<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type">
</head>
<body bgcolor="#ffffff" text="#000000">
Oh, I like this a lot. If the user signs in with an OP that shares
email address, the RP can determine if it already has an account with
the same email address, and offer to merge to accounts. If not, the
user is really a new user, and should probably bypass the account
merging step.<br>
<br>
A tricky issue could arise if the RP creates a new account for the
OpenID user (because the RP has not seen that email address before),
and later on, someone tries to register an account (using the
traditional non-Open registration flow) using that email address. This
could get hairy if they happen to be different people, and the OP had a
stale or incorrect email address.<br>
<br>
Allen<br>
<br>
<br>
Chris Messina wrote:
<blockquote
cite="mid:1bc4603e0904301531pd4b8c8fs81c03d2a3a2ed7cc@mail.gmail.com"
type="cite">Trazzler does a pretty good job with this -- using
Facebook Connect. I've documented the steps here:
<div><br>
</div>
<div><a moz-do-not-send="true"
href="https://wiki.openid.net/Trazzler-profile-linking">http://wiki.openid.net/Trazzler-profile-linking</a><br>
<div><br>
</div>
<div>Chris</div>
<div><br>
</div>
<div>
<div class="gmail_quote">On Thu, Apr 30, 2009 at 11:59 AM, David
Recordon <span dir="ltr"><<a moz-do-not-send="true"
href="mailto:david@sixapart.com">david@sixapart.com</a>></span>
wrote:<br>
<blockquote class="gmail_quote"
style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">Hey
Santosh,<br>
I agree that when supporting multiple login mechanisms, it's important
for the site to let you easily merge accounts. One way to do this is
to request your email via SREG or AX and proactively look out for you.
Another approach is when you login with a new identifier, to ask if
you already have an account and let you merge then.<br>
<font color="#888888">
<br>
--David</font>
<div>
<div class="h5"><br>
<br>
On Apr 29, 2009, at 8:06 PM, Santosh Rajan wrote:<br>
<br>
<blockquote class="gmail_quote"
style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<br>
I have a friendfeed account with my gmail address. Friendfeed now
supports<br>
Google and facebook login.<br>
So I log in with my google account. No problem. I also have a facebook<br>
account with the same email address.<br>
<br>
When I log in with my Facebook account it see's me as a new user
obviously.<br>
They cant get your email address from facebook. So I add the same email<br>
address to this account. I logout and login with google again and it
takes<br>
me to this new account!<br>
<br>
Then I close my browser and login again with my facebook and it
recognizes<br>
my old account! No problem.<br>
<br>
Now this is the problem. Most sites maintain accounts based on email<br>
addresses. It is is very difficult to integrate third party signin's<br>
whithout email addresses. Friendfeed seems to have pulled it off with
some<br>
glitches though.<br>
<br>
If OpenId needs to seemlessly integrate with RP's email based
authentication<br>
SREG email is an absolute necessity.<br>
<br>
Also please see my blogpost on a related subject on Facebook here.<br>
<a moz-do-not-send="true"
href="http://santrajan.blogspot.com/2009/04/facebook-support-for-openid-farce-or.html"
target="_blank">http://santrajan.blogspot.com/2009/04/facebook-support-for-openid-farce-or.html</a><br>
<a moz-do-not-send="true"
href="http://santrajan.blogspot.com/2009/04/facebook-support-for-openid-farce-or.html"
target="_blank">http://santrajan.blogspot.com/2009/04/facebook-support-for-openid-farce-or.html</a><br>
<br>
<br>
-----<br>
<br>
Santosh Rajan<br>
<a moz-do-not-send="true" href="http://santrajan.blogspot.com"
target="_blank">http://santrajan.blogspot.com</a> <a
moz-do-not-send="true" href="http://santrajan.blogspot.com"
target="_blank">http://santrajan.blogspot.com</a><br>
-- <br>
View this message in context: <a moz-do-not-send="true"
href="http://www.nabble.com/OpenID-and-Friendfeed-tp23307101p23307101.html"
target="_blank">http://www.nabble.com/OpenID-and-Friendfeed-tp23307101p23307101.html</a><br>
Sent from the OpenID - General mailing list archive at Nabble.com.<br>
<br>
_______________________________________________<br>
general mailing list<br>
<a moz-do-not-send="true" href="mailto:general@openid.net"
target="_blank">general@openid.net</a><br>
<a moz-do-not-send="true"
href="http://openid.net/mailman/listinfo/general" target="_blank">http://openid.net/mailman/listinfo/general</a><br>
</blockquote>
<br>
_______________________________________________<br>
general mailing list<br>
<a moz-do-not-send="true" href="mailto:general@openid.net"
target="_blank">general@openid.net</a><br>
<a moz-do-not-send="true"
href="http://openid.net/mailman/listinfo/general" target="_blank">http://openid.net/mailman/listinfo/general</a><br>
</div>
</div>
</blockquote>
</div>
<br>
<br clear="all">
<br>
-- <br>
Chris Messina<br>
Open Web Advocate<br>
<br>
<a moz-do-not-send="true" href="http://factoryjoe.com">factoryjoe.com</a>
// <a moz-do-not-send="true" href="http://diso-project.org">diso-project.org</a>
// <a moz-do-not-send="true" href="http://openid.net">openid.net</a>
// <a moz-do-not-send="true" href="http://vidoop.com">vidoop.com</a><br>
This email is: [ ] bloggable [X] ask first [ ] private<br>
</div>
</div>
<pre wrap="">
<hr size="4" width="90%">
_______________________________________________
general mailing list
<a class="moz-txt-link-abbreviated" href="mailto:general@openid.net">general@openid.net</a>
<a class="moz-txt-link-freetext" href="http://openid.net/mailman/listinfo/general">http://openid.net/mailman/listinfo/general</a>
</pre>
</blockquote>
<br>
</body>
</html>