[OpenID] Password age and password reset
SitG Admin
sysadmin at shadowsinthegarden.com
Thu May 14 03:52:18 UTC 2009
>This whole thing was prompted because Facebook is working to become
>a relying party.
Glad to hear it! :)
>As part of that, we would like to be able to get this extra
>information. Otherwise, we are forced to have a more draconian
>policy - if the user's account is compromised, then disable all
>OpenID logins until the user does something out of band to convince
>us that they control their provider. That's pretty awkward.
A boon to small operators who run an OP for a small group of people
they know in person, and can easily meet up with again to reset the
password out of band.
-Shade
More information about the general
mailing list