On Mar 23, 2006, at 23:04, RL 'Bob' Morgan wrote:
There are dozens of deployed web signon schemes using a third-party authentication service (eg SXIP, the SAML browser profiles, OpenID, etc), and to my knowledge all of them make use of all the browser features (redirection, cookies, form-based username/password entry) that make them not applicable to non-browser HTTP user agents.
FYI: Yadis and LID were explicitly designed to be usable by software that doesn't have a GUI, and OpenID can be used that way as well.
E.g. Yadis finds its capability file either through requesting a special mime type, or an additional HTTP header, and only if those fail, looks into HTML (if there is, in order to support those folks who cannot really get at the configuration of their http server).
LID takes a URL, and signs it with a GPG key pair; this requires neither HTML nor a GUI.
So it can definitely be done, and it's all deployed and working as you know.
Johannes Ernst NetMesh Inc.
http://netmesh.info/jernst
_______________________________________________ dix mailing list [email protected] https://www1.ietf.org/mailman/listinfo/dix
