On Tue, May 25, 2010 at 8:34 AM, SitG Admin <[email protected] > wrote:
> You know what's not good for adoption? Having to go to 20 different >> developer portals. Trying to figure out how to create an OAuth >> application in 20 different ways. Verifying your domain in 20 >> different ways. Agreeing to 20 different terms of service. >> > > I think the last could be addressed by giving both parties a standardized > way of automatically exchanging ToS points for agree/reject testing. See also: CX: http://wiki.openid.net/Contract-Exchange > > > I know that the OpenID Connect proposal mentions an association step, >> but if all the major providers wind up requiring preregistration, it >> is a moot point. My gut is that using OAuth as the base will be very >> good for a few players, and bad for identity on the whole. >> > > This sounds about right to me. Giving them the power to break internet > identity at large by suddenly shutting everyone else out may seem like a > good short-term plan, but it's far too risky to assume that their > motivations will not change in the future. OpenID needs to be a protocol > that is *not* vulnerable to being shut down at any time by the collaboration > of several "major players". Would it be considered a failure state or a success if OpenID retains its existing design but few in the marketplace adopt it? I ask because there are plenty of technologies out there that didn't respond to market realities in order to preserve a certain kind of ideal (which is laudable in some senses) only to see their market influence and relevance wane — resulting in the technology's obsolescence in favor of something more proprietary or favored by the incumbents. Taking a less-than-pragmatic approach that meets the needs of a number of classes of stakeholders seems to work entirely against the goals of achieving more user-centricity in the marketplace. OpenID Connect may not be the ideal long term solution, and that fine with me. If the next generation of identity technologies gets baked without the OpenID foundation playing a role, then I think we might have missed a very critical window to actually shift things in the direction that we prefer in the long term. Chris -- Chris Messina Open Web Advocate, Google Personal: http://factoryjoe.com Follow me on Buzz: http://buzz.google.com/chrismessina ...or Twitter: http://twitter.com/chrismessina This email is: [ ] shareable [X] ask first [ ] private
_______________________________________________ specs mailing list [email protected] http://lists.openid.net/mailman/listinfo/openid-specs
