[OpenID] HTML-Based Discovery incompatibilities

Eran Hammer-Lahav eran at hueniverse.com
Thu Jan 8 21:32:00 UTC 2009 

Exactly. Look at what has been working properly and what has not and clean up the spec. The problem with OpenID, unlike most other protocols in this space is that it is too close to the end-user surface. The sole reason for the inclusion of <link> elements is to allow the end -user direct influence over the internals of the protocol. So if this feature is not widely adopted, it leads directly to breaking the faith the end-user has in the entire protocol. When you use a Yahoo feature that doesn't work, you don't blame HTTP for it. But if you use OpenID directly, and it doesn't work you do blame OpenID more than anything else.

While your approach is correct, I think the issue is the sample size you are using to decide what is "common-practice". In reality, most of the spec should be dropped due to lack of consistent implementation.

EHL


On 1/8/09 1:05 PM, "Martin Atkins" <mart at degeneration.co.uk> wrote:

Eran Hammer-Lahav wrote:
>
> If I will have any influence on future RP adoption, I will do my best to
> make them ignore HTML discovery completely. After all, in OpenID, it doesn't
> seem to matter what the spec says anyway (unfortunately).
>

Are there any protocols where this is not the case?

There are bad implementations of every specification. The choice we need
to make as specification authors is whether to pretend all
specifications are perfect and continue adding more and more
requirements, or to instead write a specification that describes current
implementation practice.

I think in most cases specifications should be driven by
implementations, rather than the other way around. A specification that
describes something that doesn't work in practice is of no use to
anyone, and writing new specs with even more stringent requirements
doesn't automatically fix all of the existing "broken" implementations.

_______________________________________________
general mailing list
general at openid.net
http://openid.net/mailman/listinfo/general

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20090108/36f0044d/attachment-0002.htm>

More information about the general mailing list