IdP-initiated authentication & OpenID-enabled bookmarks
Drummond Reed
drummond.reed at cordance.net
Fri Oct 6 21:07:21 UTC 2006
Kevin, thanks for confirming that this functionality would be supported by
the "bare reponse" proposal.
In that case, +1 for the bare response proposal being in 2.0, as I think it
would be really valuable feature for IdPs to offer (I know XRI i-brokers
want it).
=Drummond
_____
From: specs-bounces at openid.net [mailto:specs-bounces at openid.net] On Behalf
Of Kevin Turner
Sent: Friday, October 06, 2006 1:20 PM
To: specs at openid.net
Subject: Re: IdP-initiated authentication & OpenID-enabled bookmarks
On Fri, 2006-10-06 at 12:30 -0700, Drummond Reed wrote:
In other words, can a user just login to their IdP/i-broker, lthen follow
"OpenID-enabled bookmarks" they have stored there to be directly logged in
to sites where the user has logged in before?
[...]
(I suspect this may be part of the "bare message" thread but I confess as to
not being fully up-to-speed on that issue.)
Yes, I think that is the most compelling case for the "bare response"
proposal.
(although there are still unresolved conflicts in my head between that
proposal and request nonces.)
I don't recall offhand what the tally on that is. But if it doesn't pass,
then no, this feature would not be in the OpenID 2.0 core spec, and thus may
or may not work in the wild.
One can imagine adding that on later, but if it doesn't go in core then
it'll have to be something that RPs opt in to, and may not be supported
universally. (which might work out okay.)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs/attachments/20061006/980cd424/attachment-0002.htm>
More information about the specs
mailing list