[OpenID] OP Endpoint URL (was: guid openid delegate)
Johnny Bufu
johnny at sxip.com
Tue Sep 18 01:42:58 UTC 2007
On 13-Sep-07, at 11:40 AM, Johnny Bufu wrote:
>> A2. Unless discovery (via HTML or XRI resolution processes) is
>> constrained to required to ultimately return an Identifier, the OP
>> Endpoint URL could be sip:.... for all this definition cares. See B1
>> below for possible fix
>
> The OpenID protocol is HTTP-based (all protocol messages are REQUIRED
> to use HTTP), so this is also an overlook. Will fix together with the
> next one (thanks again!)
>
>> (And, the OP Endpoint is not an accepting function for an
>> auth request (by definition of unsolicited auth)). See C1 for "fix".
>
> "OpenID Authentication requests" is not intended to refer only to
> messages defined in section 9 Requesting Authentication. Rather: "all
> requests messages defined by the OpenID Authentication protocol".
> Would it be clearer like this:
>
> "The HTTP(S) URL which accepts OpenID Authentication protocol
> messages"
> (or any other phrasing suggestions?)
This is fixed now in rev365:
The URL which accepts OpenID Authentication protocol
messages,
obtained by performing discovery on the User-Supplied
Identifier. This value MUST be an absolute HTTP or HTTPS
URL.
Johnny
More information about the general
mailing list