Ok got you, didn't think of the nickname.<br><br><div class="gmail_quote">On Thu, Oct 29, 2009 at 9:52 PM, Andrew Arnott <span dir="ltr"><<a href="mailto:andrewarnott@gmail.com">andrewarnott@gmail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">I agree. <div><br></div><div>Google and Yahoo don't offer nicknames, last I checked. That would definitely help alleviate. AX also has a nickname type URI, so Google could support it.</div>
<div><br></div><div>Some really poor RPs have actually failed to log me in because my OP did offer a nickname, and it didn't happen to fit into the RP's uniqueness constraint. The RP didn't even give me a chance to choose another. Yech.<div class="im">
<br clear="all">
--<br>Andrew Arnott<br>"I [may] not agree with what you have to say, but I'll defend to the death your right to say it." - S. G. Tallentyre<br>
<br><br></div><div><div></div><div class="h5"><div class="gmail_quote">On Thu, Oct 29, 2009 at 9:20 AM, John Bradley <span dir="ltr"><<a href="mailto:ve7jtb@ve7jtb.com" target="_blank">ve7jtb@ve7jtb.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div style="word-wrap:break-word">Andrew,<div><br></div><div>If it is a display name for showing to the user that is what SREG nickname is for. </div><div>It doesn't need to be unique.</div><div><br></div><div>If it is for showing other people who the user is that is more complicated.</div>
<div><br></div><div>John B.<div><div></div><div><br><div><div>On 2009-10-29, at 1:15 PM, Andrew Arnott wrote:</div><br><blockquote type="cite">Santosh,<div><br></div><div>Don't forget that some RPs (like mine) don't want the email address or full name of the user. OpenID has already solved the problem of RP and OP recognizing the user. So I agree this isn't particularly about the RP or OP -- but more about helping the user recognize that indeed he is the one logged into the RP he's clicking around within. But to do that, we need additional RP-OP communication. So it is about the RP and OP after all. </div>
<div><br clear="all">--<br>Andrew Arnott<br>"I [may] not agree with what you have to say, but I'll defend to the death your right to say it." - S. G. Tallentyre<br>
<br><br><div class="gmail_quote">On Thu, Oct 29, 2009 at 9:09 AM, Santosh Rajan <span dir="ltr"><<a href="mailto:santrajan@gmail.com" target="_blank">santrajan@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Hi Andrew,<div>This is really not about the RP or the OP. It is about the "user". If the user agree's then Google already provides his email address, and name.</div><div>Maybe we need to re-think the whole issue.</div>
<div><br></div><div><br><br><div class="gmail_quote"><div><div></div><div>On Thu, Oct 29, 2009 at 9:18 PM, Andrew Arnott <span dir="ltr"><<a href="mailto:andrewarnott@gmail.com" target="_blank">andrewarnott@gmail.com</a>></span> wrote:<br>
</div></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div><div></div><div>
<div>A usability issue with OpenID is that while "<a href="http://blog.nerdbank.net/" target="_blank">blog.nerdbank.net</a>" makes for a reasonable "username" for an RP to display as I log in with my "vanity URL", my Google-given claimed_id at an RP is <i>not</i> suitable for display as my username. Rather than have RPs hard-code an increasing number of OPs that issue these, particularly since some OPs can issue PPIDs at some times and not others based on user preference, can we get OPs to somehow indicate with the assertion that the identifier is not intended for human consumption?</div>
<div><br></div><div>We already have a way: a PAPE authentication policy with this URI: (which comes from the ICAM OpenID 2.0 profile)</div><a href="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/privatepersonalidentifier" target="_blank">http://schemas.xmlsoap.org/ws/2005/05/identity/claims/privatepersonalidentifier</a><div>
<br></div><div>Can we get Google, and any other OPs that issue these identifiers, to includes this PAPE policy? </div><div><br></div><div>One possibility is to include this PAPE policy in the response if it was included in the request, but if an RP doesn't particularly want to <i>request</i> a PPID, but merely wants to know if it gets one, requesting this policy in PAPE doesn't seem appropriate.</div>
<div><br></div><div>Any other ideas?</div><div><br></div><font color="#888888"><div>--<br>Andrew Arnott<br>"I [may] not agree with what you have to say, but I'll defend to the death your right to say it." - S. G. Tallentyre<br>
</div>
</font><br></div></div><div>_______________________________________________<br>
general mailing list<br>
<a href="mailto:general@lists.openid.net" target="_blank">general@lists.openid.net</a><br>
<a href="http://lists.openid.net/mailman/listinfo/openid-general" target="_blank">http://lists.openid.net/mailman/listinfo/openid-general</a><br>
<br></div></blockquote></div><br><br clear="all"><br>-- <br><a href="http://hi.im/santosh" target="_blank">http://hi.im/santosh</a><br><br><br>
</div>
</blockquote></div><br></div>
_______________________________________________<br>general mailing list<br><a href="mailto:general@lists.openid.net" target="_blank">general@lists.openid.net</a><br><a href="http://lists.openid.net/mailman/listinfo/openid-general" target="_blank">http://lists.openid.net/mailman/listinfo/openid-general</a><br>
</blockquote></div><br></div></div></div></div></blockquote></div><br></div></div></div>
</blockquote></div><br><br clear="all"><br>-- <br><a href="http://hi.im/santosh">http://hi.im/santosh</a><br><br><br>