HTTP Authentication Bindings for "two-party" OpenID Authentication
Johannes Ernst
jernst+openid.net at netmesh.us
Sun Apr 1 05:23:08 UTC 2007
On Mar 31, 2007, at 18:33, John Panzer wrote:
> But there's no (standard) way to tell
> whether a particular URI + method requires authorization without just
> trying it.
I've long advocated "marking" URLs with Yadis meta-data for that
purpose, and my understanding is that OpenID Auth 2.0 will be the
first step in that direction.
Johannes Ernst
NetMesh Inc.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: openid-relying-party-authenticated.gif
Type: image/gif
Size: 903 bytes
Desc: not available
Url : http://openid.net/pipermail/specs/attachments/20070331/406b9341/attachment.gif
-------------- next part --------------
A non-text attachment was scrubbed...
Name: lid.gif
Type: image/gif
Size: 973 bytes
Desc: not available
Url : http://openid.net/pipermail/specs/attachments/20070331/406b9341/attachment-0001.gif
-------------- next part --------------
http://netmesh.info/jernst
More information about the specs
mailing list