2009/7/8 SitG Admin <span dir="ltr"><<a href="mailto:sysadmin@shadowsinthegarden.com" target="_blank">sysadmin@shadowsinthegarden.com</a>></span><div class="im"><br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div><div>
<div>>>What if I don't want the *OP* to know my E-mail address,
but I'm fine with *you* knowing it?<br>
></div>
<div>>The user is free to set up an email address and password with
my site and not use an OP for logging in.</div>
<div><br></div>
</div><div>I'm confused. It sounded at first like you just needed that
information for notification purposes, but now it looks like you also
(sometimes) use it for login purposes.</div></div></blockquote></div><div><br>To clarify: an email address is not needed for registered purposes if the using an OP for logging in.<br> </div><div class="im"><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div><div><br></div>
<div>So, then, my options with your site are to either share my
address with my OP, or to just not use OpenID at all? That, frankly,
sucks ;)</div><div>
<br></div></div></blockquote><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"><div><div><div><br></div>
<div>>Yes that was what I was uncertain about. I checked the
Facebook Connect <a href="http://www.somethingtoputhere.com/therunaround/" target="_blank">sample
application</a> and that is how it<i> appears</i> to work. Do certain
OPs withold email addresses and certain OPs make them available?</div>
<div><br></div>
</div><div>It's possible. The question for your site, I think, should be
whether you are going to tell the user "We are sorry, but your OP
(does not know / would not reveal) your E-mail address, so therefore
we are not even going to give you a place to enter that
information."</div>
<div><br></div>
<div>I suggest planning for use-cases where the user wants to use
OpenID *and* give you information that their OP is not privilege
to.</div>
</div></blockquote></div><br>Yep, you're right. I hadn't thought things through properly. Thanks for the feedback.