[OpenID] General questions about 'checkid_immediate'

Lukas Rosenstock inbox at lukasrosenstock.net
Tue Jan 30 20:39:56 UTC 2007


> 1.) Is this because lots of RP's are leading off with a checkid_immediate?
> Or is this functionality simply something that my OP is doing, and unrelated
> to 'checkid_immediate?

This is completely unrelated. If an OP asks for user input usually 
depends on a session cookie.

> 2.) The spec mentions a Javascript example for "checkid_immeidate".  How
> does an OP authenticate a user for an RP *without* user interaction on the
> OP side?  Doesn't the user have to "do" something on the OP first (like
> login, or mark an OP as "trusted").  

The idea behind checkid_immediate is, that if the OP is not able to do 
the signin without user input he will not present a login page but 
simply fail.



More information about the general mailing list