<http://hueniverse.com/2010/06/xauth-a-terrible-horrible-no-good-very-bad-idea/>http://hueniverse.com/2010/06/xauth-a-terrible-horrible-no-good-very-bad-idea/
Well, his points against it are quite valid. Having a centralized
component to a decentralized architecture, especially one that all
parties must *rely* upon, would violate the essential spirit of the
idea.
(That said, if any of them *want* to do it, they may do so
unofficially, with neither the involvement nor sanction of the
community. Then, when the inevitable user backlash arrives - or, as
you put it, "the shit hits the fan" - they alone suffer the
reputation hit and loss to market share, compounded by having done so
against the recommendations of the majority of the OpenID movement
itself.)
I realize that you're in favor of the centralized component, but
please do try to understand why this philosophy is diametrically
opposed by OpenID.
-Shade
_______________________________________________
specs mailing list
[email protected]
http://lists.openid.net/mailman/listinfo/openid-specs
