On Oct 13, 2006, at 12:59, Drummond Reed wrote:
1) If the RP sends the IdP-specific identifier, the RP must keep state tomaintain mapping to the portable identifier (bad), and
I agree, but I'm not sure that this is a big issue. Won't a simple cookie be sufficient?
Johannes Ernst NetMesh Inc.
http://netmesh.info/jernst
_______________________________________________ specs mailing list [email protected] http://openid.net/mailman/listinfo/specs
