OpenID 2.0 proposed security profiles

Recordon, David drecordon at verisign.com
Thu Aug 31 18:46:13 UTC 2006


That is exactly what you can do with Yadis.

+1 to using authn

--David


-----Original Message-----
From: yadis-bounces at lists.danga.com on behalf of Martin Atkins
Sent: Thu 8/31/2006 9:57 AM
To: yadis at lists.danga.com
Subject: Re: OpenID 2.0 proposed security profiles

I'm going to show how rusty I've got with Yadis now.
Is it acceptable (as far as XRI is concerned) to specify multiple types?

     <Service>
         <Type>http://openid.net/authen/2.0/A</Type>
         <Type>http://openid.net/authen/2.0/B</Type>
         <URI>http://www.livejournal.com/openid/server.bml</URI>
     </Service>

If this is acceptable, then I think it's okay to say that "everything is 
a profile". The above declares that I support both profiles. Since I've 
not carefully studied the contents of each profile I'm not sure if 
that's even possible, but if we assume that there's going to be a 
profile that essentially says "I support everything", with these two 
being a subset of it, then we can easily require that all 
implementations comply with at least one profile!



-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.danga.com/pipermail/yadis/attachments/20060831/e3bccbe0/attachment.htm


More information about the yadis mailing list