decoupling from HTML

Brad Fitzpatrick brad at
Tue Jun 28 13:21:40 PDT 2005

On Tue, 28 Jun 2005, Martin Atkins wrote:

> Brad Fitzpatrick wrote:
> >
> > This is also why Net::OpenID::Consumer is bound to http and doesn't even
> > accept https (would be a one character fix to change).  I know there are
> > enough consumers out that that won't do/want to do https, so let's just be
> > realistic and say OpenID works for http and html.
> >
> Is that limitation for identity URLs, server URLs or both?

Identity URLs.  But considering that server URLs will likely be https
(typekey will be), consumers already have to support https, so they m ight
as well support https identity URLs too, eh?

> I don't really mind the former, but the latter is clearly a problem.
> TypeKey, for example, uses https for everything.

For the "app".  (their dyanmic stuff)  Profile pages are plain http.

- Brad

More information about the yadis mailing list