[OpenID] Negotiating a backup OP from the current OP
Anders Feder
lists.anders at feder.dk
Sat Jun 28 00:06:49 UTC 2008
Just gleaning over the draft specification, PAPE falls short when there
is no trust from the RP to the OP (which would be the majority of
cases).
fre, 27 06 2008 kl. 16:57 -0700, skrev Andrew Arnott:
> Where does PAPE fall short of offering that?
>
> --
> Andrew Arnott
>
> On Fri, Jun 27, 2008 at 4:50 PM, Dick Hardt <dick at sxip.com> wrote:
> On 27-Jun-08, at 4:00 PM, SitG Admin wrote:
>
> > I was reading this:
> > http://self-issued.info/?p=75
> > (Posted to the board at openid.net list by Mike Jones.)
> >
> > I was disturbed to see, in the first paragraph, that OpenID
> would be
> > accepted from "two" Providers; this is exactly the kind of
> lock-in
> > that will effectively *lock-OUT* the small, independent
> Providers.
>
>
> I agree.
>
> If we want to have an open web, then we need to put the choice
> of OP
> into the hands of the user, not the RPs.
>
> To do that, we need to evolve the protocol so that RPs don't
> feel they
> need to distinguish between OPs.
>
> -- Dick
>
>
> _______________________________________________
> general mailing list
> general at openid.net
> http://openid.net/mailman/listinfo/general
>
>
> _______________________________________________
> general mailing list
> general at openid.net
> http://openid.net/mailman/listinfo/general
--
Anders Feder <lists.anders at feder.dk>
More information about the general
mailing list