[OpenID] OAuth SPs don't have to be your OpenID OP
chris.messina at gmail.com
Sat Apr 4 11:34:17 UTC 2009
>From a purely technological perspective, OpenID doesn't work in
desktoclients or for APIs.
This is one of the primary reasons OAuth came about: Magnolia and
Twitter couldn't fully adopt OpenID without something for
OpenID & OAuth are complements, not competitors. Making them work
together more seamlessly where possible is driven by interface
convenience, not technological superiority.
On 4/3/09, santrajan <santrajan at gmail.com> wrote:
> Why should OpenID support OAuth at all? OpenID can stand on its own. All
> OpenID needs to do is address the concerns of RP's and users.
> Andrew Arnott wrote:
>> Just a simple request: please keep in mind that your OP doesn't have to be
>> your OAuth SP as well.
>> It seems that every time OAuth is mentioned, it's "OpenID+OAuth" where the
>> OP is also your OAuth SP. Let's remember that unless every site that has
>> something to offer becomes an OP, not every OAuth SP will be an OP. We
>> should work to make the OAuth UX by itself seemless for the user as well,
>> particularly if the user logs into both the consumer and the SP using the
>> same OpenID.
>> Andrew Arnott
>> "I [may] not agree with what you have to say, but I'll defend to the death
>> your right to say it." - Voltaire
>> general mailing list
>> general at openid.net
> View this message in context:
> Sent from the OpenID - General mailing list archive at Nabble.com.
> general mailing list
> general at openid.net
Open Web Advocate
factoryjoe.com // diso-project.org // vidoop.com
This email is: [ ] bloggable [X] ask first [ ] private
More information about the general