-
Notifications
You must be signed in to change notification settings - Fork 8
Orbit Lab OpenID
Tom Mitchell edited this page Jan 6, 2016
·
1 revision
The ORBIT Lab uses mod_auth_openid for its relying party implementation. There appears to be a bug in mod_auth_openid that causes it to get out of sync with the portal's OpenID server when the portal is restarted. This has to do with cached encryption nonces.
The workaround is for an ORBIT administrator to manually delete mod_auth_openid's cached nonces:
rm /tmp/mod_auth_openid.db
This causes mod_auth_openid to fetch the current nonces from the portal server.