OpenId Module: FEUser redirected to admin to link provider

[ozgurluk2000]

Hello,

I've installed the excellent OpenId module (v1.1.0) , on my CMSMS (v1.9.4.2) and it works OK to link OpenId providers to frontend users and log in then, BUT linking provider only works if I'm logged in the CMSMS admin panel at the same time.

Does it mean that regular frontend user can't link OpenId providers by their own ?

The use case I see:
- an already registered frontend user logs in using the standard login/password scheme
- he choses a OpenId provider (here: myOpenId)
- he completes the MyOpenId authentication
- and then, he's redirected to an admin panel URL: http://.../admin/moduleinterface.php?mact=OpenID,cntnt01,authenticate,1&...
- here, if this regular fe user doesn't have access to the CMSMS admin panel (somehow normal for a fe user...), he's redirected to the admin login console and the OpenId provider linking doesn't occur...
- if he is already logged to the CMSMS admin panel, the authentication can complete and the OpenId provider linking occur.

Is there a way to let frontend users link OpenId provider by their own, without access to the CMSMS admin panel ?

Thanks for your help/answers

[henrik]

Yes, regular non-admin Frontend users are supposed to be able to register a provider without access to the admin panel (that's the whole idea

I did some testing on my own installation and managed to reproduce at least part of the problem you're experiencing. The default assumption for CMSMS seems to be to always use the admin module interface (that does require admin login) instead of the regular one if no return page ID is present. In this scenario, however, that is not what we want.

I'll try to find the time during the week to tweek the implementation a bit to get around this, the module interface is something that i prefer to keep since it solves some other edge cases when using conditional logic in the page. I'll keep you posted.

[ozgurluk2000]

Hello Henrik,

thanks for the quick answer !

Yes, regular non-admin Frontend users are supposed to be able to register a provider without access to the admin panel (that's the whole idea

I'm happy with this very good news

I did some testing on my own installation and managed to reproduce at least part of the problem you're experiencing. The default assumption for CMSMS seems to be to always use the admin module interface (that does require admin login) instead of the regular one if no return page ID is present. In this scenario, however, that is not what we want.

I removed the pretty URL to get back to standard configuration with index.php?page=somepagename. But still the same.
I saw that the admin module interface reference is present in the first HTTP 302 response I get in the provider association form, which is like that:

http://www.myopenid.com/server?openid.assoc_handle=...
&openid.ax.mode=fetch_request&openid.ax.required=ext0
&openid.ax.type.ext0=http%3A%2F%2Faxschema.org%2Fcontact%2Femail
&openid.identity=http%3A%2F%2Fxxxxx.myopenid.com%2F&openid.mode=checkid_setup
&openid.return_to=http%3A%2F%2Fyyyyy.fr%2Fcmsms%2Fadmin%2Fmoduleinterface.php...

The POSTed parameters (to http://yyy.fr/cmsms/index.php?page=login) are:
mact:OpenID,mc0639,login,0
mc0639returnid:56
openid_username:
openid_identifier:http://xxx.myopenid.com/

I'll try to find the time during the week to tweek the implementation a bit to get around this, the module interface is something that i prefer to keep since it solves some other edge cases when using conditional logic in the page. I'll keep you posted.

ok!

[henrik]

I've uploaded a 1.2.0 release that I hope will solve your admin redirect issues. Give it a try and let me know how it goes.

/Henrik

[ozgurluk2000]

Hello Henrik,

thanks for the module update, it now works with the 1.2.1 version !
issue SOLVED

Regards