[OpenID] "Nightmare" article on OpenID
Nat Sakimura
sakimura at gmail.com
Thu Nov 18 23:40:33 UTC 2010
I agree that OpenID Auth 2.0's decision to use realm as the client
identifier was a very bad decision. OAuth style clientid is much
better. (I actually have been saying this before OAuth..)
Still, accusing google changed the identifier is inaccurate.
=nat
On Fri, Nov 19, 2010 at 8:25 AM, Luke Shepard <lshepard at fb.com> wrote:
> Again, I think that misses the point. His experience is not unique.
>
> Per-realm identifiers are really fragile. Every once in a while you'll get an RP that says they want them, but overwhelmingly they cause confusion and headaches like this one. Facebook used to have per-app identifiers but they really hindered growth.
>
> If our knee-jerk reaction, as a community, is to blame the developers when things are confusing, then it should not be surprising when the developers blame the protocol for their troubles.
>
> On Nov 18, 2010, at 3:16 PM, Nat Sakimura wrote:
>
>> I think we should make it clear that it is not Google but HE screwed it up by
>> changing his realm, by which OpenID Auth 2.0 Protocol identifies the site.
>>
>> =nat
>>
>> On Fri, Nov 19, 2010 at 7:10 AM, Carsten Pötter
>> <carsten.poetter at gmail.com> wrote:
>>> OK, I missed that part. I also acknowledge that OpenID could be
>>> easier, especially for RPs. But if there is no such thing as matching
>>> users in the protocol, a developer has to do something about it.
>>>
>>> On Thu, Nov 18, 2010 at 10:48 PM, Luke Shepard <lshepard at fb.com> wrote:
>>>> Saying "he should have used Simple Reg or AX" misses his point. He did try
>>>> that, but he found (as I and many others also have) that there is little
>>>> consistency among providers as far as which attributes are returned or when.
>>>
>>>
>>>
>>> --
>>> Carsten Pötter | notsorelevant.com/ | cpoetter.tumblr.com |
>>> twitter.com/carstenpoetter | +49 173 31 03 815
>>> _______________________________________________
>>> general mailing list
>>> general at lists.openid.net
>>> http://lists.openid.net/mailman/listinfo/openid-general
>>>
>>
>>
>>
>> --
>> Nat Sakimura (=nat)
>> http://www.sakimura.org/en/
>> http://twitter.com/_nat_en
>
>
--
Nat Sakimura (=nat)
http://www.sakimura.org/en/
http://twitter.com/_nat_en
More information about the general
mailing list