<html><head></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; ">I suspect that getting the IdP to support nickname in SREG and AX is the shortest path to some solution.<div><br></div><div>Since it is self asserted the user can use a name, email, or URI as they like.</div><div><br></div><div>I suppose that if the IdP is using some nice globally unique URI for the person they can always throw that in nickname by default.</div><div><br></div><div>It is hard to know if a RP needs a unique nickname for the user. </div><div><br></div><div>It would be nice if all RP used claimed_id for the primary key and something that doesn't need to be unique for the display name. Unfortunately a lot of RP's are using the display name as the primary key.</div><div><br></div><div>John B.<br><div><div>On 2009-10-29, at 1:22 PM, Andrew Arnott wrote:</div><br class="Apple-interchange-newline"><blockquote type="cite">I agree. <div><br></div><div>Google and Yahoo don't offer nicknames, last I checked. That would definitely help alleviate. AX also has a nickname type URI, so Google could support it.</div><div><br></div><div>Some really poor RPs have actually failed to log me in because my OP did offer a nickname, and it didn't happen to fit into the RP's uniqueness constraint. The RP didn't even give me a chance to choose another. Yech.<br clear="all">
--<br>Andrew Arnott<br>"I [may] not agree with what you have to say, but I'll defend to the death your right to say it." - S. G. Tallentyre<br>
<br><br><div class="gmail_quote">On Thu, Oct 29, 2009 at 9:20 AM, John Bradley <span dir="ltr"><<a href="mailto:ve7jtb@ve7jtb.com">ve7jtb@ve7jtb.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<div style="word-wrap:break-word">Andrew,<div><br></div><div>If it is a display name for showing to the user that is what SREG nickname is for. </div><div>It doesn't need to be unique.</div><div><br></div><div>If it is for showing other people who the user is that is more complicated.</div>
<div><br></div><div>John B.<div><div></div><div class="h5"><br><div><div>On 2009-10-29, at 1:15 PM, Andrew Arnott wrote:</div><br><blockquote type="cite">Santosh,<div><br></div><div>Don't forget that some RPs (like mine) don't want the email address or full name of the user. OpenID has already solved the problem of RP and OP recognizing the user. So I agree this isn't particularly about the RP or OP -- but more about helping the user recognize that indeed he is the one logged into the RP he's clicking around within. But to do that, we need additional RP-OP communication. So it is about the RP and OP after all. </div>
<div><br clear="all">--<br>Andrew Arnott<br>"I [may] not agree with what you have to say, but I'll defend to the death your right to say it." - S. G. Tallentyre<br>
<br><br><div class="gmail_quote">On Thu, Oct 29, 2009 at 9:09 AM, Santosh Rajan <span dir="ltr"><<a href="mailto:santrajan@gmail.com" target="_blank">santrajan@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Hi Andrew,<div>This is really not about the RP or the OP. It is about the "user". If the user agree's then Google already provides his email address, and name.</div><div>Maybe we need to re-think the whole issue.</div>
<div><br></div><div><br><br><div class="gmail_quote"><div><div></div><div>On Thu, Oct 29, 2009 at 9:18 PM, Andrew Arnott <span dir="ltr"><<a href="mailto:andrewarnott@gmail.com" target="_blank">andrewarnott@gmail.com</a>></span> wrote:<br>
</div></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div><div></div><div>
<div>A usability issue with OpenID is that while "<a href="http://blog.nerdbank.net/" target="_blank">blog.nerdbank.net</a>" makes for a reasonable "username" for an RP to display as I log in with my "vanity URL", my Google-given claimed_id at an RP is <i>not</i> suitable for display as my username. Rather than have RPs hard-code an increasing number of OPs that issue these, particularly since some OPs can issue PPIDs at some times and not others based on user preference, can we get OPs to somehow indicate with the assertion that the identifier is not intended for human consumption?</div>
<div><br></div><div>We already have a way: a PAPE authentication policy with this URI: (which comes from the ICAM OpenID 2.0 profile)</div><a href="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/privatepersonalidentifier" target="_blank">http://schemas.xmlsoap.org/ws/2005/05/identity/claims/privatepersonalidentifier</a><div>
<br></div><div>Can we get Google, and any other OPs that issue these identifiers, to includes this PAPE policy? </div><div><br></div><div>One possibility is to include this PAPE policy in the response if it was included in the request, but if an RP doesn't particularly want to <i>request</i> a PPID, but merely wants to know if it gets one, requesting this policy in PAPE doesn't seem appropriate.</div>
<div><br></div><div>Any other ideas?</div><div><br></div><font color="#888888"><div>--<br>Andrew Arnott<br>"I [may] not agree with what you have to say, but I'll defend to the death your right to say it." - S. G. Tallentyre<br>
</div>
</font><br></div></div><div>_______________________________________________<br>
general mailing list<br>
<a href="mailto:general@lists.openid.net" target="_blank">general@lists.openid.net</a><br>
<a href="http://lists.openid.net/mailman/listinfo/openid-general" target="_blank">http://lists.openid.net/mailman/listinfo/openid-general</a><br>
<br></div></blockquote></div><br><br clear="all"><br>-- <br><a href="http://hi.im/santosh" target="_blank">http://hi.im/santosh</a><br><br><br>
</div>
</blockquote></div><br></div>
_______________________________________________<br>general mailing list<br><a href="mailto:general@lists.openid.net" target="_blank">general@lists.openid.net</a><br><a href="http://lists.openid.net/mailman/listinfo/openid-general" target="_blank">http://lists.openid.net/mailman/listinfo/openid-general</a><br>
</blockquote></div><br></div></div></div></div></blockquote></div><br></div>
</blockquote></div><br></div></body></html>