[OpenID] Google OpenID IDP is now live

Eric Sachs esachs at google.com
Wed Oct 29 18:36:13 UTC 2008 

>> I'd be interested in how Google thinks users will login with their OpenID
if they can't type in gmail.com or google.com -- these should work. Will
they?

Since this is the first phase of our launch, we need to make sure it works
stability (and with good usability feedback, including on validating the
translation of our UI into 40+ languages) before we can claim that lots of
RPs should use it.  Therefore there is currently a whitelist of supported
RPs.

If we published an XRDS file for gmail.com that worked automatically with
existing RPs doing directed identity, then it would break for users because
their RPs would not be on the whitelist.

Once we are able to remove the whitelist, then we can post the XRDS file for
gmail.com without breaking existing RPs who allow users to type domain names
for directed identity.

Eric Sachs
Product Manager, Google Security


On Wed, Oct 29, 2008 at 10:53 AM, Dick Hardt <dick.hardt at gmail.com> wrote:

> "www.google.com/accounts/o8/id"?
>
> gosh, I'll remember that one! :-)
>
> Given the non memorable openid generated by Google, I'd be interested
> in how Google thinks users will login with their OpenID if they can't
> type in gmail.com or google.com -- these should work. Will they?
>
> -- Dick
>
> On 29-Oct-08, at 10:38 AM, Breno de Medeiros wrote:
>
> > At this point, you can discover using www.google.com/accounts/o8/id as
> > your OP identifier if you so wish. However, initially we will require
> > registration. Thanks.
> >
> > On Wed, Oct 29, 2008 at 10:30 AM, Andrew Arnott <andrewarnott at gmail.com
> > > wrote:
> >> Forgive my apparent ignorance, but this doesn't look like a
> >> standard OpenID
> >> Provider.  I just tried to log into my own RP typing in
> >> "google.com" to use
> >> directed identity, since I have no idea what my own identifier URL
> >> would be,
> >> and no endpoints were found.  Also tried "gmail.com".
> >> When I read the blog, it mentioned OpenID but the link was to
> >> register for
> >> federated login.  I thought Shibboleth was about federated login
> >> and OpenID
> >> was about letting any RP log into an IDP.  Why does an RP have to
> >> register
> >> with Google before using its IDP?  And even if it registered, that
> >> can't
> >> automatically make "google.com" discoverable, so this doesn't feel
> >> like
> >> OpenID at all to me.
> >>
> >> Unhappy, but hoping someone can explain it to me.
> >> On Wed, Oct 29, 2008 at 9:02 AM, Eric Sachs <esachs at google.com>
> >> wrote:
> >>>
> >>> Google's IDP is now live.  You can try it on Plaxo, ZoHo, & Buxfer
> >>> and
> >>> hopefully more RPs to come soon.  Here is the blog post with more
> >>> details,
> >>> including information on how RPs can sign up to use the service:
> >>>
> >>>
> >>>
> http://google-code-updates.blogspot.com/2008/10/google-moves-towards-single-sign-on.html
> >>>
> >>> And yes, it does allow RPs to request a user's E-mail address via
> >>> AX as an
> >>> option.  I'll let Joseph Smarr from Plaxo respond with details on
> >>> how they
> >>> are using that feature to further simplify the signup flow for
> >>> Plaxo.
> >>> Eric Sachs
> >>> Product Manager, Google Security
> >>> _______________________________________________
> >>> general mailing list
> >>> general at openid.net
> >>> http://openid.net/mailman/listinfo/general
> >>>
> >>
> >>
> >> _______________________________________________
> >> general mailing list
> >> general at openid.net
> >> http://openid.net/mailman/listinfo/general
> >>
> >>
> >
> >
> >
> > --
> > --Breno
> >
> > +1 (650) 214-1007 desk
> > +1 (408) 212-0135 (Grand Central)
> > MTV-41-3 : 383-A
> > PST (GMT-8) / PDT(GMT-7)
> > _______________________________________________
> > general mailing list
> > general at openid.net
> > http://openid.net/mailman/listinfo/general
>
> _______________________________________________
> general mailing list
> general at openid.net
> http://openid.net/mailman/listinfo/general
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20081029/ee05397a/attachment-0001.htm>

More information about the general mailing list