This is version 1 2 3 4 5 6 7 8 9 10 . It is not the current version, and thus it cannot be edited.

Back to current versionRestore this version

OpenID#

External sources#

openid4java	openid4java API	Interesting article on ServerSide.com
A Recipe for OpenID-Enabling Your Site	Beginners Guide	-
OpenID enabled sites	Public OpenID providers	-
The OpenID book	OpenID demo build	-

Questions I currently have.#

• Who decides, and how, which OP to use for authentication, is it the OpenID-enabled website, or is the user logging in (I would guess the first one)
  • answer: -
• If the website decides which OP to use, can you configure multiple OP's, and an order ?
  • answer: Nope, the user's OpenID URL points to a webpage, this page contains the following HTML element:

<link rel="openid.server" href="http://www.myopenid.com/server" />
<link rel="openid2.provider" href="http://www.myopenid.com/server" />

This determines where the consumer should ask for authentication.

• Can the consumer control which OP's to allow and which ones not. (you could operate your own malicious OP , ne ?)