Nandana Mihindukulasooriya wrote:
Hi Prabath,
OpenID Provider defines an attribute under the OpenID Attribute Exchange
to contain a white list of a given user [http://axschema.org/whitelist].
Here, do we exchange the white list content or a pointer/url to the white
list of the user.
I was initially thinking about sharing the list it self - anyway sharing
a pointer/url to a given white list would be much better.
Do we need a mechanism to update the white lists of users periodically ? Say
for example I didn't have OpenID of A in my white list when I was
registering to the RP, but added it later to my white list. This will not be
visible in RP's white list if we do not update it periodically.
Yes - if the user maintains his white list at the OpenID Provider it
self, he can simply login and modify the white list. Once he logs into a
RP, the RP will too update it's white list.
thanks,
nandana
------------------------------------------------------------------------
_______________________________________________
Identity-dev mailing list
[email protected]
http://wso2.org/cgi-bin/mailman/listinfo/identity-dev
------------------------------------------------------------------------
No virus found in this incoming message.
Checked by AVG.
Version: 7.5.524 / Virus Database: 269.23.5/1401 - Release Date: 4/28/2008 7:18 AM
_______________________________________________
Identity-dev mailing list
[email protected]
http://wso2.org/cgi-bin/mailman/listinfo/identity-dev
