I think its a good idea. Why not take advantage of OpenID Relying Party (formerly termed, 'consumer'). When the OpenID Identifier is authenticated with the Provider and sends a successful response back, RC could query a table of openid_identifiers to usernames (email accounts). This one to one relationship would rely on security from the point of view of the admin maintaining the identifier/user bindings table. The key here is that to add a mapping of OpenID URL to a user record, the user must also successfuly authenticate their email account with the sysadmin or via an admin frontend to verify ownership (once-off).
Sorry if that doesn't make sense. On Sun, 03 Feb 2008 07:21:50 +1100, Anton Lindstrom <[EMAIL PROTECTED]> wrote: > The more I thought about it the more unnecessary it was. Kind of an > impulse > thought.. > > On Sat, 2 Feb 2008 19:13:05 +0100, till <[EMAIL PROTECTED]> wrote: >> On Feb 2, 2008 4:16 PM, Anton Lindstrom <[EMAIL PROTECTED]> >> wrote: >>> >>> I was reading about Yahoo's implementation of Open ID and was wondering >> if >>> it is possible to integrate OpenID in Roundcube in some sort of way. It >>> would be really cool and useful. >> >> Useful? How? >> >> Till > > _______________________________________________ > List info: http://lists.roundcube.net/dev/ -- Using Opera's revolutionary e-mail client: http://www.opera.com/mail/ _______________________________________________ List info: http://lists.roundcube.net/dev/
