# I'm not actually proposing the IdP make an assertion about # [EMAIL PROTECTED] It would only be used during the discovery phase # and then an assertion for a URL be returned.
Ok, I misunderstood. But even in the case where the IdP makes an assertion about a different identifier, that's confusing, too; you enter something that looks like an email (and maybe your provider tells you it even is), but you log into the site as something else, right? -- Jonathan Daugherty JanRain, Inc. _______________________________________________ specs mailing list specs@openid.net http://openid.net/mailman/listinfo/specs