[security] Validating openid.identity in authenticationresponses

[Johnny Bufu]

On 16-Nov-07, at 9:39 AM, Bradescu, Roxana wrote:
> David, I've noticed the use case you describe doesn't actually work  
> at a
> many RP's. For example if I go to livejournal.com and just put in just
> my IDP pip.verisignlabs.com I get an error.

Directed identity is a 2.0 feature, while livejounal seems to be  
speaking only 1.x.


Johnny