[OpenID] Musing on FaceBook, OpenID and the next mountain to climb

[Dick Hardt]

On 3-Aug-08, at 2:08 PM, Johnny Bufu wrote:

>
> On 02/08/08 03:00 PM, Eran Hammer-Lahav wrote:
>> My comments were specific about the technical details of their  
>> platform. The fact that instead of using a community specification  
>> they decided to create yet another protocol is what I was referring  
>> to. I would give them a high score if they used OAuth but still  
>> kept their system closed and data private. They could have created  
>> the exact same product by building it on top of OAuth. They could  
>> have also made it friendlier to OpenID or even use OpenID as the  
>> basis but I think OAuth would have been an easier match and lighter  
>> on the politics.
>
> I would be interested to learn directly from Facebook what their  
> high level requirements were and why they chose not to use OAuth/ 
> OpenID.
>
> Since I haven't seen anyone from Facebook commenting on the openid  
> general list, what channels would they prefer? Dick, do you have any  
> insights here?

Given what they did with Friend Connect, I don't see how OpenID would  
have made sense.

They could potentially have used OAuth for the RP to make the API  
calls -- I don't know why they did not, and this list is an OpenID list.

-- Dick