[Openid-specs-ab] Identifiers and discovery.
Breno de Medeiros
breno at google.com
Tue Apr 12 16:17:45 UTC 2011
I hope Nat's well.
I was in a meeting at 3:00pm (that I scheduled after JBradley asserted
the conference call would take place as usual at 4pm). When I joined,
Mike Jones and Nat were dropping off the call.
That left JBradley and I on the call. We had a discussion on
identifiers and discovery.
I would like to continue this conversation via email, as it's an important one.
Currently, Google's proposal on identifiers is:
- Identifiers are unique to the user and non-reassignable within the
scope of the issuer. However, they need not be globally unique.
- Id_tokens attest to the issuer and therefore provide a statement of
the globally unique (issuer_id, user_id) pair. If the signature is
based on PK, these tokens are also universally verifiable and fully
portable.
Looking forward to an interesting discussion,
--
--Breno
More information about the Openid-specs-ab
mailing list