>http://commented.org/blog/2008/1/3/continuous-openid.html You were envisioning something like a whitelist? If the user has to specify a site to assert their Identity to it, that's a (slightly different flow) login process :) -Shade