- From: peter williams <home_pw@msn.com>
- Date: Sat, 26 Feb 2011 11:35:51 -0800
- To: "'WebID Incubator Group WG'" <public-xg-webid@w3.org>
Received on Saturday, 26 February 2011 19:36:51 UTC
You can do it to 95% in 30m. Go get opera browser at http://www.opera.com/. Why? Because it's a team member, that's all. Get a client cert using Opera by 1) Registering at http://webid.myxwiki.org/xwiki/bin/register/XWiki/Register 2) Logging in to the registration portal 3) Goto Profile page 4) Complete the enrollment form, and viola, you have cert in your browser. Test it: at https://test.gnutls.org:5556/ Now Sigh! .Because it's very technical output (but note the SAN URI field pointing to a profile page). Then, **imagine** that the gnutls server could itself make a remote http request sent "somewhere", to confirm if the cert's pubkey value really is stored on your profile page. If so, then gnutls server does access control, using typical methods. If it cannot confirm the cert is present, it denies access. That's it. The rest is marketing spin. Ideally, a beta Opera Community profile "edit" page would replace the wiki site's steps.
Received on Saturday, 26 February 2011 19:36:51 UTC