[OpenID] moving onto inames inumbers ibrokers .. or at least tryingto

John Bradley jbradley at wingaa.com
Fri Mar 21 23:14:28 UTC 2008 

Peter,

You seem to have a bunch of issues.   Feel free to email me directly  
and I will try to help you sort it out.

xri://@!4E3C.6E35.633A.FD2A!729B.7E1E is the iNumber or canonical ID  
for @freeid*lockbox

The problem is that the RP is sending that as the openid.identity  
rather than @freeid*lockbox

As iNames support a Polyarchical relationship ie more than one iName  
may resolve to the same iNumber.

The notion is that the iNumber should be used as the openid.claimed_id  
and become the primary key allowing any iName resolving to that  
iNumber access to the RP.

This is the way that Plaxo is set up.  They are sending the iName in  
the openid.identity so that it displays properly.  My guess is that  
Rapattoni/trustbearer consumer is sending the iNumber in both fields.

You are going to the same openID endpoint in both cases but the  
Identity displayed is different because the RPs are sending different  
identifiers in the openid.identity to be validated.   @!4E3C. 
6E35.633A.FD2A!729B.7E1E and @freeid*lockbox are effectively synonyms  
from the OP's point of view and should authenticate both with the same  
password.

I don't know the URL for the Rapattoni/trustbearer consumer so I cant  
test it myself at the moment.  I see there OP but not a obvious RP.

I need to check to see if infocard login is enabled on Linksafe's free  
site.  It is working on the regular site.

You can create your own community at Linksafe and delegate names if  
you like.  ie @trustbearer*lockbox

You could also purchase an iName and run your own community registry.   
Though the cost beyond that of a single iName for using Linksages  
registry for delegated names small to non existent depending on the  
size of the community.

Contact me directly and I will see if I can get you sorted out.

Regards
=jbradley

PS no I don't subscribe to this list.

On 21-Mar-08, at 2:57 PM, Drummond Reed wrote:
> Peter,
>
> I’m cc’ing five folks who can help but whom may not be monitoring  
> this list closely:
>
> 1) John Bradley at Wingaa/ooTao (the wholesale i-broker on whose  
> platform LinkSafe operates), who has been helping with OpenID and i- 
> names integration at Plaxo.
>
> 2) Mike Mell, who does a lot of the magic at LinkSafe.
>
> 3) Markus Sabadello (based in Vienna), who operates FreeXRI, which  
> has no connection with LinkSafe or Wingaa/ooTao, but who is very  
> involved in contributing the open source OpenXRI codebase which he  
> operates at FreeXRI.com.
>
> 4) Wil Tan of NeuStar who is another key contributor to OpenXRI and  
> has integrated it with the public XRI resolver services NeuStar  
> operates on behalf of XDI.org.
>
> 5) Les Chasen, director of registry engineering at NeuStar.
>
> Any or all of them might be willing to help with your test i-broker  
> server and “controlled test lab”.
>
> =Drummond
>
> From: general-bounces at openid.net [mailto:general-bounces at openid.net]  
> On Behalf Of Peter Williams
> Sent: Friday, March 21, 2008 2:33 PM
> To: general at openid.net
> Subject: [OpenID] moving onto inames inumbers ibrokers .. or at  
> least tryingto
>
> I’ve been  been struggling for the last hour with the freeid (beta)  
> i-services from https://linksafe.ezibroker.net/.  I’m making an  
> effort to address XRI, i-names etc etc etc.
>
> Basically, that service has provisioned me 2 openids (in xri form).  
> I cannot access either of the accounts associated with those names,  
> tho. Password auth seems broken, for now. One can provision the  
> password, but not use it. But, it is a beta service. The site  
> clearly says upon attempting to logon: authentication failed, and I  
> have been unable to bind my infocard, as yet. I have asserted my  
> card, though (I think).
>
> So I now get to type “@freeid*lockbox” … into plaxo (which is going  
> to go down like a lead balloon, in my user community).  But, at  
> least it worked – in that it redirected to the expected OP.
>
> When, I type that string into the Rapattoni/trustbearer consumer, it  
> redirects to a different OP logon page to that which Plaxo redirects  
> me to, giving me a page of stuff all logging in as xri://@!4E3C. 
> 6E35.633A.FD2A!729B.7E1E (which is going to go down like 32 lead  
> balloons, in my user community)
>
> 1.   I have no idea what that particular xri blurb is – never having  
> seen the particular value before.
> 2.   Similar strings have appeared at times on the freeid website,  
> as if I have half-logged onto a session. I may thus be in buggy  
> sessions.
> 3.   Is there a reason why the same openid goes to different logon  
> servers (in terms of the openid/xri model)?
> 4.   Has anyone got either long server’s local password  
> authentication to work, so they can (a) bind the infocard via  
> account management, and/or (b) assert to plaxo?
>
> If I pay the $12 for the paid name, anyone know if the services  
> associated with the name would work _today_ (while I’m still trying  
> to grasp what’s going on)?
>
> Anyone willing to recommend spending time on installing the open  
> source ibroker server, as mentioned by the freeid service? Would  
> such an effort practically (and reasonably easily) help me get to  
> grips with xri and openid2 – in a controlled test lab?
>
> Peter.
>
>

More information about the general mailing list