[OpenID] [LIKELY_SPAM]Re: Combining Google & Yahoo user experience research
Peter Williams
pwilliams at rapattoni.com
Wed Oct 15 00:05:30 UTC 2008
I eventually figured what was meant, below. Replacing my own google hosted domain for alertblue.com in the redirect from the URL below, we get
https://www.google.com/a/homepw.org/ServiceLogin2?continue=http%3A%2F%2Fsites.google.com%2Fa%2Fhomepw.org%2Ftestui%2F&continue2=http%3A%2F%2Fsites.google.com%2Fa%2Fhomepw.org%2Ftestui%2F&continue1=http%3A%2F%2Fsites.google.com%2Fa%2Falertblue.com%2Ftestui%2F&service=jotspot&passive=true&ul=1
which nicely provides either a local login (using email address) or it relays our SAML IDP. Depending on how my op-discovery cookies are set, the IDP will proxy on to the trustbearer OP.
We have another live example you can look at. Try this URL:
http://sites.google.com/a/alertblue.com/testui/
That URL is for a webpage created by an enterprise whose email Google hosts on our AppsForYourDomain offering. But the owner of that site has allowed some people outside their enterprise to access this webpage. So when a user visits that webpage, they might be one of three types of users:
- An employee of that enterprise
- An employee of a different enterprise that uses AppsForYourDomain (and which might run its own IDP that authenticates users to Google via SAML)
- A consumer user with a regular Google Account that the user established manually
We are experimenting with different login UIs for this page, so you might see different versions.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20081014/67097444/attachment-0002.htm>
More information about the general
mailing list