identity as a URL instead of an email? hrmmmm

David Recordon david at sixapart.com
Sun Mar 26 12:15:51 UTC 2006


Thanks for the link, hadn't seen it before though there aren't a lot of
details on the site.  It seems like they could use both OpenID and Yadis
to accomplish their goal though.

 

User enters username at example.com

Fetches Yadis discovery document from example.com

Does OpenID request to example.com's OpenID endpoint which verifies
their email address via the authentication method they are developing

 

--David

 

________________________________

From: yadis-bounces at lists.danga.com
[mailto:yadis-bounces at lists.danga.com] On Behalf Of Kaliya *
Sent: Saturday, March 25, 2006 10:06 PM
To: Martin Atkins
Cc: yadis at lists.danga.com
Subject: Re: identity as a URL instead of an email? hrmmmm

 

I am not sure if it has been posted on this list yet but at etech I met
Alex Jacobs who developed http://www.pass.net/
 
"We already use email addresses to identify users and we already use
mail domains to authenticate them (via confirmation emails). We should
use that infrastructure so users only ever log in on their mail domain
server and sites can use those logins to authenticate those users when
they visit."......




On 3/23/06, Martin Atkins <mart at degeneration.co.uk> wrote:

Harry Heymann wrote:
>
> So why make my identity a URL?  I know there are technical reasons for
> this, but ultimately I don't really care about them in the face of the
> kind of user confusion this will create. 
>

So far, no-one has come up with a workable solution for an OpenID-like
system that uses email addresses for identity. Do you have one?

The most common issue with this is that people *don't want* to tell 
others their email address just to access some site, because email is
tricky to reliably filter should someone start sending you loads of crap
you don't want.

I think in the long term the XRID people would like their own crazy 
brand of URI to become the identifier. XRID can be a layer atop URLs, so
if they have success with that then a future version of OpenID (or, more
likely, YADIS) will be able to use these instead of URLs. For now, we're

stuck with URLs.

This is irrelevant most of the time because users don't need to know
that what they're entering is a URL. LiveJournal users just get told to
put in " username.livejournal.com <http://username.livejournal.com> ";
they don't need to know nor care that
this is the URL to their journal.




 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.danga.com/pipermail/yadis/attachments/20060326/2b149293/attachment.html


More information about the yadis mailing list