proposal: rename trust_root to realm

Brad Fitzpatrick brad at
Tue Sep 19 23:51:11 UTC 2006


But I'd also like the spec to mention what the JanRain guys said earlier:
that it's just for the IdP to tell the user, so the user can decide to
whitelist a whole realm prefix rather than each ugly return_to URL under
it....  and it adds nothing to the security.

On Mon, 18 Sep 2006, Dick Hardt wrote:

> Problem:
> trust_root (8.2) has specific meaning in PKI terms that is very
> different from what it is being used for in OpenID. Realm is a term
> used in HTTP AUTH that reflects the usage.
> Proposal:
> Deprecate 'trust_root' and use 'realm'
> _______________________________________________
> specs mailing list
> specs at

More information about the specs mailing list