<html><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; ">Yes,<div><br></div><div>The OP receives the cannonicalID from the XRDS as the openid.claimed_id and the LocalID as the openid.identity. The user input is not passed.</div><div><br></div><div>This also happens with URL identifiers and delegation if there are http redirects involved.</div><div><br></div><div>I have argued in the past that the two fields we have in openID 2.0 are problematic for identifiers other than URL and even for them not always sufficient.</div><div><br></div><div>Don't quite know where you are going with this, but it is a known issue.</div><div><br></div><div>John B.<br><div><div>On 26-Aug-09, at 12:43 AM, <a href="mailto:openid-general-request@lists.openid.net">openid-general-request@lists.openid.net</a> wrote:</div><br class="Apple-interchange-newline"><blockquote type="cite"><span class="Apple-style-span" style="border-collapse: separate; color: rgb(0, 0, 0); font-family: Helvetica; font-size: medium; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; line-height: normal; orphans: 2; text-align: auto; text-indent: 0px; text-transform: none; white-space: normal; widows: 2; word-spacing: 0px; -webkit-border-horizontal-spacing: 0px; -webkit-border-vertical-spacing: 0px; -webkit-text-decorations-in-effect: none; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px; "><span class="Apple-style-span" style="font-family: monospace; ">Date: Tue, 25 Aug 2009 21:10:00 -0700<br>From: Peter Williams <<a href="mailto:pwilliams@rapattoni.com">pwilliams@rapattoni.com</a>><br>Subject: [OpenID] is it true?<br>To: "<a href="mailto:openid-general@lists.openid.net">openid-general@lists.openid.net</a>"<br><span class="Apple-tab-span" style="white-space: pre; "> </span><<a href="mailto:openid-general@lists.openid.net">openid-general@lists.openid.net</a>><br>Message-ID:<br><span class="Apple-tab-span" style="white-space: pre; "> </span><<a href="mailto:BFBC0F17A99938458360C863B716FE463DCDF238FD@simmbox01.rapnt.com">BFBC0F17A99938458360C863B716FE463DCDF238FD@simmbox01.rapnt.com</a>><br>Content-Type: text/plain; charset="us-ascii"<br><br>User types "@blog*lockbox" at RP<br><br>Discovery determines that XRD.canonicalid is !1234, and the XRD.SEP has local-id=homepw.myopenid.com<br><br>This form of SEP implies that the user desires openid2-style openid-delegation<br><br>On receiving a request in which cid=!1234 and identifier=homepw.myopenid.com, the OP ONLY responds IF it does a discovery on !1234, validates that cid-verification=true (and sees that there exists SEP.local-id == request.openid.identity).<br><br>Is it true that the OP does NOT know that the user typed @blog*lockbox at the RP?<br><br><br></span></span></blockquote></div><br></div></body></html>