[OpenID] popup protocol UX? Re: FB Connect, OpenID and UX
Martin Atkins
mart at degeneration.co.uk
Tue Dec 16 00:42:30 UTC 2008
Christian Scholz / Tao Takashi (SL) wrote:
> On Mon, Dec 15, 2008 at 11:40 PM, SitG Admin
> <sysadmin at shadowsinthegarden.com> wrote:
>>> Flickr users can only sign-in to Flickr using a YahooID. There are
>>> no other ways to sign in.
>> Ahh, understood. Now all I have to do is create a photo service, get
>> users, and at some point announce that it's been bought out by Yahoo
>> and the user should enter their YahooID to log in.
>
> It's not that easy.. You get redirected to login.yahoo.com which you
> can clearly see in the URL bar (no popup btw). There you enter your
> yahoo id and your password.
> Then you get redirected back to flickr. So it's somewhat like an
> OpenID redirect but you don't enter an ID on flickr but only at
> login.yahoo.com.
>
> Additionally you see the flickr logo on login.yahoo.com.
>
Furthermore, Yahoo! offers the ability to add a "Sign-in Seal" which is
stored in a cookie on your client rather than on the server as a
mechanism to detect phishing.
Whether or not users actually use it or check it is of course debatable.
More information about the general
mailing list