Hey Dick, <div><br></div><div>Any prospect of getting IPR permission so that you can join the WGs here? </div><div>We are waiting for you!</div><div><br></div><div>=nat<br><br><div class="gmail_quote">On Thu, Aug 13, 2009 at 11:43 PM, Dick Hardt <span dir="ltr"><<a href="mailto:Dick.Hardt@microsoft.com">Dick.Hardt@microsoft.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">Yes, in OpenID 2.0 the identifiers are optional so an extension could<br>
provide all the functionality. Eg . Attribute Exchange could be used<br>
to move attributes without authenticating.<br>
<br>
-- Dick<br>
<br>
On 2009-08-13, at 7:34 AM, "James Henstridge" <<a href="mailto:james@jamesh.id.au">james@jamesh.id.au</a>><br>
wrote:<br>
<div><div></div><div class="h5"><br>
> On Thu, Aug 13, 2009 at 8:05 AM, Nat Sakimura<<a href="mailto:sakimura@gmail.com">sakimura@gmail.com</a>><br>
> wrote:<br>
>> I blogged bout the subject here:<br>
>> <a href="http://www.sakimura.org/en/modules/wordpress/index.php?p=91" target="_blank">http://www.sakimura.org/en/modules/wordpress/index.php?p=91</a><br>
>><br>
>> What would be the consensus here?<br>
><br>
> My reading of the spec (and what I believe is the author's intent) is<br>
> that OpenID extensions do indeed piggyback on an authentication<br>
> request. The note about including the extension's type URI in XRDS is<br>
> a way that an OpenID provider can advertise support for the extension.<br>
><br>
> Note that in OpenID 2.0, sending openid.identifier in an<br>
> authentication request is optional. So you could potentially use an<br>
> extension without actually authenticating as a particular user. From<br>
> section 9.1:<br>
><br>
> """<br>
> "openid.claimed_id" and "openid.identity" SHALL be either both present<br>
> or both absent. If neither value is present, the assertion is not<br>
> about an identifier, and will contain other information in its<br>
> payload, using extensions (Extensions).<br>
> """<br>
><br>
> James.<br>
</div></div>> _______________________________________________<br>
> specs mailing list<br>
> <a href="mailto:specs@lists.openid.net">specs@lists.openid.net</a><br>
> <a href="http://lists.openid.net/mailman/listinfo/openid-specs" target="_blank">http://lists.openid.net/mailman/listinfo/openid-specs</a><br>
><br>
</blockquote></div><br><br clear="all"><br>-- <br>Nat Sakimura (=nat)<br><a href="http://www.sakimura.org/en/">http://www.sakimura.org/en/</a><br>
</div>