[OpenID] Opt out of Yahoo OpenID?
Dick Hardt
dick at sxip.com
Sat Jan 19 02:30:53 UTC 2008
On 18-Jan-08, at 4:28 PM, sknvn-openid at yahoo.com wrote:
> Hi Simon,
>
> No. The auto generated URL will remain the same (for all RPs) for
> a user.
> We are using the "directed identity" feature to make it easier for
> a user to sign in. The user only has to type in "yahoo.com" or
> click on a button that RP adds to his/her site and we'll send the
> right url identifier back after authentication.
If it is the same URL for all users, then it is not directed
identity. What you have done is generated a "random" URL for them to
use so that the Yahoo OpenID is not linked to their Yahoo account
(unlike the AOL OpenIDs).
Directed identity is what Sxipper does where a different URL is
provided for each RP. Cardspace follows a similar pattern with the
self managed cards.
This does not need to be added to the specification as it was
anticipated and the management is out of band of the protocol.
-- Dick
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20080118/3ac1565d/attachment-0002.htm>
More information about the general
mailing list