DotNetOpenAuth: Message signature was incorrect

Question

I\'m getting a \"Message signature was incorrect\" exception when trying to authenticate with MyOpenID and Yahoo.

I\'m using pretty much the ASP.NET MVC sample code

Answer 1

Turns out this was an issue with using DotNetOpenAuth in a web farm environment.

When you create your OpenIdRelyingParty make sure you pass null in the constructor.

This puts your web site into OpenID stateless or 'dumb' mode. It's slightly slower for users to log in (if you even notice) but you avoid having to write an IRelyingPartyApplicationStore to allow DotNetOpenAuth to work across your farm;

var openIdRelyingParty = new OpenIdRelyingParty(null);