openid

How do I use more than one OpenID?

I have more than one OpenID as I have tried out numerous. As people take up OpenID different suppliers are going to emerge I may want to switch provinders. As all IDs are me, and all are authenticated against the same email address, shouldn't I be able to log into stack overflow with any of them and be able to hit the same account? ...

OpenID: which provider should I recommend to my users?

Have you used OpenID in anger? I'm going to be using OpenID for authentication on my site. Which provider should I recommend to my users? I'm thinking, based on the feedback that the OpenID auth is getting on StackOverflow, that I'd want to recommend one that does attribute exchange properly. So: who's that? ...

OpenID Attribute Exchange - should I use it?

My website will be using only OpenID for authentication. I'd like to pull user details down via attribute exchange, but attribute exchange seems to have caused a lot of grief for StackOverflow. What is the current state of play in the industry? Does any OpenID provider do a decent job of attribute exchange? Should I just steer away f...

OpenID authentication in Ruby on Rails

I am a neophyte with Ruby on Rails but I've created a couple of small apps. Anyway, I'm really interested in OpenID and I would like to implement OpenID authentication and maybe some Sreg stuff in a Rails app. All of the research that I have done has come up with articles that are out of date or just don't work for me. Since I'm so new t...

Open ID - What happens when you decide you don't like your existing provider?

So I'm not quite convinced about OpenID yet, and here is why: I already have an OpenID because I have a Blogger account. But I discovered that Blogger seems to be a poor provider when I tried to identify myself on the altdotnet page and recieved the following message: You must use an OpenID persona that specifies a valid email addr...

OpenID authentication in ASP.NET?

I am starting to build a new web application that will require user accounts. Now that I have an OpenID that I am using for this site I thought it would be cool if I could use OpenID for authentication in my application. Are there any good tutorials on how to integrate OpenID with an ASP.NET site? ...

Should my website abandon username/password authentication in favor of OpenID?

Question in title. ...

OpenID as a Single Sign On option??

I'm just looking for different opinions. Do you consider OpenID a good "Single Sign On" solution? The way it works seems to be a little bit confusing for an average user and there could be problems related to "putting all your eggs in the same basket". Anyway, have anyone tried to implement his own OpenId solution within the context of...

How do you set up an OpenID provider (server) in Ubuntu?

I want to log onto Stack Overflow using OpenID, but I thought I'd set up my own OpenID provider, just because it's harder :) How do you do this in Ubuntu? Edit: Replacing 'server' with the correct term OpenID provider (Identity provider would also be correct according to wikipedia). ...

Why is HTML form redirection used in OpenID 2?

Why would you do an automatic HTML post rather than a simple redirect? Is this so developers can automatically generate a login form that posts directory to the remote server when the OpenID is known? eg. User is not logged in and visits your login page. You detect the user's openID from a cookie. Form is generated that directly post...

How do I implement OpenID in my web application?

Does Stackoverflow create a new OpenID when a user registers with an email address (i.e. does not provide an existing OpenID)? How do you do that? Do you have code examples in C#? Java? Python? ...

How do I implement an OpenID server in Rails?

I see a similar question for Ubuntu, but I'm interested in hosting my own OpenID provider through my Rails-based site that already has an identity and authentication system in place. Note that I'm not looking for the delegate method to use the site as an OpenID. What's the best way to do this properly? ...

Useful browser plugins for openid authentication?

I've read http://stackoverflow.com/questions/41354/is-the-stackoverflow-login-situation-bearable and must agree to a certain point that openid (for me) makes it more difficult to log in. Not a show stoper but I'm used to opening the front page of the site, there's a small login form, firefox' password manager already filled in the correc...

What's the best .NET library for OpenID and ASP.NET MVC?

I'm looking at using OpenID for my authentication scheme and wanted to know what the best .NET library is to use for MVC specific applications? thx ...

What would it take to make OpenID mainstream?

OpenID is a great idea in principle, but the UI and the explanation as to why it is good are currently not tailored for general use -- what do you think it would take to make OpenID work for the general public? Can this be solved with technology, or is the problem so intrinsically hard that we are stuck with difficult explanations/multi...

How do I enable open id on a Java Webapp?

Is there a simple jar that I can just drop in a web app with simple configuration to allow people to log in my app and be seen as JASS user? I am not looking just for a library that implement the protocol, but a complete solution for simple solution integration. ...

secure way to authenticate administrator in ASP.NET site using OpenID with DotNetOpenID

Encouraged by SO, I'm trying to write an ASP.NET site that uses OpenID for user authentication. It's a regular WinForms site (not MVC.NET), using the DotNetOpenId library for authentication. Is it safe for me to permit/deny administrative functions on the site by simply comparing the current session's "ClaimedID" (as returned in the Op...

Problems with migrating Cardspace cards between computers

Here's the scenario. I'm using myopenid for, among other things, StackOverflow. When I initially set up my openid account with myopenid, I decided to try out Cardspace because they had support. I later wanted to access Stackoverflow from another machine so I chose to back up my card. I gave it a password and a filename and successfully ...

What is the benefit of using ONLY OpenID authentication on a site?

From my experience with OpenID, I see a number of significant downsides: Adds a Single Point of Failure to the site It is not a failure that can be fixed by the site even if detected. If the OpenID provider is down for three days, what recourse does the site have to allow its users to login and access the information they own? Takes a...

Using OpenID for both .NET/Windows and PHP/Linux/Apache web sites

Is it possible to use OpenID for both .NET web sites and PHP websites (Apache/Linux)? I have a manager that wants single sign-on for access to any/all web sites, regardless of which web server hosts a web site. I create .NET web apps and the PHP web sites/apps are done by another programmer. How would I go about using OpenID for a .NE...