I am trying to make sense of the way google openid works to no avail for the moment. I have a google app for business with its own domain and an email there. I also have my personal gmail account.
When I log in into both accounts then try to authenticate on a random website with google's openid url https://www.google.com/accounts/o8/ I am asked to choose between my gmail and my domain email. whichever I choose, the auth succeeds (I was able to create 2 different accounts on stackoverflow, one for both emails). I would like to find an URL which "autoselects" the email which belongs to domain.com and ignores any other.
Reading up on the way google's authentication works ( https://developers.google.com/google-apps/sso/openid_reference_implementation , https://sites.google.com/site/oauthgoog/UXFedLogin/summary and https://sites.google.com/site/oauthgoog/fedlogininterp/openiddiscovery ), I tried authenticating with https://www.google.com/accounts/o8/site-xrds?hd=domain.com then with https://www.google.com/accounts/o8/site-xrds?ns=2&hd=domain.com this does redirect me to google's auth and only allows my domain.com email. however, after having successfully singed into google, I don't get authenticated on websites.
I tried with https://superuser.com/ and with http://www.openid-ldap.org/test.php to no avail.Both failed, and the second one tells me :
OpenID authentication failed: No OpenID information found at http://domain.com/openid?id=114987420251804701387
Any idea what I should do ? If possible, I would prefer not to have to setup a webserver on my domain.
Thanks
