[OpenID] OpenId & Yadis Question

David Fuelling sappenin at gmail.com
Sun Feb 25 23:35:27 UTC 2007


I'm wondering if the following is a correct interpretation of how OpenId 2.0
uses Yadis.  Any clarifications are appreciated.

1.) User navigates to an RP, and enters a Claimed Identifier (e.g.,
http://sappenin.gmail.com).

2.) A Yadis doc is returned as follows:

<Service xmlns="xri://$xrd*($v*2.0)">
<Type>http://specs.openid.net/auth/2.0/server</Type>
<URI>https://sappenin.com/</URI> </Service>
</Service>


Specifically:

A.) Is this the proper way to do delegation?  Above, gmail.com is delegating
to sappenin.com.

B.) If a client gets the Yadis doc above (after navigating to gmail.com),
MUST they (or SHOULD they) navigate to sappenin.com and try to perform
discovery again?  If so, how many delegates are allowed?  Not specified?

Thanks!

David 




More information about the general mailing list