yadis Digest, Vol 3, Issue 12
Omar Syed
osyed at yahoo.com
Wed Jul 6 08:57:47 PDT 2005
> Omar Syed wrote:
> > Sorry I forgot to mention in my earlier message the part about
> > how the Server checks to make sure that the EndUser owns the
> > identity URL. The Server provides the EndUser a unique snippit
> > of HTML to add to the identity URL page; for example:
> > <meta name="openid.check" content="483985" >
> > The EndUser adds this and notifies the Server. The Server
> > then checks that the content matches what was given and accepts
> > the given identity URL as being owned by this EndUser. The
> > EndUser can remove the snippit of HTML after it has been checked.
> >
>
> And you think this is easier than just entering an identity URL?
>
> I obviously don't get it, since that can't be what you mean.
No, you don't do this every time :-) You only need to do that once
when you create the account and tell the OpenID Server what your
identity URL is. This allows the OpenID Server to check that you
really own that page.
Omar
More information about the yadis
mailing list