[OpenID] Using HTTPS Openid Providers
Evan Prodromou
evan at prodromou.name
Mon Jun 18 14:24:44 UTC 2007
On Wed, 2007-13-06 at 15:58 -0400, Immad Akhund wrote:
> Are there examples of https openid provider out their? (this might be
> a silly question)
Certifi.ca uses HTTPS for all important communications, and it uses
client-side certificates for authentication.
HOWEVER, it does not use HTTPS URLs for the actual OpenID. So, my OpenID
is http://certifi.ca/evan . I've seen intermittent failures from some
OpenID relying parties -- LiveJournal, I think? -- with HTTPS URLs.
-Evan
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 4422 bytes
Desc: not available
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20070618/5e22c859/attachment-0002.bin>
More information about the general
mailing list