[OpenID] Multiple endpoints in a single XRDS document
SitG Admin
sysadmin at shadowsinthegarden.com
Tue Jul 15 06:55:09 UTC 2008
Some idle thoughts on how #3 might be implemented:
"A variant on the last, except that in addition to skipping OPs that
do not respond to association requests, allow the user to "fail" or
cancel the authentication on the first provider and proceed to the
second provider listed for another authentication attempt."
A delayed redirect, with a message for the user saying "Click here
before 3 seconds elapse to cancel the automatic redirect to this URI
where we *think* your OP is located."?
How about a delayed reload? A list of OP's, with each one opening
into a new window (the URL might itself be the RP's site, a
dynamically generated page automatically dispatching the user towards
their OP), and when the page reloads itself it displays information
on which OP's have been authenticated with, which have returned
failures, which the user has been sent to but not returned, and -
optionally ;) - what the overall Strength of their Identity is. At
any time, the user can select "Okay, now I'm done with my OP's, this
(perhaps single) assertion of authentication is all I want."
-Shade
More information about the general
mailing list