[OpenID] Your OpenID is destined to be your email address

Mon Mar 30 08:35:25 UTC 2009

I don't understand why it is so difficult for some people to understand the
real problem. It is really ridiculous for a potential RP, to implement open
id and then ask the user for his email, and then get it verified. While the
user has already gone through this process with the OP!

It is high time people wake up and stop hiding behind the excuses like
"SPAMMING" possibilities etc.

I will post the full text of the post here again for those who dont have
internet access.

The death of OpenID
Or atleast the death of open id as we know it. Please read my previous post
if you dont know what OpenID is. There is an interesting battle on between
the big players of the web, Google, Yahoo, Microsoft, Facebook and what I
call the OpenID wannabees (OpenID service providers like myopenid.com,
myid.net, verisign etc).

Lets say you have an email address, and you want to login into any site with
it. If every site were to support logins via OpenID 2.0, you could do
exactly that. You wouldnt need an OpenID in that case. All you need is your
email address!

Let me show you how it is done with a live example. Go to the link below.
Hit on the login button. See the Google Login page. Dont Login. Hit your
back button twice and return to this page.
http://myfeeds.myofiz.com

On the Google page you can login with your google account. But thats not
all. If you noticed, you can also create a Google Account if you dont have
one, with your own email address, on that very same page. In effect anyone
can login into this site with his own email address (which is verified by
Google), which need not be a Google email address, it could be any other
email address!

This is all done with OpenID 2.0 without the user ever knowing what his
OpenID actually is. He only needs to know his email address. In other words
your email address is your OpenID!

Now the site above was developed by me, and why dont I support login via
OpenID? Because I want only people with verified email addresses to log in.
With OpenID I am not guaranteed to get a verified email address, I get just
an OpenID that does not mean anything for me.

Now is this the future of Logins into web site. You bet! If Facebook and
yahoo are to support this, the same same way like Google, I think all web
sites will adopt OpenID login. If they dont, slowly Google Account will
become the defacto logging method for every site.

Now thats what the battle is all about. Web sites are not sure which way to
go. And the big players are not sure either. That is why the hesitancy by
Facebook, Yahoo and Microsoft.

In the end given the choice between logging in, with an OpenId or email
address, I bet the users are going to use their email addresses. And indeed
that will the the death of OpenID as we know it!

-- 
View this message in context: http://www.nabble.com/Re%3A-The-Various-Methods-For-%22user%40domain.com%22-Style-Identifiers-tp22651519p22778485.html
Sent from the OpenID - General mailing list archive at Nabble.com.