Shade,<div><br></div><div>Thanks for your thoughts. The point of these testing-only Identifiers would be that no authentication of the user agent would take place. Adding an openid.testing_only=true parameter would not accomplish anything, because if it did, I could take your OpenID, tack on openid.testing_only, and suddenly be able to get the OP to assert your identity although it isn't you. That obviously isn't acceptable.</div>
<div><br></div><div>And personally, I have no reservation whatsoever with reserving TestIdentifierAlwaysAssert as a test identifier at every OP. <span class="Apple-style-span" style="font-style: italic;">Really</span>, come on, it's not like there's a lack of space in the identifier namespace out there, and if someone actually wanted that as their identifier. Tough. I wanted "Andrew" too, but that was taken. I move on.</div>
<div><br clear="all">--<br>Andrew Arnott<br>"I [may] not agree with what you have to say, but I'll defend to the death your right to say it." - Voltaire<br>
<br><br><div class="gmail_quote">On Tue, Feb 10, 2009 at 4:34 PM, SitG Admin <span dir="ltr"><<a href="mailto:sysadmin@shadowsinthegarden.com">sysadmin@shadowsinthegarden.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
Thoughts like 'openid.testing_only=true' and "What if I *want* to be known across the web as <a href="http://shadowsinthegarden.com/TestIdentifierAlwaysAssert" target="_blank">http://shadowsinthegarden.com/TestIdentifierAlwaysAssert</a>? Help! The specs are killing perfectly valid ASCII sequences for URI's!" are crossing my mind, but nothing solid.<br>
<br>
-Shade<br>
</blockquote></div><br></div>