Spring Security
  1. Spring Security
  2. SEC-1815

Samples - OpenId - Google Login - Hostname in Certificate didn't match

    Details

    • Type: Defect Defect
    • Status: Closed
    • Priority: Minor Minor
    • Resolution: Complete
    • Affects Version/s: 3.1.0.RC3
    • Fix Version/s: 3.1.0
    • Component/s: OpenID
    • Environment:
      Windows 7 64 Bit - Java 1.6.0_27 64 Bit

      Description

      This is the text from my Spring Forum post referenced in this issue:

      I am trying to run the OpenId sample from the latest version in git. I start it up using 'gradle jettyRun' and proceed to localhost:8080. Once I get there, I click on google as my account provider and receive the following error message in the browser:

      "Your login attempt was not successful, try again.

      Reason: Unable to process claimed identity 'https://www.google.com/accounts/o8/id'."

      There is a stack trace on the console - the main points are here:

      o.s.s.o.OpenIDAuthenticationFilter - Failed to consume claimedIdentity: https://www.google.com/accounts/o8/id org.springframework.security.openid.OpenIDConsumer Exception: Error during discovery
      Caused by: org.openid4java.discovery.yadis.YadisException: 0x704: I/O transport error: hostname in certificate didn't match: <www.google.com/74.125.225.82> != <www.google.com>
      Caused by: javax.net.ssl.SSLException: hostname in certificate didn't match: <www.google.com/74.125.225.82> != <www.google.com>

      I've attached the full stacktrace to this post rather than pollute the entire post with exceptions.

      Could someone please help me? I've been trying to learn how to use Spring Security with Google as an OpenId provider, and if I can't get the sample application working, I don't have much hope for being able to do it on my own.

      I am using Java 1.6.0_27 64 bit and this is happening on both of my Windows 7 64 bit computers.

      Any help would be greatly appreciated.

        Activity

        Hide
        Chris Shellenbarger added a comment -

        A fix was posted on the forum - it was to revert the version of org.apache.httpcomponents:httpclient to 4.1.1 - the related issue is at https://issues.apache.org/jira/browse/HTTPCLIENT-1118

        Show
        Chris Shellenbarger added a comment - A fix was posted on the forum - it was to revert the version of org.apache.httpcomponents:httpclient to 4.1.1 - the related issue is at https://issues.apache.org/jira/browse/HTTPCLIENT-1118
        Hide
        Rob Winch added a comment -

        This is an issue with openid4java's usage of HttpClient 4.1.2. See http://code.google.com/p/openid4java/issues/detail?id=162 To fix it I have reverted back to HttpClient 4.1.1

        Show
        Rob Winch added a comment - This is an issue with openid4java's usage of HttpClient 4.1.2. See http://code.google.com/p/openid4java/issues/detail?id=162 To fix it I have reverted back to HttpClient 4.1.1

          People

          • Assignee:
            Rob Winch
            Reporter:
            Chris Shellenbarger
          • Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved: