Re: Typo in the PAPE spec?

# If running code is the authority, DotNetOpenAuth uses # preferred_auth_level*_types*. The openidenabled.com Python implementation of draft 5 uses that, also. -- Jonathan Daugherty ___ specs mailing list specs@openid.net http://openid.net/mailman

Re: handling of url redirection

., excessive redirects) there isn't a sane interop behavior, only a sane fallback behavior. +1 for _recommending_ a maximum number of redirects in the spec so implementors have some idea of what is sane. I think any more than 10 is pathological. -- Jonathan Daugherty

Re: [OpenID] pape.auth_time versus pape.auth_age

Can somebody confirm that sending pape.max_auth_age is wrong and it should be pape.auth_time instead? Hi Eddy, The PHP library implements Draft 1 of PAPE, not Draft 2. The same is true of the other openidenabled.com implementations. -- Jonathan Daugherty

Re: PAPE Extension Specification

of authentication is a fine idea, but that doesn't really address the original issue: the spec does not define active (direct) authentication. -- Jonathan Daugherty JanRain, Inc. irc.freenode.net: cygnus in #openid cygnus.myopenid.com ___ specs

PAPE Extension Specification

-policy-extension-1_0-01.txt -- Jonathan Daugherty JanRain, Inc. irc.freenode.net: cygnus in #openid cygnus.myopenid.com ___ specs mailing list specs@openid.net http://openid.net/mailman/listinfo/specs

Re: Using dots in HTTP request parameters

parameter names to underscores, so if you do go this route you'll need code[1] to fix it. Otherwise I think it's a fine idea. :) [1] Auth_OpenID::getQuery() http://openidenabled.com/files/php-openid/repos/2.x.x/Auth/OpenID.php -- Jonathan Daugherty JanRain, Inc. irc.freenode.net: cygnus

Re: Map/Normalize Email Address to IdP/OP URL (Was [PROPOSAL] Handle http://[EMAIL PROTECTED] Style Identifiers)

of their IdP/OP) into the OpenId login # form. Then why not just enter 'http://any.edu' or 'any.edu' instead? -- Jonathan Daugherty JanRain, Inc. ___ specs mailing list specs@openid.net http://openid.net/mailman/listinfo/specs

Re: [PROPOSAL] Handle http://[EMAIL PROTECTED] Style Identifiers

# The thing is they aren't really giving them their email address. # Rather an identifier which looks like an email address to a user and # in some cases may also be an email address. Isn't that likely to create a lot of confusion? -- Jonathan Daugherty JanRain, Inc

Re: [PROPOSAL] Handle http://[EMAIL PROTECTED] Style Identifiers

to create a lot of confusion. -- Jonathan Daugherty JanRain, Inc. ___ specs mailing list specs@openid.net http://openid.net/mailman/listinfo/specs

Re: [PROPOSAL] Handle http://[EMAIL PROTECTED] Style Identifiers

confusing, too; you enter something that looks like an email (and maybe your provider tells you it even is), but you log into the site as something else, right? -- Jonathan Daugherty JanRain, Inc. ___ specs mailing list specs@openid.net http://openid.net