On Fri, 24 Mar 2006, Johannes Ernst wrote:
FYI: Yadis and LID were explicitly designed to be usable by software that
doesn't have a GUI, and OpenID can be used that way as well.
E.g. Yadis finds its capability file either through requesting a special
mime type, or an additional HTTP header, and only if those fail, looks
into HTML (if there is, in order to support those folks who cannot
really get at the configuration of their http server).
LID takes a URL, and signs it with a GPG key pair; this requires neither
HTML nor a GUI.
So it can definitely be done, and it's all deployed and working as you know.
And, forgive my ignorance, aren't OpenID and LID agnostic about the actual
means of authentication performed between the authentication service and
the user agent? So if someone deploys it using form-based authentication,
or taking advantage of some existing form-based authentication, then that
would require UI, and would make the system fail to work for non-UI user
agents, would it not? You can say: well, then don't deploy it that way,
use Basic or something; but telling people not to use stuff they like to
use isn't a winning strategy usually.
It could be useful to look at standard ways to accomodate GUI and non-GUI
user agents each with appropriate methods with the same installations. Or
perhaps YADIS does this.
- RL "Bob"
_______________________________________________
dix mailing list
[email protected]
https://www1.ietf.org/mailman/listinfo/dix
