[OpenID] OpenID SREG best practice question
Dick Hardt
dick.hardt at gmail.com
Wed Nov 12 18:30:39 UTC 2008
On 12-Nov-08, at 10:24 AM, George Fletcher wrote:
> Well... I could see a best practice being that the OP needs to
> remember
> which data has been sent to which RP and allow the user to revoke the
> "permanent" consent.
yes
> Or the "best practice" could be that "consent" is
> never permanent and every time the RP asks the user has to approve
> again
> (though previous selections could be remembered).
That would be irritating
More information about the general
mailing list