Re: Social Web XG Extra Meeting Wed. Oct 6th (12:00 Boston/16:00 London) - Wrapping up Final Report Take 2 from Dick Hardt on 2010-10-07 (public-xg-socialweb@w3.org from October 2010)

From: Dick Hardt <dick.hardt@gmail.com>
Date: Wed, 6 Oct 2010 23:00:30 -0700
To: Harry Halpin <hhalpin@ibiblio.org>
Cc: Mischa Tuffield <mischa.tuffield@garlik.com>, Paul Trevithick <ptrevithick@gmail.com>, public-xg-socialweb@w3.org
Message-Id: <C74E8938-2404-4055-8A7A-AED4D0ED590C@gmail.com>

Defining an identity provider to authenticate the user limits

On 2010-10-06, at 9:24 AM, Harry Halpin wrote:
> 
> 
> A identity provider is a service (e.g. an OpenID identity provider)
> that authenticates a person and provides a set of attributes about a
> person to a third-party.
> 
> Note that add of *authenticates* and being explicit about a
> third-party. That OK?
> 

Saw this phrase and potentially jumping in out of context. 

Requiring the IdP to authenticate the user restricts a class of IdP's that may be making only a claim about the user, but not authenticating them. 

-- Dick

Received on Thursday, 7 October 2010 06:01:17 UTC