[OpenID] OpenId downtime

[Ashish Jain]

One chain of thought was

-          Encourage users to get multiple OpenIDs

-          RPs should allow the users to attach multiple OpenIDs to the
same user account.

-          RPs should allow the users to pick the primary and secondary
OP (contacting secondary only if the primary is down).

 

This doesn't completely eliminate the issues around usability but at
least the user will be able to log in.

 

 

________________________________

From: general-bounces at openid.net [mailto:general-bounces at openid.net] On
Behalf Of John Panzer
Sent: Thursday, December 06, 2007 4:37 PM
To: Eric Norman
Cc: OpenID List
Subject: Re: [OpenID] OpenId downtime

 

Eric Norman wrote: 

On Dec 6, 2007, at 11:47 AM, Dominick Accattato wrote:
 
  

	What happens when an OpenId provider is down:  
	
http://www.alexanderinteractive.com/blog/2007/09/disadvantage-of- 
	openid-and-web-services.html
	    

 
I'll just mention that this problem isn't peculiar to OpenID.
Informantion cards have the same problem.  With the current
design, every use of a managed card requires contact with the
IdP.  Similarly for Shibboleth.
 
The current Shibboleth answer is to build in enough redundancy
such that it never happens (barring natural catastrophes).
 
Regardless, it's is a question that needs an answer.
 
Eric Norman
 
  

At IIW, there were several discussions around 'synonyms' in various
contexts.  The idea being that RPs can record multiple OpenIDs per
account, perhaps in some cases discovered semi-automatically through AX,
and thus have the ability for users to ride out N-1 simultaneous OP
failures or account closures.  

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20071206/b596415e/attachment-0002.htm>