All of these changes would break adoption and neither is necessary to resolve trust issues.<br><br><div class="gmail_quote">On Wed, Jul 15, 2009 at 7:56 AM, SitG Admin <span dir="ltr"><<a href="mailto:sysadmin@shadowsinthegarden.com">sysadmin@shadowsinthegarden.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">1. Removing 3rd-party URIs for a domain's host-meta file; or</blockquote>
</blockquote><div><br></div><div>This could be safely done with signed delegation</div><div> </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<br>
2. Removing the <openid:URITemplate> element; or</blockquote></blockquote><div><br></div><div>This enables delegation</div><div> </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><br>
3. Removing 3rd-party XRDS signers.</blockquote></blockquote></div><div><br></div>This can be safely done through delegation (the first signature needs to be trusted by the RP to be authoritative for the domain in question).<br>
<br clear="all"><br>-- <br>--Breno<br><br>+1 (650) 214-1007 desk<br>+1 (408) 212-0135 (Grand Central)<br>MTV-41-3 : 383-A <br>PST (GMT-8) / PDT(GMT-7)<br>