[Specs-cx] Artifact Binding Re: specs Digest, Vol 36, Issue 1
Allen Tom
atom at yahoo-inc.com
Tue Aug 25 00:45:23 UTC 2009
Hi Nat,
Have you considered using the OpenID OAuth Hybrid Extension instead of
defining a new Artifact binding?
http://step2.googlecode.com/svn/spec/openid_oauth_extension/latest/openid_oauth_extension.html
The openid.oauth.request_token response parameter in Section 10 is
essentially the same thing as an Artifact. Google already supports the
Hybrid extension, and Yahoo will be launching support for it in the very
near future, so perhaps we could use use Hybrid to support large responses?
Allen
Nat Sakimura wrote:
> Updated http://wiki.openid.net/OpenIDwithArtifactBinding
>
> 1. Added description in overview.
> 2. Added signature in artifact related requests.
> 3. Separated the Artifact Authentication Request from the
> Authentication Request and created section 9.1.1 for more readability.
> 4. Removed 9.4 and moved the text to 9.
> 5. Other miscellaneous changes.
>
> For complete list, see the wiki history.
>
> Feature-wise, it is almost complete for the Artifact binding, IMHO.
> Need feedback from large providers.
>
> =nat
> _______________________________________________
> specs mailing list
> specs at lists.openid.net
> http://lists.openid.net/mailman/listinfo/openid-specs
>
More information about the specs
mailing list