- From: Adrian Hope-Bailie <adrian@hopebailie.com>
- Date: Thu, 12 Jun 2014 01:38:25 +0200
- To: Manu Sporny <msporny@digitalbazaar.com>
- Cc: Web Payments CG <public-webpayments@w3.org>
- Message-ID: <CA+eFz_KRcoiVN8=YfT+sSRtS9UzHuDQzazt31xgPgGQkE-WJCg@mail.gmail.com>
Hi Manu, I read your blog post about this and I was wondering... Can you explain why you think this is better than Open ID Connect or what is missing/broken from OpenID Connect that this provides/fixes? Adrian On 12 June 2014 00:03, ☮ elf Pavlik ☮ <perpetual-tripper@wwelves.org> wrote: > On 06/10/2014 06:25 AM, Manu Sporny wrote: > > TL;DR: There is now an open source demo of credential-based login > > for the Web. We think it’s better than Persona, WebID+TLS, and > > OpenID Connect. If we can build enough support for Identity > > Credentials over the next year, we’d like to standardize it via > > the W3C. > Congratulations! > > I find it very impressing especially since you got running pushed to a > public repo - kudos++ > > First question coming to my mind: > > "The way that both Mozilla Persona and OpenID do it is fairly similar. > OpenID assumes that your email address maps to your identity provider." > > In my case, and I believe nowadays quite many other people, I control > domain which I use for email address. With simple DNS configuration I > use different 'providers' for my email server and my web server (here > myself). > In this situation I find using webfinger[1] (also used by OpenID > Connect), more attractive then hiding from myself via > http://login-hub.com - even if His Holiness @Pontifex with His Holiness > @DalaiLama would run it very carefully together ;) > > I still need to take some time and wrap my head around your design but > maybe you could easily evaluate complexity of including webfinger based > flow as an alternative option for those who may prefer such setup? > > Once again - GREAT WORK!!! > > [1] http://webfinger.net > > >
Received on Thursday, 12 June 2014 09:30:24 UTC