Mozilla BrowserID
Johannes Ernst
jernst+openid.net at netmesh.us
Wed Jul 20 16:55:52 UTC 2011
> On Jul 20, 2011, at 9:46, Nat Sakimura wrote:
>> FYI, OpenID Connect supports dynamic registration of the client, though whether the IdP supports the feature or not is an entirely different question. Even in OpenID 2.0, there were IdPs who were white listing the RPs.
Which is why I think it is doubly important, per lessons learned, to be crystal clear about conformance criteria. If all OpenID Connect does is define a set of protocols, we will get the same partial implementations as in case of OpenID 2, with the same works-sometimes-for-some-unpredictable-subset-of-features.
WHat's needed is:
1. a clearly defined user ceremony
2. a set of protocols
3. crystal-clear conformance criteria tied to the use of the trademark
Which together, by the way, would answer the question of what problems it does and does not attempt to solve.
More information about the specs
mailing list