Re: Non-interactive logins

2008-07-16 Thread Anders Feder
Let me elaborate on the idea and requirements I have in mind. The use case I'm thinking of is perhaps not so much non-interactivity in particular as it is login with no black boxes. Currently, the RP is supposed to delegate full control of the login process to the URL where the OP redirects the

Re: Non-interactive logins

2008-07-16 Thread Nat Sakimura
The implementation we have done at JAL is composed of the following: 1) Normal OpenID Auth 2.0 procedure 2) Extention to hook contract negotiation upon OpenID Auth 2.0 procedure 3) Actual Contract and back channel data transfer protocol negotiation. 4) Actual data transfer. For 2) and 3) above,