[OpenID] Reconsidering http://openid different from https://openid
Eddy Nigg (StartCom Ltd.)
eddy_nigg at startcom.org
Wed Sep 19 23:00:41 UTC 2007
This took a long time until somebody replied the right answer. Specially
since the spec suggest to use https (shall use) in any case.
Dick Hardt wrote:
>
> That seems pretty unlikely. I would hope my identity provider would
> reserve both for me, or better yet redirect HTTP to HTTPS
>
> I think the best approach so far is to recommend a best practice of
> the two identifiers not being controlled by different people.
--
Regards
Signer: Eddy Nigg, StartCom Ltd. <http://www.startcom.org>
Jabber: startcom at startcom.org <xmpp:startcom at startcom.org>
Blog: Join the Revolution! <http://blog.startcom.org>
Phone: +1.213.341.0390
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20070920/1c032278/attachment-0002.htm>
More information about the general
mailing list