[OpenID] Logout Use Case
SitG Admin
sysadmin at shadowsinthegarden.com
Sat Oct 3 16:12:22 UTC 2009
>The detail that RP1 required positive assertions from OP1 and OP2 to
>log the user in seems inconsequential.
Or it could be a varying-levels-of-assurance login, with the user
able to provide higher levels as needed to take sensitive actions
(perhaps through an OP that only authenticates for 5 minutes at a
time, and uses one-time passwords).
>As soon as RP1 gets the "log out" assertion from the OP, it only has
>OP2 with a standing positive assertion left, and therefore logs the
>user out.
Or it lowers the user's level of access, and the user merely *thinks*
their terminal has been logged out. This worries me. If the OP
signals (somehow) that this is (intended as) a universal logout, how
does a RP signal back that the user ought to visit their site for
more actions, without revealing the likelihood of other active OP's?
(It may be unavoidable. RP's supporting MultiAuth should probably
alert the user to the difficulty of balancing privacy with universal
logout.)
-Shade
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20091003/5e03ff15/attachment.htm>
More information about the general
mailing list