Thread

Wondering if anyone has used RPX https://rpxnow.com/ or other service for integrating a single-sign on solution for EE by way of openid, etc. Also, does anyone have any idea of this sort of thing would help bridge the gap between EE and (the confounding) amember pro?

have a nice weekend

This looks very interesting. OpenID seems to be a way to use a single ID across many sites. The problem there is that it’s yet another LoginID and Password to remember, and then, not too many sites are plugged into OpenID. RPX seems promising on the other side of the coin by grabbing a huge number of users who already have an ID with one of the major sites (probably numbers in the hundreds of millions). RPX would seem to be the better deal because OpenID is included.

Of course, there’s that pesky price tag.

Is this something that makes sense as a feature request for EE 2.x?

I’ve played around with RPX and there’s one thing I’ll say for it, it’s easy to get to grips with - even though their own PHP code example didn’t work because they got the CURL options wrong! The thing I didn’t like was the login option - not configurable at all so that reduces it’s usability.

Things may have changed in the last couple of weeks or so since I understand that it is under development.

Cheers

Dry

I’ve played around with RPX and there’s one thing I’ll say for it, it’s easy to get to grips with - even though their own PHP code example didn’t work because they got the CURL options wrong! The thing I didn’t like was the login option - not configurable at all so that reduces it’s usability.

What did you do to get it work?

Hi RonnieMc,

Their callback URL is a secure one but they haven’t (or at least hadn’t - haven’t looked in a while) set the CURL secure options so it would never work. Once those were set then it worked flawlessly.

Cheers

Dry

Drylouvre -

Any chance you can share the revised RPX.php file or at least the snippet of line(s) you tweaked? I’m having issues getting it to work. Examples help.

Thanks!

@Drylouvre
i’m using joomla. now i want to integrate the rpx-application into.
the demo php-file RPX.php want not work. and i don’t understand the file.
could you please publish your file?
thanks a lot. 😊

Their callback URL is a secure one but they haven’t (or at least hadn’t - haven’t looked in a while) set the CURL secure options so it would never work. Once those were set then it worked flawlessly.

Sharing with friends and cohorts is a good thing.

😉

Hi,

Sorry. Wasn’t paying attention to this. I’ve ditched my code since I knew I didn’t want to work with it. I’m pretty sure though that the only thing needed was to set curl SSL options. If I get time I’ll try and recreate it but you could try adding:

curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, false);
curl_setopt($curl, CURLOPT_SSL_VERIFYHOST , false);

to the _post function in RPX.php and then making sure that when you create a new RPX object using the examples given that the callback URL is https rather than http as in their example. Make sure that you’ve got error reporting switched on in your templates and you should an explicit SSL error if you’ve not got it right.

Cheers

Dry

Hmm. So that helps a ton, but I think I am still doing something wrong.

The idea is that once I get this working, I’ll be writing a Wordpress plugin for the community to use freely…and to help speed my work up a bit 😊

I’m getting passed information, but it’s not entirely making sense yet.

Usage: token=e7dfbf908s7f4d550e322a198723a26b1e2693a9fb1cf53e2 <API key> <RPX service URL> <map|unmap|mappings> [param ...]
API methods:
  map <identifier>  
  unmap <identifier>  
  mappings 

Any help is appreciated. I guess what I’m hoping for is some way to get the authenticated info into a session. How do I know that what I was returned (above) is what I’m supposed to get. If bad login, would I not have been given a token string?

Once I know this, I can set a session and validate the rest through PHP on my own.

Thanks guys!

I’m sorry, you could tattoo what I know about WordPress onto the inside of my eyelid (in 20pt type)! WRT to RPX though, what API call did you send? It looks like you’re trying out the account mapping stuff and I’ve never even attempted to use that.

Cheers

Dry

Honestly. I don’t mind if I don’t get anything back. But I followed their quick-start guide and am not sure if I’m using it correctly. If what I’m getting back is accurate and valid/correct, etc.

I don’t need data, but I need to know if they’ve actually logged in so that I may do additional logic on the PHP side 😊

Also, I didn’t mean to lead on that it’s a Wordpress issue I’m having. In short, I don’t know how to tell if RPX is logging in or not in the PHP code.

i wan’t to make a opensource joomla-plugin.
but i don’t unterstand the quick-start guide, too.
must allow_url_fopen be enabled on my server?

Well, it seems like they have a simulator with output that I SHOULD be expecting to get, but I haven’t been able to get it yet   LOL

That’s why I think I’m doing something wrong. Even though it doesn’t seem to spit out any errors.

It’s been 7 months since this thread trailed off. Has anyone had clear success using RPX on an EE site? Any pointers and specific tips would be greatly appreciated.