T-OpenID Server Installation

Tansu Alpcan
2008.5.6 v 0.1

Prerequisites:

1) INSTALL a recent version of Turbogears.
Check www.turbogears.org for details

2) INSTALL JanRain Python OpenID library ver. 2.x.x
http://www.openidenabled.com/python-openid/

3) INSTALL Python Cryptography Toolkit
It is easier to install the one that comes with your distribution.
As alternative and for doc see: 
http://www.amk.ca/python/code/crypto.html

3) CONFIGURATION:

a) In app.cfg, make sure that this is uncommented
# Set session or cookie
session_filter.on = True

b) In tanutils.py

i) Generate your own public/private key using the Crypto toolkit:
(e.g. using ipython)
In [2]: from Crypto.PublicKey import RSA
In [3]: from Crypto.Util import randpool
In [4]: a=randpool.RandomPool()
In [5]: key=RSA.generate(128,a.get_bytes)
Update the global variables in tanutils.py accordingly.

ii) For the Firefox Client we need the public hash. Get it conveniently from:
http://yourserver/oid/publickeyhash
(for example:  http://localhost:8080/oid/publickeyhash)


iii) update the server url in tanutils.py to your current one.
[Recommended] See for possible configuration of turbogears behind Apache
http://docs.turbogears.org/1.0/Deployment
http://docs.turbogears.org/1.0/BehindApache

iv) [Optional] TGCaptcha configuration
- install TGCaptcha (can be a bit tricky)
http://code.google.com/p/tgcaptcha/
- In app.cfg, update random key
# For Captcha
tgcaptcha.key = "somethingrandomhere"
- follow instructions in headers section of controllers.py

c) [OPTIONAL] In dev.cfg, set socket to one of your liking by uncommenting:
# server.socket_port=8080

4) INSTALL the Firefox client
Simply install the Firefox add-on by
File-->Open File-->topenid.xpi
and set the preferences of the extension.

5) TEST your installation
there is a default user in the system for convenience:
username: alper
password: taaa

You can test this with the JanRain example consumer application
(must already be somewhere as a result of step 2 above)
~/python-openid-2.1.1/examples/consumer.py