[OpenID] OpenID Registration Scenario
Martin Atkins
mart at degeneration.co.uk
Thu Jul 12 07:38:14 UTC 2007
Meng Weng Wong wrote:
> On Jul 12, 2007, at 12:16 AM, Martin Atkins wrote:
>> I think a good approach when designing an account management system
>> that
>> uses OpenID is to separate the concept of a principal with an
>> identity.
>>
>
> Just to add another straw to the camel's burden, there's the notion
> of a role, where multiple principals may be permitted to wear the
> same hat at the RP.
>
> :)
>
> At that point you start getting into ACLs.
Heh, yes. The concepts of groups and roles is another can of worms, but
fortunately that's usually an authz issue, while we're talking more
about authn here.
More information about the general
mailing list