The question is: Is the OIDF interested in taking the lead in building an identity layer for OAuth 2.0?
I'm willing to bet that if the answer is no, it will be the beginning of the end for OpenID. OAuth 2.0 + identity will fully cover the OpenID 2.0 use cases in a cleaner, more secure way. This is very much an issue of timing. If the problem is the name, call it the "OAuth Identity Framework", leaving OpenID to be whatever the v.next WG decides it will be a year or two from now. EHL > -----Original Message----- > From: [email protected] [mailto:openid-specs- > [email protected]] On Behalf Of Allen Tom > Sent: Monday, May 24, 2010 5:40 PM > To: Dick Hardt; David Recordon > Cc: Joseph Smarr; OpenID Board (public); [email protected] > Subject: Re: [OpenID board] Why Connect? > > Hey guys, > > If the proposers believe that OAuth2 implementors need a standards based > identity API, then it is within the charter of the OIDF to take the lead on > this. > > Allen > > > On 5/24/10 3:44 PM, "Dick Hardt" <[email protected]> wrote: > > > > I think that if you want to build identity on top of OAuth, that you > > should write an OAuth extension. > > _______________________________________________ > specs mailing list > [email protected] > http://lists.openid.net/mailman/listinfo/openid-specs _______________________________________________ specs mailing list [email protected] http://lists.openid.net/mailman/listinfo/openid-specs
