Difference between revisions of "Why doesn't OpenID work with version 1.5.9?"
From Joomla! Documentation
Dextercowley (talk | contribs) m (Joomla 1.5.9 OpenID Issue moved to Why doesn't OpenID work with version 1.5.9?: Putting in FAQ format for consistency) |
|
(No difference)
| |
Revision as of 00:11, 12 January 2009
OpenID transition problem - with updated plugin users start to get message "You do not have access to the administrator section of this site".
In recently upgraded OpenID plugin, which now supports OpenID 2.0 authentication there is a 'Convert Old Usernames' option (set to 'Yes' by default). It should auto-convert old usernames in style 'username.myopenid.com' (1) to 'http://username.myopenid.com/' (2). But as per internal implementation, conversion works only if user's password field in database is empty. But as far as I was able to simulate, this field is never empty even for new users with blank passwords. Therefore, conversion is never started. With upgrade to Joomla 1.5.9 OpenID users with usernames in form (1) lose ability to log into Joomla - because of the password=' ' criteria, database of users is always searched for (2) (returned by OpenID provider), instead of falling back to search for (1) (entered by user). Thus despite successful authentication of user at OpenID provider, upon his return to Joomla login page error message appears "You do not have access to the administrator section of this site".
Don't forget to backup your site before corrections.
- WORKAROUND 1 (in admin user interface, but may not work for all users):
In administrator user interface, manually correct usernames of OpenID users to correct form (2). But the problem is that form (2) may not be necessarily known to you.
- WORKAROUND 2 (in database administration user interface, reliably resolves the problem):
In database table <yourprefix>_users (e.g. jos_users) clear password field for each OpenID user. They will be allowed to log in seamlessly and their usernames will be corrected automatically as originally planned (when 'Convert Old Usernames' option is set to 'Yes').
- WORKAROUND 3:
Don't upgrade your OpenID plugin until fix is published (don't copy files in path /plugins/authentication). Rely on functionality of old plugin and accept its limitations.