Re: Proof of Concept: Identity Credentials Login from ☮ elf Pavlik ☮ on 2014-06-13 (public-webpayments@w3.org from June 2014)

From: ☮ elf Pavlik ☮ <perpetual-tripper@wwelves.org>
Date: Fri, 13 Jun 2014 11:13:04 +0200
To: Adrian Hope-Bailie <adrian@hopebailie.com>, Dave Lampton <dave.lampton@gmail.com>
CC: Web Payments CG <public-webpayments@w3.org>
Message-ID: <539AC0A0.60402@wwelves.org>

On 06/13/2014 10:57 AM, Adrian Hope-Bailie wrote:
<snip/>
> 
> I started writing these stages out here but it's becoming a long list.
> Will kick off a new thread to discuss these in detail and get feedback.

+1 to new thread! I do have big tendency myself for drifting into all
kinds of relevant but different topics. Here looking at the subject line
one could get impression that you might in a way hijacked this thread.
No critique intended just bringing it to your attention :)



>                 On Wed, Jun 11, 2014 at 3:03 PM, ☮ elf Pavlik ☮
>             <perpetual-tripper@wwelves.org
>             <mailto:perpetual-tripper@wwelves.org>
>             <mailto:perpetual-tripper@__wwelves.org
>             <mailto:perpetual-tripper@wwelves.org>>> wrote:
> 
>                     On 06/10/2014 06:25 AM, Manu Sporny wrote:
>                      > TL;DR: There is now an open source demo of
>             credential-based login
>                      > for the Web. We think it’s better than Persona,
>             WebID+TLS, and
>                      > OpenID Connect. If we can build enough support
>             for Identity
>                      > Credentials over the next year, we’d like to
>             standardize it via
>                      > the W3C.
>                     Congratulations!
> 
>                     I find it very impressing especially since you got
>             running pushed to a
>                     public repo - kudos++
> 
>                     First question coming to my mind:
> 
>                     "The way that both Mozilla Persona and OpenID do it
>             is fairly similar.
>                     OpenID assumes that your email address maps to your
>             identity provider."
> 
>                     In my case, and I believe nowadays quite many other
>             people, I control
>                     domain which I use for email address. With simple
>             DNS configuration I
>                     use different 'providers' for my email server and my
>             web server (here
>                     myself).
>                     In this situation I find using webfinger[1] (also
>             used by OpenID
>                     Connect), more attractive then hiding from myself via
>                     http://login-hub.com - even if His Holiness
>             @Pontifex with His Holiness
>                     @DalaiLama would run it very carefully together ;)
> 
>                     I still need to take some time and wrap my head
>             around your design but
>                     maybe you could easily evaluate complexity of
>             including webfinger based
>                     flow as an alternative option for those who may
>             prefer such setup?
> 
>                     Once again - GREAT WORK!!!
> 
>                     [1] http://webfinger.net
> 
> 
> 
> 
> 
> 
> 
>

Received on Friday, 13 June 2014 09:15:27 UTC