.)
History
Date User Action Args
2017-02-03 05:57:08JDLHcreate