Folks,
Google appears to have Webfinger enabled on some accounts, at least. You can see it with this: curl http://gmail.com/.well-known/host-meta That returns this: <?xml version='1.0' encoding='UTF-8'?> <!-- NOTE: this host-meta end-point is a pre-alpha work in progress. Don't rely on it. --> <!-- Please follow the list at http://groups.google.com/group/webfinger --> <XRD xmlns='http://docs.oasis-open.org/ns/xri/xrd-1.0' xmlns:hm='http://host-meta.net/xrd/1.0'> <hm:Host xmlns='http://host-meta.net/xrd/1.0'>gmail.com</hm:Host> <Link rel='lrdd' template='http://www.google.com/s2/webfinger/?q={uri}'> <Title>Resource Descriptor</Title> </Link> </XRD> Now, querying the LRDD URL like this: curl http://www.google.com/s2/webfinger/?q=acct:<user>@gmail.com will return an XRD document, one of whose members is this: <Link rel='http://specs.openid.net/auth/2.0/provider' href='http://www.google.com/profiles/<user>'/> The href value might vary, but that's what it returned for my account. What concerns me is the link relation value: http://specs.openid.net/auth/2.0/provider Where did that come from? The 2.0 spec defined two possible values: http://specs.openid.net/auth/2.0/server http://specs.openid.net/auth/2.0/signon However, I cannot find the one Google is using defined anywhere, though I did see it referenced here: http://code.google.com/p/webfinger/source/browse/wiki/CommonLinkRelations.wi ki?spec=svn22 <http://code.google.com/p/webfinger/source/browse/wiki/CommonLinkRelations.w iki?spec=svn22&r=22> &r=22 Is this an error? If not, can somebody point me to the correct documentation? If it is an error, what should the value be? I had assumed that the most logical choice was http://specs.openid.net/auth/2.0/signon, which is what I configured my server to return. I made that assumption based on looking at all of the XRDS examples in the OpenID 2.0 spec. Paul
_______________________________________________ specs mailing list [email protected] http://lists.openid.net/mailman/listinfo/openid-specs
