<WBR>Please take me off of your distro.<br>
<br>
<br>
-----Original Message-----<br>
From: Eddy Nigg (StartCom Ltd.) <eddy_nigg@startcom.org><br>
To: Simon Willison <simon@simonwillison.net><br>
Cc: general@openid.net<br>
Sent: Wed, 18 Jul 2007 2:29 pm<br>
Subject: Re: [OpenID] openid in a non-distributed situation?<br>
<br>
<div id=AOLMsgPart_3_e60543bc-21ff-49a0-91b2-40a6dce389c5>Simon Willison wrote:
<BLOCKQUOTE cite=mid:a3b4f3b60707181639m48d6f8abjbed1fec4542e8b91@mail.gmail.com type="cite"><PRE>On 7/18/07, Gábor Farkas <A class=moz-txt-link-rfc2396E href="mailto:gabor@nekomancer.net"><gabor@nekomancer.net></A> wrote:
</PRE>
<BLOCKQUOTE type="cite"><PRE>i'm trying to implement a single-signon system for an intranet-solution,
and had the idea that maybe openid would help there.
i understand that it's not what openID is meant for, but i thought it
maybe could work in this situation.
</PRE></BLOCKQUOTE><PRE>On the contrary, I think OpenID is ideally suited for this. </PRE></BLOCKQUOTE>Exactly! And the only way OpenID should be used currently <SPAN class=moz-smiley-s5><SPAN> :-D </SPAN></SPAN> (Sorry for the rant)<br>
<BLOCKQUOTE cite=mid:a3b4f3b60707181639m48d6f8abjbed1fec4542e8b91@mail.gmail.com type="cite"><PRE>The method you describe should work fine. I'm hoping that open source
projects that include OpenID support will add settings to make this
kind of thing easier - things like "only accept OpenIDs that match
this pattern" or "glue the entered username on to this URL to create
an OpenID, then use that".</PRE></BLOCKQUOTE>It should be pretty easy to simply append the URL always to the submittion field, which would contain only the user name. Obviously this would serve a dual purpose, since if somebody would try to enter a different URL (instead that of your internal IDP) it would land nowhere.<br>
<br>
Example: <br>
<br>
User submits "user" and the script appends .intern.yourdomain.com (the domain of your IDP server) it will request authorization from the IDP server, whereas "user.myopenid.com" would result in a failure because user.myopenid.com.intern.yourdomain.com doesn't exist.<br>
<br>
<div class=moz-signature>-- <br>
<div><FONT face=Arial size=2>Regards</FONT></div>
<div><FONT face=Arial size=2> </FONT></div>
<div><FONT face=Arial size=2>Signer: Eddy Nigg, StartCom Ltd.</FONT></div>
<div><FONT face=Arial size=2>Jabber: <A class=moz-txt-link-abbreviated href="mailto:startcom@startcom.org">startcom@startcom.org</A></FONT></div>
<div><FONT face=Arial size=2>Phone: +1.213.341.0390</FONT></div>
</div>
</div>
<!-- end of AOLMsgPart_3_e60543bc-21ff-49a0-91b2-40a6dce389c5 -->
<div id=AOLMsgPart_4_e60543bc-21ff-49a0-91b2-40a6dce389c5 style="FONT-SIZE: 12px; MARGIN: 0px; COLOR: #000; FONT-FAMILY: Tahoma, Verdana, Arial, Sans-Serif; BACKGROUND-COLOR: #fff"><PRE style="FONT-SIZE: 9pt"><TT>_______________________________________________
general mailing list
<A href="mailto:general@openid.net">general@openid.net</A>
<A href="http://openid.net/mailman/listinfo/general" target=_blank>http://openid.net/mailman/listinfo/general</A>
</TT></PRE></div>
<!-- end of AOLMsgPart_4_e60543bc-21ff-49a0-91b2-40a6dce389c5 --><div class="AOLPromoFooter">
<hr style="margin-top:10px;" />
<a href="http://pr.atwola.com/promoclk/100122638x1081283466x1074645346/aol?redir=http%3A%2F%2Fwww%2Eaim%2Ecom%2Ffun%2Fmail%2F" target="_blank"><b>Check Out the new free AIM(R) Mail</b></a> -- Unlimited storage and industry-leading spam and email virus protection.<br />
</div>