I see several URLs returned when authenticating with Google
LightOpenID Object ( [returnUrl] => http://ikeyless/account/login/ [required] => Array ( ) [optional] => Array ( ) [verify_perr] => [capath] => [identity:LightOpenID:private] => [claimed_id:LightOpenID:private] => https://www.google.com/accounts/o8/id?id=[RANDOM_STRING] [server:protected] => https://www.google.com/accounts/o8/ud [version:protected] => 2 [trustRoot:protected] => http://ikeyless [aliases:protected] => [identifier_select:protected] => [ax:protected] => 1 [sreg:protected] => [data:protected] => Array ( [openid_identifier] => https://www.google.com/accounts/o8/id [cmd] => account [act] => login [openid_ns] => http://specs.openid.net/auth/2.0 [openid_mode] => id_res [openid_op_endpoint] => https://www.google.com/accounts/o8/ud [openid_response_nonce] => 2010-11-16T16:49:30ZREDpfCsz7bwPsg [openid_return_to] => http://ikeyless/account/login/ [openid_assoc_handle] => [RANDOM_STRING] [openid_signed] => op_endpoint,claimed_id,identity,return_to,response_nonce,assoc_handle [openid_sig] => [RANDOM_STRING] [openid_identity] => https://www.google.com/accounts/o8/id?id=[RANDOM_STRING] [openid_claimed_id] => https://www.google.com/accounts/o8/id?id=[RANDOM_STRING] )
What should I store locally and compare with OpenID user verification?
source share