[OpenID] Trust + Security @ OpenID
Greg Hewgill
greg at hewgill.com
Wed Jul 18 23:54:36 UTC 2007
On Wed, Jul 18, 2007 at 02:55:42AM +0800, Meng Weng Wong wrote:
> > There is no public black/whitelist of OpenID providers already?
>
> i'm building one, but i was waiting for this thread to conclude
> before i announced it.
How would a whitelist of providers work for people like myself who run
their own OP? In my case, my OP is used only by me and the details of
the authentication method are not public. Would there be any provision
to get such an OP onto any kind of whitelist?
A whitelist that is based on the OpenID itself, rather than the
associated OpenID Provider, wouldn't even raise this question.
Greg Hewgill
http://hewgill.com
More information about the general
mailing list