[OpenID] Signing method for XRD
Hans Granqvist
hans at granqvist.com
Thu Jun 18 02:00:29 UTC 2009
Drummond, yes, I did. Thanks :)
-Hans
On Wed, Jun 17, 2009 at 6:06 PM, Drummond
Reed<drummond.reed at cordance.net> wrote:
> Hans, in your message below, did you mean, "... is it _now_ easy to avoid
> all issues..."?
>
>> -----Original Message-----
>> From: general-bounces at openid.net [mailto:general-bounces at openid.net] On
>> Behalf Of Hans Granqvist
>> Sent: Tuesday, June 16, 2009 10:46 AM
>> To: Peter Williams
>> Cc: general at openid.net
>> Subject: Re: [OpenID] Signing method for XRD
>>
>> It seems the major hurdles to using xmldsig are "it's too hard to
>> implement" and "there is no good API in the {foo, bar, baz, ...}
>> language"
>>
>> Since we envision a world of interconnected services, is it not easy
>> to avoid all issues by creating and set up a signing/verification
>> service endpoint. Internal or external, just use this service for all
>> nasty xml signature needs. I've done this myself a few times and use
>> it wherever http is spoken. It's pretty easy.
>>
>> Hans
>> _______________________________________________
>> general mailing list
>> general at openid.net
>> http://openid.net/mailman/listinfo/general
>
>
More information about the general
mailing list