On Wed, Mar 3, 2010 at 11:58 AM, Peter Watkins <span dir="ltr"><<a href="mailto:peterw@tux.org" target="_blank">peterw@tux.org</a>></span> wrote:<br><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<br> 1b) I can't see this working on typical wifi scenarios where the<br>
device has an IANA reserved address behind some SNAT gateway;<br>
simply no good way for the Internet-based RP to initiate a<br>
connection back to the micro OP. With weird ports, an intelligent<br>
middle-man service could map a public middle-man port to your mobile<br>
through a mobile-initiated TCP tunnel to the middle-man, but we're<br>
back to RP's outbound firewall rules.<br>
<br></blockquote><div><br></div><div>Good point about trying to run an iPhoneOP on wifi. I guess I was thinking this would just go over the 3G network in order to avoid firewall and routing problems. </div><div><br></div>
<div>There's a company with an iPhone App called "ServersMan" (<a href="http://serversman.com/promo/promo_ip_en.html" target="_blank">http://serversman.com/promo/promo_ip_en.html</a> -- now available in US and Japanese App Store) that runs a web server on the iPhone. Using there app, you can hit a URL from a web-browser on your computer, and view files served from a webserver running on the iPhone. This app can work over the 3G network (worked when I tested it with my phone's wifi turned off). </div>
<div><br></div><div> </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
2) Avoid the dyndns trust issue by using https URLs for your micro OP.<br>
(Nobody should be using plain http for OP endpoints!)<br>
<br></blockquote><div><br></div><div>Great point!</div><div><br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">4) iPhone: all this without background apps? How would you use iPhone<br>
Safari to authenticate to iPhone Micro OP if the two cannot run<br>
simultaneously? I don't think you can -- Micro OP would need to<br>
bind to a TCP port to listen for http requests, and Safari would<br>
need to connect to it. If they can't run concurrently, then you<br>
simply cannot make that TCP connection, right?<br>
<br></blockquote><div><br></div><div>Yes, at least for iPhone this would preclude openid in mobile safari (likely -- I suppose one might be able to program around this).</div><div><br></div><div>I was more thinking of the instance where I'm using the web-browser on my laptop to surf, and so I could have the iPhoneOP app running for the duration of the OpenID login.</div>
<div><br></div></div>