[OpenID] Facebook Cooperation with German Email Providers?

Luke Shepard lshepard at facebook.com
Tue Aug 25 19:10:22 UTC 2009 

Yeah, I'm pretty stoked on this. Now, users of GMX.de or Web.de can easily jump-start Facebook registration with a verified email address using the OpenID protocol - or, if they already have a Facebook account, they can just link the two to allow for automatic login (when they are logged into GMX, they are automatically logged into Facebook). And it's all done with off-the-shelf OpenID - the automatic login uses checkid_immediate, and the verified email is passed using Attribute Exchange.

To your questions:

> Are Web.de/GMX and Facebook using any vendor specific APIs or extensions?

There are no vendor specific APIs or extensions - we are using off-the-shelf OpenID. In fact, it's the same code path as Gmail. Being a standard has been pretty great :)

> However users had to provide usernames and passwords -> password anti-pattern.

If the user already has a Facebook account, then they are given the option to link that account instead of creating a new one. But in no circumstances does the user enter their Facebook password anywhere but Facebook. We are using OpenID to avoid the password anti-pattern.

> Chris: What is Open IP?

A creative new form of typo? :-P

If you have a web.de account and you try it out, let me know if you have feedback.

- Luke

---------- Forwarded message ----------
From: Carsten Pötter <sccpffm at gmail.com>
Date: Tue, Aug 25, 2009 at 11:15 AM
Subject: [OpenID] Facebook Cooperation with German Email Providers?
To: openid-general at lists.openid.net


Yesterday German email providers Web.de and GMX released a press
release stating that their users will be able to log in to Facebook
using OpenID (http://faz-community.faz.net/blogs/netzkonom/archive/2009/08/24/facebook-chooses-german-e-mail-provider-web-de-and-gmx-as-first-open-id-partner-in-europe.aspx).
Both email providers are subsidiaries of United Internet and dominate
the German email market.
So far both providers offered users a "navigator" to log in to various
social networks, online merchants,... However users had to provide
usernames and passwords -> password anti-pattern. If I got things
right, both providers have to become OpenID Providers now. Though why
is there an explicit cooperation with Facebook?
Is Facebook eventually accepting OpenIDs?
Are Web.de/GMX and Facebook using any vendor specific APIs or extensions?
Anyone from Facebook here who can shed some light on the topic? Thanks!
Carsten
_______________________________________________
general mailing list
general at lists.openid.net
http://lists.openid.net/mailman/listinfo/openid-general

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20090825/c55d57c7/attachment.htm>

More information about the general mailing list