[OpenID] Musing on FaceBook, OpenID and the next mountain to climb

David Recordon drecordon at sixapart.com
Tue Sep 16 19:43:36 UTC 2008 

I actually disagree.  I think Facebook Connect could be implemented  
atop OpenID and OAuth.  The first interaction is login where OpenID  
can be used to assert the user's profile URL.  From there, a Connect  
implementation can access APIs via either JavaScript or REST based  
APIs.  If they used the combined OpenID/OAuth extension that is  
floating around, it would provide a way to provision API access as  
well.  They chose not to do this initially and instead build on  
technologies they already developed, but I don't see why it would be  
too difficult for them to change.

--David

On Aug 3, 2008, at 9:31 PM, Dick Hardt wrote:

>
> On 3-Aug-08, at 2:08 PM, Johnny Bufu wrote:
>
>>
>> On 02/08/08 03:00 PM, Eran Hammer-Lahav wrote:
>>> My comments were specific about the technical details of their
>>> platform. The fact that instead of using a community specification
>>> they decided to create yet another protocol is what I was referring
>>> to. I would give them a high score if they used OAuth but still
>>> kept their system closed and data private. They could have created
>>> the exact same product by building it on top of OAuth. They could
>>> have also made it friendlier to OpenID or even use OpenID as the
>>> basis but I think OAuth would have been an easier match and lighter
>>> on the politics.
>>
>> I would be interested to learn directly from Facebook what their
>> high level requirements were and why they chose not to use OAuth/
>> OpenID.
>>
>> Since I haven't seen anyone from Facebook commenting on the openid
>> general list, what channels would they prefer? Dick, do you have any
>> insights here?
>
> Given what they did with Friend Connect, I don't see how OpenID would
> have made sense.
>
> They could potentially have used OAuth for the RP to make the API
> calls -- I don't know why they did not, and this list is an OpenID  
> list.
>
> -- Dick
>
>
>
>
> _______________________________________________
> general mailing list
> general at openid.net
> http://openid.net/mailman/listinfo/general

More information about the general mailing list