[Openid-specs-ab] LoginId hint

Richer, Justin P. jricher at mitre.org
Wed Aug 29 19:08:37 UTC 2012


I like this  -- it's simple, and it keeps the semantics up to the RP, which is really what it should be. The IdP is free to ignore this value (which should be stated explicitly).

 -- Justin


On Aug 29, 2012, at 2:25 PM, George Fletcher wrote:

How about adding the following to section 2.1.2 of Messages... after the id_token parameter

login_id
    OPTIONAL. A hint to the authorization service as to the login_id the user may use to authenticate (if necessary). This hint can be used by an RP if it first asks the user for their email address (or other identifier) and then wants to pass that value as a hint to the discovered authorization service.

Thanks,
George

On 8/29/12 2:00 PM, Nat Sakimura wrote:
Hey, now I am getting the support!

Could one of you provide the actual text proposal for it?

=nat via iPhone

On Aug 30, 2012, at 1:40 AM, Chuck Mortimore <cmortimore at salesforce.com<mailto:cmortimore at salesforce.com>> wrote:

+1

- cmort

On Aug 29, 2012, at 9:26 AM, "Pam Dingle" <pdingle at pingidentity.com<mailto:pdingle at pingidentity.com>> wrote:

+1 from me too - need this for account chooser, among other things.

On Wed, Aug 29, 2012 at 8:39 AM, Richer, Justin P. <jricher at mitre.org<mailto:jricher at mitre.org>> wrote:
+1, I've asked for this feature too.

 -- Justin

On Aug 29, 2012, at 11:27 AM, George Fletcher wrote:

Hi,

We've run into a case where it would be nice to be able to pass into the /authorize endpoint a value to pre-fill the loginid field on the authentication UI. We allow for an id_token to be passed as a hint of the desired user, but this only works for an "already authenticated" use case.

If we consider the Account Chooser case where what is stored is the user's email address, it would be nice to be able to start the identity federation flow passing that email address along to the IdP.

Did I just miss support for this in the specs?

Thanks,
George

--
Chief Architect                   AIM:  gffletch
Identity Services Engineering     Work: george.fletcher at teamaol.com<mailto:george.fletcher at teamaol.com>
AOL Inc.                          Home: gffletch at aol.com<mailto:gffletch at aol.com>
Mobile: +1-703-462-3494<tel:%2B1-703-462-3494>           Blog: http://practicalid.blogspot.com<http://practicalid.blogspot.com/>
Office: +1-703-265-2544<tel:%2B1-703-265-2544>           Twitter: http://twitter.com/gffletch


_______________________________________________
Openid-specs-ab mailing list
Openid-specs-ab at lists.openid.net<mailto:Openid-specs-ab at lists.openid.net>
http://lists.openid.net/mailman/listinfo/openid-specs-ab


_______________________________________________
Openid-specs-ab mailing list
Openid-specs-ab at lists.openid.net<mailto:Openid-specs-ab at lists.openid.net>
http://lists.openid.net/mailman/listinfo/openid-specs-ab




--
Pamela Dingle  |  Sr. Technical Architect
PingIdentity  |   www.pingidentity.com<http://www.pingidentity.com/>
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
O: 303-999-5890   M: 303-999-5890
Email: pdingle at pingidentity.com<mailto:pdingle at pingidentity.com>
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Connect with Ping
Twitter: @pingidentity
LinkedIn Group: Ping's Identity Cloud
Facebook.com/pingidentitypage<http://Facebook.com/pingidentitypage>

Connect with me
Twitter: @pamelarosiedee


_______________________________________________
Openid-specs-ab mailing list
Openid-specs-ab at lists.openid.net<mailto:Openid-specs-ab at lists.openid.net>
http://lists.openid.net/mailman/listinfo/openid-specs-ab
_______________________________________________
Openid-specs-ab mailing list
Openid-specs-ab at lists.openid.net<mailto:Openid-specs-ab at lists.openid.net>
http://lists.openid.net/mailman/listinfo/openid-specs-ab



_______________________________________________
Openid-specs-ab mailing list
Openid-specs-ab at lists.openid.net<mailto:Openid-specs-ab at lists.openid.net>
http://lists.openid.net/mailman/listinfo/openid-specs-ab


_______________________________________________
Openid-specs-ab mailing list
Openid-specs-ab at lists.openid.net<mailto:Openid-specs-ab at lists.openid.net>
http://lists.openid.net/mailman/listinfo/openid-specs-ab

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-ab/attachments/20120829/5f2d9e36/attachment.html>


More information about the Openid-specs-ab mailing list