[OpenID] Reconsidering http://openid different from https://openid

Mon Sep 24 10:12:34 UTC 2007

On Thu, Sep 20, 2007 at 03:55:14PM -0700,
 Paul C. Bryan <email at pbryan.net> wrote 
 a message of 59 lines which said:

> OpenID is built on the HTTP(s) protocol,

Checking the specification, it does not seem so. The specification
apparently only says that the identifier has to be resolvable (an URL,
not just any URI), which includes ftp:// URLs (and gopher:// :-)

That's why it would be a bad idea to make a special case for
http/https by saying that they must be the same. This would break the
simple rule that an identifier is any URL.