By Stephen Downes - Stephen's Web. OpenID Is Not a Provisioning Engine
Having a single login ID is one thing. Having attributes - such as an email address, or list of friends - that you transfer from one site to another is quite another. I have always thought that it would simply be a FOAF file derived from the login ID - that's one of the reasons why I made them URLs, and not, say, unique identifiers. If a user logged in as 'downes.livejournal.com' then their attributes should be found in 'downes.livejournal.com/foaf.xml'. But OpenID does it as a request-response style interaction. That's way too much overhead for something so simple. I think that the reason this hasn't prevailed is that people want to control who gets what attribute. My response to this is: have different identities. That's why mIDm proposed to put them in a dropdown list in the browser. More...
22 novembre 2019
OpenID Is Not a Provisioning Engine
/https%3A%2F%2Fp1.storage.canalblog.com%2F20%2F55%2F1154600%2F122555108.png)
/https%3A%2F%2Fencrypted-tbn2.gstatic.com%2Fimages%3Fq%3Dtbn%3AANd9GcTi5Hkm0uJx8RuXLdIN4NSGeutjLR0NZnG3tTJBq9IYhTpD2Hdf5SvxmA)
Commentaires
/https%3A%2F%2Fprofilepics.canalblog.com%2Fprofilepics%2F1%2F0%2F1076071.jpg)