[OpenID] Feedback requested: New OpenID RP login UX prototype

Andrew Arnott andrewarnott at gmail.com
Tue Oct 27 02:58:10 UTC 2009 

Thanks, Mike.

That brings up an interesting next topic: assuming this login UX is
generally favored by the community, the next step after stabilization would
be to package it up in an archive of .css, .js, and .html files that any
site can use with any OpenID library.  I don't have the time nor the
expertise in non-.NET platforms or other OpenID libraries to integrate the
resulting archive into these libraries and/or their sample RP sites.

Are there any OpenID experts out there that are willing to contribute to
their favorite OpenID library so that this UX can be leveraged on their
platform/site/language?

--
Andrew Arnott
"I [may] not agree with what you have to say, but I'll defend to the death
your right to say it." - S. G. Tallentyre


On Mon, Oct 26, 2009 at 7:49 PM, Mike Kirkwood <mike at polka.com> wrote:

> Just a small note.
>
> Great effort and real-time improvements.   Feel much more comfortable
> using these types of libraries when there is such great support and
> follow through.
>
> --Mike
>
> On Mon, Oct 26, 2009 at 7:46 PM, Andrew Arnott <andrewarnott at gmail.com>
> wrote:
> > It turns out that nasty redirect behavior that pulled you back to
> Verisign
> > was due to a bug in Verisign's handling of checkid_immediate, which they
> are
> > now aware of and investigating.
> > So aside from that redirect issue, which only comes up if you click on
> > Verisign at least once, it seems, all fixes this forum has suggested have
> > been published.  So please feel free, everyone, to revisit
> > http://openidux.dotnetopenauth.net/ and give fresh feedback (or remind
> me of
> > something I may have missed in this discussion).
> > --
> > Andrew Arnott
> > "I [may] not agree with what you have to say, but I'll defend to the
> death
> > your right to say it." - S. G. Tallentyre
> >
> >
> > On Fri, Oct 23, 2009 at 2:20 PM, Rabbit <rabbit at cyberpunkrock.com>
> wrote:
> >>
> >> Good improvements, Andrew.
> >> Popups look great, plugin prompt did not appear.
> >> As for the redirect issue, I don't know if this helps but looking at the
> >> headers it checks each of these in sequence:
> >> - Google?
> >> - MyOpenID?
> >> - Yahoo?
> >> - Verisign?
> >> At which point it redirects me to login at PIP.
> >> Perhaps your prototype thinks I am signed into Versign.
> >> =Rabbit
> >> On Oct 23, 2009, at 2:23 PM, Andrew Arnott wrote:
> >>
> >> Hey Rabbit,
> >> So I fixed the popup window size and the plugin prompt (please verify!).
> >>  Also, I happened to run into the same Back->auto-redirect behavior you
> just
> >> described.  It was in IE8 for me, and I have no idea why it's doing
> that.
> >>  It doesn't usually (for me anyway).  But anyway, that's absolutely
> not by
> >> design, and I'm going to chase that down and fix it.  Thanks for letting
> me
> >> know it wasn't just a fluke on my machine. :)
> >> Thanks for the extra details.
> >> --
> >> Andrew Arnott
> >> "I [may] not agree with what you have to say, but I'll defend to the
> death
> >> your right to say it." - S. G. Tallentyre
> >>
> >>
> >> On Thu, Oct 22, 2009 at 10:15 PM, Rabbit <rabbit at cyberpunkrock.com>
> wrote:
> >>>
> >>> Inline comments.
> >>> Peace.
> >>> =Rabbit
> >>> On Oct 22, 2009, at 10:27 PM, Andrew Arnott wrote:
> >>>
> >>> Thanks, Rabbit.
> >>> Responses inline.
> >>> --
> >>> Andrew Arnott
> >>> "I [may] not agree with what you have to say, but I'll defend to the
> >>> death your right to say it." - S. G. Tallentyre
> >>>
> >>>
> >>> On Thu, Oct 22, 2009 at 7:01 PM, Rabbit <rabbit at cyberpunkrock.com>
> wrote:
> >>>>
> >>>> I won't sugar coat this. If I encountered this interface in the wild I
> >>>> would be furious. I hope you are able to take this criticism
> constructively
> >>>> and improve the user experience.
> >>>
> >>> Sure, I don't want you to sugar coat it.  Although your tone throughout
> >>> this email suggests that you thought I thought this was all finished
> and
> >>> polished.  It's a "prototype", dude.
> >>>
> >>> I know it's a prototype. Apologies for my tone.
> >>>>
> >>>> FireFox on OSX receives multiple plugin download requests. Obviously
> >>>> these are related to InfoCard but "explainable" from a technical
> perspective
> >>>> doesn't translate to "acceptable" from a user perspective. There was
> also no
> >>>> indication as to what the plugins were for and when I attempted to
> install
> >>>> them it failed. That latter criticism may be an issue with FireFox or
> OSX.
> >>>
> >>> I totally agree.  This doesn't happen on Windows, so I didn't see these
> >>> problems.  But another mac user reported seeing the same thing.  I have
> an
> >>> idea of how to fix this so please try again in a couple days and tell
> me if
> >>> the problem hasn't gone away.  Yes, it's InfoCard related, but it was
> not my
> >>> intention to throw up all kinds of unpleasantness for those who don't
> have
> >>> InfoCard support.  It's supposed to be a very quiet "light-up" scenario
> if
> >>> you have it, and completely and quietly missing if you don't.
> >>>
> >>> Realistically, it's not a big deal. In FireFox it appears as a slide
> down
> >>> bar the same that happens when asked to remember a password. I don't
> know
> >>> enough about integrating with InfoCard, the reason I pointed it out is
> that
> >>> there may be some Mozilla-oriented headers that will point its plugin
> >>> searcher in the right direction.
> >>>
> >>>
> >>>>
> >>>> Almost every popup window was irritating and appeared broken. A
> standard
> >>>> user would most likely think they were tricked into clicking an
> >>>> advertisement. This somewhat extends into my general criticism towards
> the
> >>>> entire popup standard being promoted (which I won't get into) but even
> with
> >>>> the popup approach there is room for improvement here. If you know the
> >>>> OpenID provider you are sending me to, and they do not offer a simple
> UI for
> >>>> popups, at least size the window to avoid horizontal scrollbars.
> >>>>
> >>>>
> >>>>
> http://s978.photobucket.com/albums/ae262/rabbyte/?action=view&current=Picture3.png
> >>>>
> >>>>
> http://s978.photobucket.com/albums/ae262/rabbyte/?action=view&current=Picture4.png
> >>>>
> >>>>
> http://s978.photobucket.com/albums/ae262/rabbyte/?action=view&current=Picture5.png
> >>>
> >>> Working within the popup UI is still being developed for the OPs, and
> >>> each of them are responsible for making it look good.  Google supports
> it
> >>> fully, as I'm sure you noticed.  Yahoo claims to support it but don't
> get
> >>> the window size right according to the UI extension draft spec and I
> hope
> >>> they fix that or the spec (I don't care which).  myopenid and verisign
> don't
> >>> support it at all, and the larger popup window size I give
> non-supporters
> >>> isn't apparently big enough for their large window demands.  I'll see
> if I
> >>> can fix that by just giving them a bigger window.  Ideally, I hope this
> >>> encourages these OPs to shrink their UI so it fits in smaller windows.
> >>>
> >>> imho, I would prefer a new tab being opened if there is no known window
> >>> dimensions. Unfortunately, that creates an even more inconsistent user
> >>> experience.
> >>>
> >>> Besides that, myopenid and Verisign aren't likely to be displayed in
> the
> >>> final UI kit that I'm building until they meet the guidelines I wrote
> up.
> >>>  RPs can always add them though.
> >>>>
> >>>> You'll also notice that the MyOpenID popup is slightly hiding its
> >>>> security feature on the top right. There's just no excuse for that.
> >>>
> >>> I agree.  But see above.
> >>>>
> >>>> The automatic redirecting is absolutely atrocious! Even just trying to
> >>>> test this out for feedback was excruciating. It is impossible to
> change my
> >>>> choice once I have made a choice. Page load tries to redirect.
> Clicking
> >>>> login tries to redirect. My history gets mangled and I can't hit the
> back
> >>>> button. Between the popups and the redirects, a standard user might
> (and
> >>>> should) think they have a virus.
> >>>
> >>> Now here you've lost me.  Can you explain more precisely what's going
> on?
> >>>  Maybe it's a Mac thing (which I would of course still want to fix),
> but why
> >>> do you say it's impossible to change your choice once you've made one?
>  If
> >>> you click one Provider and log in, you absolutely can pick another
> provider
> >>> the next time you log in (although we make them appear grayer than the
> rest
> >>> to discourage this).  But remember this is targeted at normal users --
> it's
> >>> not targeted for testing multiple OPs.  So a normal user would want to
> keep
> >>> clicking the same button in order to avoid splintering their identity.
> >>>  That's a common complaint about OpenID: "Which button did I click on
> last
> >>> time?"  Or more practically: "I logged in [with the wrong button] and
> now
> >>> all my stuff is gone!"  Although the other buttons are gray, you can
> still
> >>> click them.
> >>>
> >>> I thought that was an intentional feature. I made a provider choice,
> >>> clicked through to the provider, did not login (maybe that makes the
> >>> difference?), went back to the original page and each time it would
> load for
> >>> a second then instantly redirect me back to the OP I chose.
> >>> I had to load your page, hit stop quickly, click Login, hit stop
> quickly,
> >>> then choose another provider. (You can understand my frustration! hah)
> >>> I wouldn't mind the auto-redirects if there were a visual countdown
> such
> >>> as:
> >>> "You previously chose X as your provider. Redirecting in
> 3....2....1..."
> >>> with a cancel button to make another choice.
> >>> I don't really see how this could be an OS-specific issue. If you have
> >>> trouble duplicating this, contact me directly, I'll try to help
> pinpoint it.
> >>>
> >>> Now what about this "page load tries to redirect".  What does that
> mean?
> >>>  I've seen sites where the Back button takes you to a page that
> redirects
> >>> you "forward" again, which is very aggravating.  But on my browsers,
> this
> >>> doesn't happen.  The back button works as expected.  Can you elaborate
> about
> >>> what's broken?
> >>>>
> >>>> It also wouldn't hurt to provide a little information about OpenID
> since
> >>>> it is an option. Even linking to a tutorial site to provide more
> information
> >>>> would be helpful (hey! and you could use another popup!). Ok, maybe
> that
> >>>> last remark was a little mean. I appreciate the effort. I really need
> to put
> >>>> together a demo. I really hope you found my feedback useful.
> >>>
> >>> Here I disagree with you, but your opinion is appreciated nonetheless.
> >>>  This is not a "promote OpenID" design.  Some of the loudest feedback I
> hear
> >>> from users who fail to log into RPs is that they don't know what OpenID
> is
> >>> and they leave.  This UI is designed for maximum user conversions to
> the
> >>> RP's services, not to OpenID.  RPs want users to log in -- they don't
> care
> >>> whether users know what OpenID is, and users don't visit random RPs to
> learn
> >>> about what OpenID is.
> >>>
> >>> I only suggested it as OpenID is an option. It don't think it would
> hurt
> >>> since you're already expanding the window with an input field to have a
> >>> small link saying "What is this?" After all, that could easily be a
> path of
> >>> discovery for many people who just haven't heard of OpenID yet but
> would
> >>> love if they understood it.
> >>>
> >>> A design requirement is to keep the UI as simple as possible, while
> >>> providing flexibility where needed for power users.  So links to learn
> about
> >>> OpenID will be limited to what the RP's attorneys insist on saying for
> >>> liability reasons.
> >>> Yes, your feedback was helpful -- and can be more so if you can provide
> >>> some more detail about the issues I asked for more detail about.
> >>>>
> >>>> =Rabbit
> >>>>
> >>>
> >>>
> >>
> >>
> >
> >
> > _______________________________________________
> > general mailing list
> > general at lists.openid.net
> > http://lists.openid.net/mailman/listinfo/openid-general
> >
> >
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20091026/4316292f/attachment-0001.htm>

More information about the general mailing list