[OpenID] Identity Manager: A Browser-Based Solution to OpenID Phishing

Dmitry Shechtman damnian at gmail.com
Tue Jan 23 11:12:07 UTC 2007

> I would suggest that OpenID support by the User Agent is
> triggered by a visible field that says OpenID_user_url,
> and by a hidden field named "SupportedOpenID_versions"
> containing a list of supported OpenID versions, and
> another hidden field (to be filled in by the User Agent)
> named "User Agent"

That, or just <input type="text" name="openid_url" />, as already used by
most implementations.

The whole idea behind IM was that neither RPs nor OPs would have to do
anything special in order to enable browser support.


More information about the general mailing list