[OpenID] Live Icons for visual recognition of IDP logos
pwilliams at rapattoni.com
Fri Apr 3 05:18:15 UTC 2009
Mostly to head off someone's inevitable claim of impropriety, I best note that I didn't author the excellent text cited to me, below. Folks should recognize Martin is agreeing with Deron Meranda.
I still think the traditional semantics are much clearer, than distinguishing acts of denoting from acts of reference OR using special nouns.
You get a session on the OP, by authenticating. You want to get a session on RP, by not authenticating. To get from one to the other, you use a session translation service.
That's the service.
The rest is protocol.
> -----Original Message-----
> From: general-bounces at openid.net [mailto:general-bounces at openid.net] On
> Behalf Of Martin Atkins
> Sent: Thursday, April 02, 2009 10:01 PM
> To: general
> Subject: Re: [OpenID] Live Icons for visual recognition of IDP logos
> Peter Williams wrote:
> > Obviously to do this I must maintain a mapping of OpenID identities
> > to local user accounts; and this is a many to one mapping. This
> > that the OpenID identity is NOT my user account identity; but instead
> > the OpenID identity REFERENCES my user account identity. A
> > subtle but important distinction.
> I agree that there is a distinction, but the latter is true on most
> systems that support only one identifier too, and is in fact consistent
> with how OpenID was originally described: OpenID allows you to prove
> that you own a URL. One application of that is to prove that you own a
> user account that references that URL, which is a special case of
> asserting that you're the same person I saw last time. (for some
> wishy-washy definition of "person".)
> This is the main reason why I make a point of saying "identifier"
> instead of "identity" in this context. My identity is a more abstract
> concept that is difficult to define.
> general mailing list
> general at openid.net
More information about the general