[OpenID] [LIKELY_SPAM]Re: OpenID based on email addresses... Just Works!
Peter Williams
pwilliams at rapattoni.com
Wed Oct 29 15:56:14 UTC 2008
I don't like this dependency on DNS.
The average use COULD edit an XRDS file, and stick it on any webserver. The average user cannot edit a registered domain resource attributes, or run an walled garden DNS server.
-----Original Message-----
From: general-bounces at openid.net [mailto:general-bounces at openid.net] On Behalf Of Martin Atkins
Sent: Wednesday, October 29, 2008 8:49 AM
To: David Recordon
Cc: OpenID List
Subject: [LIKELY_SPAM]Re: [OpenID] OpenID based on email addresses... Just Works!
David Recordon wrote:
> Yeah, I think this general approach with the addition of knowing it is
> an email, doing directed identity, and passing the email as
> OpenID.identity is a good one. I really prefer to find a simple solution
> that doesn't involve running a mapping service or mucking with DNS.
>
FWIW, I have an experimental implementation that does what you describe:
http://www.apparently.me.uk/18285.html
It can also optionally involve "mucking with DNS", but I fall back on
the "do Yadis discovery on the domain" method if the DNS records it's
looking for aren't there. One difference is that I invented a new XRDS
service type so that we don't start sending email addresses to existing
providers that aren't ready to support them yet. I think it's better for
this to fail during discovery at the RP than give a (probably confusing
an unhelpful) error message at the OP.
_______________________________________________
general mailing list
general at openid.net
http://openid.net/mailman/listinfo/general
More information about the general
mailing list