[OpenID] LinkedIn Connect?
Chris Messina
chris.messina at gmail.com
Wed Apr 7 17:43:09 UTC 2010
Have you done any usability studies on this flow/screen? Any idea whether
people understand the "duration" dropdown? And — given that elegant.ly is
using the OAuth token to figure out identity — if and when the token expires
— do they still have a stable identifier for the user?
Chris
On Wed, Apr 7, 2010 at 10:26 AM, Paul Lindner <lindner at inuus.com> wrote:
> The screen you see is LinkedIn's standard OAuth Authorization Screen. When
> you click on the sign-in button it hits the 3rd party backend, which hits
> our requestToken endpoint, the resulting token is immediately used to
> redirect to the LinkedIn Authorize page. If you're logged out you're going
> to see the Email/Password fields. In all cases we prompt for the duration
> of the access grant. Once access is granted we redirect back to the
> originating site.
>
> It appears that elegant.ly then associates the retrieved access token
> with a cookie/session on their domain.
>
> Very slick.
>
>
> On Apr 7, 2010, at 9:05 AM, Chris Messina wrote:
>
> Interesting.
>
> But while the signin button doesn't come from you, the OAuth page you're
> redirected to does.
>
> How else is that page intended to be used?
>
> Chris
>
> Sent from my iPhone 2G
>
> On Apr 7, 2010, at 6:09 AM, Paul Lindner <lindner at inuus.com> wrote:
>
> Hi all,
>
> This SignIn button is not something we've designed. However it shows that
> people will apply existing technology to solve their problems. In fact it's
> not that much different than 'Sign-in With Twitter' if you think about it...
>
>
> On Wed, Apr 7, 2010 at 5:00 AM, <<openid-general-request at lists.openid.net>
> openid-general-request at lists.openid.net> wrote:
>
>> Nice interface, thanks for sharing.
>>
>> A bit of Bo-Hoo at LinkedIn for using "Sign In" which seems to
>> indicate log in when it's not really.
>> But perhaps no one cares. Is authn and authz just an academic
>> difference in the wild?
>>
>> The world will keep turning...
>>
>>
>> On Fri, Apr 2, 2010 at 7:06 PM, Chris Messina < <chris.messina at gmail.com>
>> chris.messina at gmail.com> wrote:
>> > Take a look at this:
>> > visit <http://elegant.ly/>http://elegant.ly and click the "Sign In"
>> button...
>> > You end up at LinkedIn where you're essentially doing an OAuth dance for
>> > sign in.
>> > Interesting, eh?
>> > Chris
>> >
>> > --
>> > Chris Messina
>> > Open Web Advocate, Google
>> >
>> > Personal: <http://factoryjoe.com/>http://factoryjoe.com
>> > Follow me on Buzz: <http://buzz.google.com/chrismessina>
>> http://buzz.google.com/chrismessina
>> > ...or Twitter: <http://twitter.com/chrismessina>
>> http://twitter.com/chrismessina
>> >
>> > This email is: ? [X] shareable ? ?[ ] ask first ? [ ] private
>> >
>> > _______________________________________________
>> > general mailing list
>> > <general at lists.openid.net>general at lists.openid.net
>> > <http://lists.openid.net/mailman/listinfo/openid-general>
>> http://lists.openid.net/mailman/listinfo/openid-general
>> >
>> >
>>
>
> _______________________________________________
> general mailing list
> general at lists.openid.net
> http://lists.openid.net/mailman/listinfo/openid-general
>
>
>
--
Chris Messina
Open Web Advocate, Google
Personal: http://factoryjoe.com
Follow me on Buzz: http://buzz.google.com/chrismessina
...or Twitter: http://twitter.com/chrismessina
This email is: [ ] shareable [X] ask first [ ] private
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20100407/087c70c6/attachment.htm>
More information about the general
mailing list