[OpenID] General questions about 'checkid_immediate'

Simon Willison simon at simonwillison.net
Thu Feb 1 00:17:57 UTC 2007

On 1/30/07, Rowan Kerr <rowan at standardinteractive.com> wrote:
> On 1/30/07, David Fuelling <sappenin at gmail.com> wrote:
> > 2.) The spec mentions a Javascript example for "checkid_immeidate".  How
> > does an OP authenticate a user for an RP *without* user interaction on the
> > OP side?
> If you use a hidden iframe to make the immediate request, then you can
> find out if the user is already logged in. You send your
> authentication request in the iframe, and the OP will redirect it back
> to you through the browser with pass/fail results.

Are there examples of this technique up on the Web anywhere? I've read
about it in the spec but I've never seen it in action.



More information about the general mailing list