Comments on: OAuth spec and a shiny new OpenID.net http://blog.claimid.com/2007/10/oauth-spec-and-a-shiny-new-openidnet/ Manage your online identity. Wed, 22 Apr 2009 04:00:25 +0000 http://wordpress.org/?v=2.9.1 hourly 1 By: Terrell Russell http://blog.claimid.com/2007/10/oauth-spec-and-a-shiny-new-openidnet/comment-page-1/#comment-49555 Terrell Russell Mon, 19 Nov 2007 14:46:28 +0000 http://blog.claimid.com/2007/10/oauth-spec-and-a-shiny-new-openidnet/#comment-49555 Bob, thanks for the questions. My first reaction is that it seems there's a potential privacy concern about pulling the username given a microid query... but it does seem that the point of publishing a microID would be to announce your ownership of a link... I'll think on it some more - it would be useful to check microIDs found in the wild against a database of known items (and we're really the only one at this point in time). Feel free to convince me/us. As far as the http component is concerned - we're using the complete URL provided by the user for a particular link. If they leave off a trailing slash, then it's calculated that way. This sometimes leads to some confusion, but anything else would be arbitrary on our part and more confusing to debug if something unexpected is being seen down the line. Thanks. Bob, thanks for the questions.

My first reaction is that it seems there’s a potential privacy concern about pulling the username given a microid query… but it does seem that the point of publishing a microID would be to announce your ownership of a link…

I’ll think on it some more – it would be useful to check microIDs found in the wild against a database of known items (and we’re really the only one at this point in time). Feel free to convince me/us.

As far as the http component is concerned – we’re using the complete URL provided by the user for a particular link. If they leave off a trailing slash, then it’s calculated that way. This sometimes leads to some confusion, but anything else would be arbitrary on our part and more confusing to debug if something unexpected is being seen down the line.

Thanks.

]]> By: Bob Aman http://blog.claimid.com/2007/10/oauth-spec-and-a-shiny-new-openidnet/comment-page-1/#comment-49553 Bob Aman Mon, 19 Nov 2007 04:17:38 +0000 http://blog.claimid.com/2007/10/oauth-spec-and-a-shiny-new-openidnet/#comment-49553 Also, when claimID generates a microid, what is the value of the http url component being used? Also, when claimID generates a microid, what is the value of the http url component being used?

]]> By: Bob Aman http://blog.claimid.com/2007/10/oauth-spec-and-a-shiny-new-openidnet/comment-page-1/#comment-49551 Bob Aman Mon, 19 Nov 2007 04:10:41 +0000 http://blog.claimid.com/2007/10/oauth-spec-and-a-shiny-new-openidnet/#comment-49551 Bleh, that API call is wrong, should be: GET http://claimid.com/api/get_username?microid=mailto+http:sha1:32b56025d21ba8c1c07ff6915b990bcddda5062f Bleh, that API call is wrong, should be:

GET http://claimid.com/api/get_username?microid=mailto+http:sha1:32b56025d21ba8c1c07ff6915b990bcddda5062f

]]> By: Bob Aman http://blog.claimid.com/2007/10/oauth-spec-and-a-shiny-new-openidnet/comment-page-1/#comment-49549 Bob Aman Mon, 19 Nov 2007 04:07:09 +0000 http://blog.claimid.com/2007/10/oauth-spec-and-a-shiny-new-openidnet/#comment-49549 Speaking of specs and APIs, is there a particularly good reason why I can't: GET http://http://claimid.com/api/get_username?microid=mailto+http:sha1:32b56025d21ba8c1c07ff6915b990bcddda5062f That seemed to me like it'd be an obvious thing to have around, but it's not there. Actually, there's not much of an API at all. :-P Speaking of specs and APIs, is there a particularly good reason why I can’t:

GET http://http://claimid.com/api/get_username?microid=mailto+http:sha1:32b56025d21ba8c1c07ff6915b990bcddda5062f

That seemed to me like it’d be an obvious thing to have around, but it’s not there. Actually, there’s not much of an API at all. :-P

]]> By: People Over Process » links for 2007-11-07 http://blog.claimid.com/2007/10/oauth-spec-and-a-shiny-new-openidnet/comment-page-1/#comment-49397 People Over Process » links for 2007-11-07 Wed, 07 Nov 2007 07:23:53 +0000 http://blog.claimid.com/2007/10/oauth-spec-and-a-shiny-new-openidnet/#comment-49397 [...] OAuth spec and a shiny new OpenID.net (tags: openauth openid identity identity2.0) [...] [...] OAuth spec and a shiny new OpenID.net (tags: openauth openid identity identity2.0) [...]

]]> By: jclove http://blog.claimid.com/2007/10/oauth-spec-and-a-shiny-new-openidnet/comment-page-1/#comment-49045 jclove Sun, 14 Oct 2007 16:03:03 +0000 http://blog.claimid.com/2007/10/oauth-spec-and-a-shiny-new-openidnet/#comment-49045 myID wasn't expecting anything like this. So imagine our suprise and pleasure when we found myID on the list at the openID website. It's great to know that we are in the same league as neat providers like claimID and others. Come see us and join the OpenID fun at our blog. myID wasn’t expecting anything like this. So imagine our suprise and pleasure when we found myID on the list at the openID website. It’s great to know that we are in the same league as neat providers like claimID and others. Come see us and join the OpenID fun at our blog.

]]>