proposal: rename trust_root to realm

Recordon, David drecordon at verisign.com
Tue Sep 19 23:53:21 UTC 2006


+1 on top of that


 -----Original Message-----
From: 	Brad Fitzpatrick [mailto:brad at danga.com]
Sent:	Tuesday, September 19, 2006 04:51 PM Pacific Standard Time
To:	Dick Hardt
Cc:	specs at openid.net
Subject:	Re: proposal: rename trust_root to realm

+1

But I'd also like the spec to mention what the JanRain guys said earlier:
that it's just for the IdP to tell the user, so the user can decide to
whitelist a whole realm prefix rather than each ugly return_to URL under
it....  and it adds nothing to the security.



On Mon, 18 Sep 2006, Dick Hardt wrote:

> Problem:
>
> trust_root (8.2) has specific meaning in PKI terms that is very
> different from what it is being used for in OpenID. Realm is a term
> used in HTTP AUTH that reflects the usage.
>
> Proposal:
>
> Deprecate 'trust_root' and use 'realm'
>
> _______________________________________________
> specs mailing list
> specs at openid.net
> http://openid.net/mailman/listinfo/specs
>
>
_______________________________________________
specs mailing list
specs at openid.net
http://openid.net/mailman/listinfo/specs

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs/attachments/20060919/dace01dc/attachment-0002.htm>


More information about the specs mailing list