Certainly an RP could store it's own cookie, and check that before it loads it's javascript. larry-<br><br><br><div class="gmail_quote">On Sat, Apr 19, 2008 at 3:38 PM, SitG Admin <<a href="mailto:sysadmin@shadowsinthegarden.com">sysadmin@shadowsinthegarden.com</a>> wrote:<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"><div class="Ih2E3d">>>we developed a widget that we think addresses many of the<br>
>>usability issues surrounding OpenID. We're hoping you'll take a look<br>
>>and provide feedback to help us make it better.<br>
<br>
</div>Second thoughts:<br>
<div class="Ih2E3d"><br>
>How does it maintain state? Will your site be communicating with (and<br>
>effectively tracking) users to provide it?<br>
<br>
</div>Could it be decentralized further (in the pursuit of privacy) to<br>
enable sites using this widget to communicate with you to establish<br>
the initial state? For example, first my site checks with the user to<br>
see if they've been here before; *then*, if not, it asks your site<br>
"Who is this?". Maybe a couple of different cookies (but I assume<br>
here, that this is how you're keeping track of state), one just for<br>
you (holding whatever you need it to) and one that can be shared with<br>
anyone using the widget?<br>
<div><div></div><div class="Wj3C7c"><br>
-Shade<br>
_______________________________________________<br>
general mailing list<br>
<a href="mailto:general@openid.net">general@openid.net</a><br>
<a href="http://openid.net/mailman/listinfo/general" target="_blank">http://openid.net/mailman/listinfo/general</a><br>
</div></div></blockquote></div><br>