Re: Server-to-server channel

2007-04-03 Thread Anders Feder
, Anders Feder ___ specs mailing list specs@openid.net http://openid.net/mailman/listinfo/specs

Re: Server-to-server channel

2007-04-03 Thread Anders Feder
. As far as I can see, the wheel more or less has to be reinvented each time someone wish to exchange attribute references (unless someone outside OpenID standardize the exchange process). Regards, Anders Feder ___ specs mailing list specs@openid.net http

Re: Server-to-server channel

2007-04-03 Thread Anders Feder
to relativistic physics - but very often quantum mechanics is overkill. Regards, Anders Feder ___ specs mailing list specs@openid.net http://openid.net/mailman/listinfo/specs

Re: Server-to-server channel

2007-04-03 Thread Anders Feder
and it will work. I just think there will be corner cases where the user is not able to 'change course' in time. And handling corner cases sets excellent technology apart from very good technology - but it will work. Regards, Anders Feder ___ specs

Non-interactive logins

2008-07-15 Thread Anders Feder
. -- Anders Feder [EMAIL PROTECTED] ___ specs mailing list specs@openid.net http://openid.net/mailman/listinfo/specs

Re: Non-interactive logins

2008-07-15 Thread Anders Feder
, skrev Scott Kveton: Hi Anders, You might want to check out OAuth ... it was developed for just such a situation. - Scott On Tue, Jul 15, 2008 at 4:20 AM, Anders Feder [EMAIL PROTECTED] wrote: Hello, There have been some discussion over the years about using OpenID for non

Re: Non-interactive logins

2008-07-15 Thread Anders Feder
, You might want to check out OAuth ... it was developed for just such a situation. - Scott On Tue, Jul 15, 2008 at 4:20 AM, Anders Feder [EMAIL PROTECTED] wrote: Hello, There have been some discussion over the years about using OpenID for non

Re: Non-interactive logins

2008-07-16 Thread Anders Feder
token once you're done using the computer. Again, OAuth appears to me to concern authorized machine _access_ to a particular resource while I'm asking for machine _authentication_, which belongs in the realm of OpenID. -- Anders Feder [EMAIL PROTECTED] ons, 16 07 2008 kl. 13:26 +0800, skrev James

RE: Non-interactive logins

2008-07-17 Thread Anders Feder
This looks like an interesting proposal. A 'black box' with regards to how the application obtains assoc_handle and signature from the OP remains, but it looks like a step in the right direction. What remains to be done to elevate this proposal this to standard? ons, 16 07 2008 kl. 15:09 +1000,