[OpenID] OAuth SPs don't have to be your OpenID OP

santrajan santrajan at gmail.com
Sat Apr 4 13:43:16 UTC 2009


But OAuth is not decentralised like OpenId. We need centralized discovery and
decentralized authentication. The centralised discovery will take care of
the trust part.


Chris Messina wrote:
> 
> From a purely technological perspective, OpenID doesn't work in
> desktoclients or for APIs.
> 
> This is one of the primary reasons OAuth came about: Magnolia and
> Twitter couldn't fully adopt OpenID without something for
> non-browser-based environments.
> 
> OpenID & OAuth are complements, not competitors. Making them work
> together more seamlessly where possible is driven by interface
> convenience, not technological superiority.
> 
> Chris
> 
> On 4/3/09, santrajan <santrajan at gmail.com> wrote:
>>
>> Why should OpenID support OAuth at all? OpenID can stand on its own. All
>> OpenID needs to do is address the concerns of RP's and users.
>>
> 
> 

-- 
View this message in context: http://www.nabble.com/OAuth-SPs-don%27t-have-to-be-your-OpenID-OP-tp22879703p22883548.html
Sent from the OpenID - General mailing list archive at Nabble.com.




More information about the general mailing list