Hey Dick,<div>I could see a path where OpenID bolts discovery onto the front of OAuth WRAP and then OpenID itself becomes a common set of parameters exchanged within the user authorization flow of WRAP. A consumer could also get a WRAP access token in addition to identity information (you're the one who told me a few years ago that an identifier is just another attribute and not something special). If it's happening over SSL, a lot of the key exchange stuff goes away. Already today OpenID uses a plain text association when being run over SSL.</div>
<div><br></div><div>--David<br><br><div class="gmail_quote">On Mon, Jan 4, 2010 at 7:07 PM, Dick Hardt <span dir="ltr"><<a href="mailto:dick.hardt@gmail.com">dick.hardt@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<div style="word-wrap:break-word"><div><div>Good article Chris, I commented on your blog, but bringing the discussion here .. </div><div><br></div><div>I agree that OpenID needs some serious product management. I like the OpenID Connect label -> much better then the Open Stack.</div>
<div><br></div><div>Technically, speaking as an author of OAuth WRAP, making OpenID an OAuth WRAP Profile does not make sense. I do think that an OpenID v Next would be very complementary to OAuth WRAP.</div><div><br></div>
<div>One of the problems OpenID solves that WRAP does not is discovery and key exchange. I would say that is most of the what OpenID does. </div><div><br></div><div>Great to see the discussion pick up, it is going to be a very interesting year!</div>
<div><br></div></div><div><div><div></div><div class="h5"><div>On 2010-01-04, at 4:05 PM, Chris Messina wrote:</div><br></div></div><blockquote type="cite"><div><div></div><div class="h5">Just wrote a post outlining my thoughts outlining a concept I called "OpenID Connect":<div>
<br></div><div><a href="http://factoryjoe.com/blog/2010/01/04/openid-connect/" target="_blank">http://factoryjoe.com/blog/2010/01/04/openid-connect/</a></div>
<div><br></div><div>Interested in thoughts and feedback, and happy to expand the idea further.</div><div><br></div><div>Chris<br clear="all"><br>-- <br>Chris Messina<br>Open Web Advocate<br><br>Personal: <a href="http://factoryjoe.com/" target="_blank">http://factoryjoe.com</a><br>
Follow me on Twitter: <a href="http://twitter.com/chrismessina" target="_blank">http://twitter.com/chrismessina</a><br><br>Citizen Agency: <a href="http://citizenagency.com/" target="_blank">http://citizenagency.com</a><br>
Diso Project: <a href="http://diso-project.org/" target="_blank">http://diso-project.org</a><br>
OpenID Foundation: <a href="http://openid.net/" target="_blank">http://openid.net</a><br><br>This email is: [X] shareable [ ] ask first [ ] private<br>
</div></div></div>
_______________________________________________<br>marketing mailing list<br><a href="mailto:marketing@lists.openid.net" target="_blank">marketing@lists.openid.net</a><br><a href="http://lists.openid.net/mailman/listinfo/openid-marketing" target="_blank">http://lists.openid.net/mailman/listinfo/openid-marketing</a><br>
</blockquote></div><br></div><br>_______________________________________________<br>
marketing mailing list<br>
<a href="mailto:marketing@lists.openid.net">marketing@lists.openid.net</a><br>
<a href="http://lists.openid.net/mailman/listinfo/openid-marketing" target="_blank">http://lists.openid.net/mailman/listinfo/openid-marketing</a><br>
<br></blockquote></div><br></div>