openid seems pretty neat. Maybe we should consider using it at our website. I think it may be of general interest, too, so I'm posting to the main list.
Seems like it solves several needs, and I haven't seen any criticisms (other than implementation gripes, eg some servers revealing email) Benefits for openid-enabled sites: - effectively offloads a secure identification step (proxy like, I guess) - (typically) use is optional, and/but site can add any additional requirements during initial account establishment Benefits for users: - SSO - multiple personas - (I think) may expose sites spoofing a trusted site general reading.. http://en.wikipedia.org/wiki/Openid http://openid.net/ http://www.openidenabled.com/software -- plone is coming.. moz. developers likes it "OpenID: Firefox will lead the way" http://www.findapath.org/index.php?p=40 "OpenID Enable Firefox" http://chimprawk.blogspot.com/2006/08/openid-enable-firefox.html Also: - I didn't study it yet, but it includes/uses an embedded protocol yadris for resource discovery, which may have additional eventual benefits as well. - whoopie! more protocol-soup .. there seems to be either a competition or perhaps just overlap with XRI, XDR, see: http://en.wikipedia.org/wiki/XDI Regards, ..jim -- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
