Based on the results of my Unobtrusive OpenID post, it is quite evident that there is a lot of partial knowledge about OpenID out there. While my knowledge on the subject is far from complete, this post is my attempt to share what I have learned with others.
The target audience for the bulk of this post is people who are capable of adding autodiscovery links to their blog templates, may be able to install a small PHP script and/or know what a HTTP header is.
Claim Your Blog
For starters, one thing I didn’t make clear is that I was expecting people to continue to use their blog or homepage URI’s; what I did not expect was that people would start to use their identity URIs instead. These people have identities hosted by LiveJournal, Verisign, MyOpenID, 2idi, Technorati, Vox, TypeKey, and others.
What I expected would happen instead is that people would claim their blogs using their identity. In OpenID terms, this is called delegation, which sounds scary, but in reality it is just a form of autodiscovery, just like you do for your feed.
If you have an OpenID identity and a blog, then follow these instructions. If you don’t have an OpenID identity, you can get one for free at MyOpenID. Here’s mine.
Given such an identity, copy the following into the head section of your weblog, adjusting the two URIs as appropriate:
That’s pretty much it. What this says is that the web page in question is owned by the owner of http://samruby.myopenid.com/ and furthermore http://www.myopenid.com/server may be used to verify ownership of http://samruby.myopenid.com/.
By claiming your blog or homepage in this fashion, you can then use your URI (i.e., the URI of your blog or homepage) as your identity. Having this level of indirection is a good thing. If you ever become dissatisfied with your identity provider for whatever reason, you can easily and transparently switch providers.
When done, feel free to check your setup. You may find that the autodiscovery features of most OpenID libraries are not as robust as those for feed autodiscovery. Never fear, there is a solution for this later in this post.
Master Of Your Domain
This next step is entirely unnecessary, but I suspect that it will be popular with many of the readers of this blog. Letting someone else host your identity is actually good from a security perspective, after all, any fool can vouch for themselves (and below, I’ll show you how), but having somebody else vouch for you is often better, if for no other reason, it gives the person who is checking up on you a place to report spammers.
Of course, services can be compromised; but as already stated, you can always switch providers quickly.
The real downside is privacy. It gives somebody else partial information about a portion of your online habits. And much of the information that they don’t have is readily discoverable.
There is also control issues. After all, what good is a decentralized identity system where your only real choice is to delegate to a centralized server that you don’t control?
The good news is that it is easy. You don’t need any of these libraries. Simply download phpMyID. Place the one php file in on your web server and modify two lines:
In the first, put your desired username (Duh!), and in the second one put the md5 hash of the following: username:phpMyID:password. There are many ways to compute this, and the README suggests the following for Unix/OSX:
Now visit the page you just updated in your browser. It will identify itself with something like this: http://intertwingly.net:80/id/MyID.php. Place this information in both the openid.server and openid.delegate autodisovery links, and re-verify your setup.
Unlike other implementations, this one avoids using HTML forms for login, and instead uses HTTP digest authentication. This is a good thing.
Update: phpMyId has changed a bit since the time this was originally written.
Decrufting
So far, you have been able to host your own identity, but let’s face it, the URIs are a bit crufty, eh?. This shouldn’t matter much to anyone, but cleaning this up a bit will provide a bit of future proofing should you ever want to use a different implementation to host your own identity.
Often you can decruft your openid.server URI simply by renaming the script from MyID.php to index.php. You may need you to tweak your DirectoryIndex, which in turn may require AllowOverride Indexes to be set in your Apache configuration. Simply by doing this, my decrufted server is now:
http://intertwingly.net/id/
Decrufting your openid.delegate is even easier. Simply find the line in the php script that sets $idp_url and add another line after it which sets it to the value you want it to be. By setting it to my weblog address, I can eliminate the need for a openid.delegate autodiscovery link entirely!
$idp_url = 'http://intertwingly.net/blog/';
YADIS
At this point, I have two Identities, but I can only declare one, and can only declare it in a rather fragile and HTML specific manner. This is good enough for most purposes, and one can certainly stop there.
But let’s not.
YADIS defines a simple format for declaring multiple identities, potentially using multiple different protocols. Here’s what mine looks like so far:
Not too bad, eh? Two services, one of a lower numerical (and therefore higher logical) priority that I host myself, and one using MyOpenID; both associated with http://openid.net/signon/1.0. This information is simultaneously richer, more extensible, and easier to consistently parse than autodiscovery links placed in HTML as practiced on the web today. Just be sure to return this information with the correct MIME type:
AddType application/xrds+xml .xrdf
Now, how do I connect it in with my weblog? It turns out that there are multiple ways, so let me start out with what I consider the best way to be: redirecting requests based on the value of the HTTP accept header, thus:
I like that way best because tools looking for my identity don’t first have to fetch my blog at all. The next best way involves a HTTP header which you can set thus:
<Files index.html>
Header onsuccess set X-XRDS-Location http://intertwingly.net/public/yadis.xrdf
</Files>
Finally, one can put this information in the HEAD sections of HTML documents, but only as a last resort:
Astute readers will note that I still have the link in my main weblog home page. That’s a fallback for consumers that don’t (yet) support YADIS.
All told: I signed up for one free service, installed and tailored one PHP script, added one line to my weblog template, created one simple XML file and added a total of four lines to my .htaccess files.
Sam, I think you want ref="openid.delegate" for href="http://samruby.myopenid.com/", not “openid.server”.
Frankly, I found the OpenID spec confusing to read because it used common terms in an uncommon mix of semantics. For example, ‘End User’ as ‘cardholder’ and ‘Consumer’ as web service.
“Consumer” was OpenID 1.0 terminology. Now that other groups have joined the party (LID, DIX, XRI, ...) OpenID 2 has switched to calling it the “Relying Party”, which is apparently the standard terminology for such things. (I’d never heard of it before this, personally!)
As far as I’m aware, the term “cardholder” does not appear anywhere in any OpenID specification past, present or future. The end user is called the end user.
The other “crazy term” was “IdP” (for “Identity Provider”, in 1.0 simply called the “server"), but that has recently been renamed to simply "OpenID Provider” (or "OP"), which I think is much clearer.
Thanks for the step-by-step tips. I wasn’t sure where I should go for an OpenID provider. Ideally someone already frequently handling my ID, such as Google or Yahoo should be my provider. Someday, perhaps...
“Options +Indexes” only enables the mod_autoindex module, which is not needed when the DirectoryIndex directive contains a filename mentioned inside a directory (as is your intent with index.php).
Thanks to the great instructions from Sam, this blog should now be properly OpenID-enabled. Or at least they say so. I know at least one guy who will be happy to know I’m embracing this stuff, even though he hasn’t got any OpenID...
Jeremy Zawodny : OpenID for non-SuperUsers - OpenID for non-SuperUsers: Sam shows us what it takes to claim your site using OpenID and start using your new identity. It’s surprisingly easy. wearehugh : Sam Ruby: OpenID for non-SuperUsers Tags :...
Sam Ruby’s recent interest in OpenID might be the best thing that could happen. With the size of his audience (2234 subscribers on Bloglines only), his deep understanding of how to spread stuff like this and his desire to hack it is bound to...
Sam Ruby provides complete introduction to OpenID. I wrote about it on last day of the last year, when I started using my blog as my identity. But Sam has given further illustrations of hosting the identity on your own server without much effort,...
Thanks for this great write-up. I’ve been meaning for some time to switch my identity from using html-based discovery to using full Yadis discovery. Your mod_rewrite patterns will definitely come in handy.
One issue I found with the rewrite code provided. This will cause the RP to redirect to that address, thus the final identity will be (in your case) “http://intertwingly.net/public/yadis.xrdf” as opposed to the URL you provided. I got around this by dropping the [R] flag.
tech decentral » Ajax Start Pages Suck good info on things to avoid in Ajax home pages (tags: ajax toread) Sam Ruby: OpenID for non-SuperUsers quote: “While my knowledge on [OpenID] is far from complete, this post is my attempt to share what...
W ostatnich dwóch dniach ukazały się dwa ważne wpisy na blogach, dotyczące OpenID. Pierwszy z nich, którego autorem jest Sam Ruby. ma charakter bardziej techniczny. Opisuje on jak dodać OpenID (a właściwie jak wydelegować OpenID) na swojej stronie,...
One issue I found with the rewrite code provided. This will cause the RP to redirect to that address, thus the final identity will be (in your case) “http://intertwingly.net/public/yadis.xrdf” as opposed to the URL you provided. I got around this by dropping the [R] flag.
Odd. I can successfully log in as http://intertwingly.net/blog/ at the LiveJournal site.
I’m clearly new to this, but I reason thus: the XRD file isn’t my identity, it contains a list of identities. One of the identities listed is my weblog.
The reason I like the explicit, external redirect is twofold: (1) it actually shows up in my Apache logs, and (2) I’m not normally a fan of content negotiation for the reasons Joe Gregorio gives. Having this data available under a separate URI makes me feel better.
Thank you for this article. It really simplifies the process of OpenID-enabling.
As for X-YADIS-Location, I think it’s a should rather than can. It won’t hurt to have it in the header just in case. I also believe the http-equiv value should be X-XRDS-Location.
Atom Publishing Protocol, latest spec draft APP-12 , will be proposed for last call, apparently . There’s another little speclet draft from atompub to review too: The application/atom+xml Type Parameter . Basically (via James ) : Identifying Atom...
The use of Metadata in URIs (tags: by:tag URI metadata W3C bestpractices URL architecture by:noah_mendelsohn by:stuart_williams) Starting with the Web (tags: rest web webservices soa by:mark_baker W3C) OpenID for non-SuperUsers (tags: by:sam_ruby...
OpenID is generating a reasonable amount of buzz recently. OpenID is a vendor-independent approach on bringing the infamous concept of single sign-on to the web. in a nutshell, OpenID allows users to use a single, URI-based token to access numerous...
X-XRDS-Location in real HTTP headers and X-YADIS-Location in http-equiv? A search for X-XRDS on the yadis.org wiki leads me to believe that X-YADIS-Location is somehow deprecated.
Thanks for the post, though; exactly what I needed to read! --lbruno
There is a bug in version 0.3 which prevents immediate mode from working (in the checkid_immediate_mode function it tests against the string 'checkid_setup' rather than 'checkid_immediate').
Even with that bug fixed, I suspect immediate mode will still not work properly with your recommendation of setting $idp_url to your weblog address. Most of the time phpMyID treats that variable as your Indentifier URL which works out ok. However, in immediate mode, it is also returned in the openid.user_setup_url parameter which really should be the Indentity Provider URL. At least I think so. I find the whole user_setup_url thing a bit confusing, so I could be wrong.
It is my understanding that your provider is supposed to ask whether you trust a Consumer web service before providing your identity information but phpMyID doesn’t do that. I’m not sure why this is an issue for basic indentification, but if you are providing registration information you should be aware that your details can be stolen by an untrusted site if they know your IDP URL and you happen to be logged into your IDP server at the time.
Based on the results of my Unobtrusive OpenID post , it is quite evident that there is a lot of partial knowledge about OpenID out there. While my knowledge on the subject is far from complete, this post is my attempt to share what I have learned...
OpenID, a URL based identity specification, has looked interesting for a while but I havent had time or the inclination to look into it. Until today when I say that Sam Ruby posted a Non Superusers guide to OpenID with......
[more]
Comment utiliser OpenId, la solution d'identification tant attendue
Cela fait un moment que je suis ça de loin et la sauce est en train de prendre, Tarek en parlait d’ailleurs récemment. OpenId permet de s’identifier via une simple URL sans pour autant être tributaire d’un service puisque vous pouvez avoir votre...
There are a couple of really interesting posts about OpenID online, as of yesterday. Richard McManus at Read/WriteWeb has published a short video of setting up an OpenID. It’s trivial to do. Sam Ruby’s Open ID for non-SuperUsers walks...
10 Mistakes in Transitioning to Agile The Dojo Offline Toolkit Brad Neuberg is one of those people who has worked a lot with client-side storage and offline work. AMASS, then dojo.storage, now this. Remember, though, the risks of client-side...
Comment utiliser OpenId, la solution d'identification tant attendue
Cela fait un moment que je suis ça de loin et la sauce est en train de prendre, Tarek en parlait d’ailleurs récemment. OpenId permet de s’identifier via une simple URL sans pour autant être tributaire d’un service puisque vous pouvez avoir votre...
New Nginx.conf with optimizations, by Ezra Zygmuntowicz. Sounds like a reasonable alternative to Lighttpd. The stuff of dreams, “we’ve compiled a short list of fun materials – stuff that behaves a little bit outside the...
I created another OpenID server implementation, similar to PhpMyID, although new features are being added. It’s written in Python using Django and the OpenID Python library.
Shared bookmarks for del.icio.us user Synesthesia on 2007-01-04 Google Account Authentication: Keywords: Identity Yahoo Browser-Based Authentication: Keywords: Identity OpenID for the Semantic Web: Keywords: OpenID, Identity Verisign Personal...
Since Joomla! is going to have OpenID Authentication thanks to folks like CoolAcid and Johan, this looks like good reading the rest of us should be able to handle! Technorati Tags: Joomla!, OpenID...
OpenID is an open, decentralized, free framework for user-centric digital identity. OpenID starts with the concept that anyone can identify themselves on the Internet the same way websites do-with a URI (also called a URL or web address). Since URIs...
Based on the results of my Unobtrusive OpenID post, it is quite evident that there is a lot of partial knowledge about OpenID out there. While my knowledge on the subject is far from complete, this post is my attempt to share what I have learned...
Based on the results of my Unobtrusive OpenID post, it is quite evident that there is a lot of partial knowledge about OpenID out there. While my knowledge on the subject is far from complete, this post is my attempt to share what I have learned...
Productive Strategies: Intellectual Diet - “Our health is determined by what we eat on a daily basis. It doesn’t really matter what we do as part of a 1 week diet. Our intellectual health is determined by what we do every day on a...
Lattix tackles software architecture complexity (tags: lattix programming uml modeling) MegaMiles 10,000 If you’re a miles/points nut like myself, don’t forget to sign up for this deal with American and whoever else used...
Thanks for this excellent writeup, Sam. Wonderful work. But could I ask you to update this thread on the progress you do on the OpenID discussion list as I (and many others, I’d expect) don’t subscribe to it?
But could I ask you to update this thread on the progress you do on the OpenID discussion list as I (and many others, I’d expect) don’t subscribe to it?
If anything definitive comes out I will certainly update this entry (and update atom:updated), but at the present time, it appears that the discussion has wandered off into other topics.
The current status: I did an external, temporary redirect as I wanted to see this activity in my Apache Logs. The current status is that some servers will treat this as a permanent redirect, and use my XRD file as my identity (something that works just fine). Those that care about such things can drop the [R] and replace the URI with either a relative or absolute file path and neither the Identity Provider nor your Apache logs will ever see the redirect happened.
Sam Ruby: OpenID for non-SuperUsers Some Words of Advice for Small Newspapers "Here are 10 things that publishers and editors of small newspapers should be doing to keep up with the times and resist the industrywide trend of flat or declining...
I’ve been playing around with OpenID on the few occasions I’ve had internet access over the Christmas break and have it set up, but not ideally. Currently, everything points to [link] as the OpenID URL, but...
Your preferred method for linking your XRDS to your blog URL will actually break your identity: a correct implementation will use the final destination URL (after following all redirects) as the claimed identifier, so you’ll end up being http://intertwingly.net/public/yadis.xrdf instead of http://www.intertwingly.net/blog/.
The other two methods (X-XRDS-Location header and HTML Meta tags) are the ones supported by Yadis discovery.
I explicitly and intentionally chose a temporary redirect. Does it make sense for YADIS to treat this response the same way it treats a permanent redirect?
I’m braindead. Nevermind. Changed openid.com to myopenid.com (Gotcha there!), and it now validates. Still weird that I had to move the links up a bit for the validator to catch them, but oh well.
OK, I guess I ignored the OpenID login the first time, and threw away my 1st comment. Then again, it wasn’t working the first time, so it couldn’t actually validate me anyway.
To wrapup, for those fools who are currently following me, I managed to have openid.com instead of myopenid.com in the <link statements.
I also was experiencing issues with having buried the <link s to far down in the code (some PHP stuff and comments). Not going to worry about that one right now. Somebody else can.
But I now actually have it working. Enough. :-P ;-)
The other stuff I’ll try when I’m more sane. If that ever happens anymore. Sheesh......
Sam Ruby: OpenID for non-SuperUsers nice description of OpenID for mortals. [via joshua] filed under: development, security, identity, weblogs Matt Cutts: Productivity tip: make “howto” files I’ve been doing this for the past few days and it’s...
Sam Ruby has a good overview of OpenID and the steps required to start identifying yourself. I personally don’t know much about it but I’m intrigued to learn more after reading some of the recent press about it. OpenID For Non-Superusers...
Thanks to Sam’s post on a short path to getting a personal install of OpenID working, I got things working and gave them a quick whirl with both the OpenID Enabled checker and a WordPress scratchpad. All-in-all it was almost too easy; the most...
I followed the instructions here to create an OpenID for myself at MyOpenId, and added the magic bits that associate this weblog with that ID: <link rel="openid.server" href="http://www.myopenid.com/server" /> <link rel="openid.delegate"...
Dave Winer links to some easy instructins to setup an OpenID: I followed the instructions here to create an OpenID for myself at MyOpenId, and added the magic bits that associate this weblog with that ID Like Dave, I’m very excited about this as it...
CES stringer for hire… Real cheap. There’s a preview event tonight for press at the Venetian, and I want to blog it but I’m not sure if I have a press badge (the wonderful people at Podtech are looking into it). So I need a...
Sam Ruby has a good overview of OpenID (wikipedia) and the steps required to start identifying yourself. I personally don’t know much about it but I’m intrigued to learn more after reading some of the recent press about it. OpenID For...
Gutes Howto wie man die eigene OpenID zukunftssicher anlegt von Sam Ruby. (das Prinzip openid hat natürlich seine offensichtlichen Vorzüge, man braucht sich nicht immer wieder anmelden, immer wieder neue Passwörter ausdenken oder mit schlechtem...
I’ve been quiet lately because all my spare time got sucked into OpenID. I had intended to add OpenID support to ongoing myidspace project but Sam Ruby’s tinkering with OpenID got me to change my priorities. Monkey see, monkey do. What people...
Your preferred method for linking your XRDS to your blog URL will actually break your identity
How will this “break” my identity?
A correct implementation, if it uses Yadis discovery, will use http://intertwingly.net/public/yadis.xrdf as the claimed identifier; it is still yours, but a different one as far as the RP is concerned, while you assume / would like it to be the same one. This is what I meant by ‘breaking’.
Despite this alleged breakage, I can successfully sign on to openidenabled and livejournal. And validate with the JanRain Python library.
Can’t speak for them - they may be using HTML discovery, not Yadis. It may be worth checking this directly with them.
I explicitly and intentionally chose a temporary redirect. Does it make sense for YADIS to treat this response the same way it treats a permanent redirect?
As is being discussed in the related thread [http://openid.net/pipermail/general/2007-January/000946.html] on the OpenID list, redirects are not (yet) part of Yadis, and all redirects are treated the same in OpenID (in the normalization section).
Digging in to TextMate Tips on how to make more efficient use of TextMate. (tags: textmate) Hosted CRM Contact Management Solutions for Individuals and Small Teams Review of options from Web Worker Daily (tags: crm) OpenID for Non-Superusers (tags:...
Following Sam Rubys instructions I’ve OpenID enabled this blog. OpenID is an interesting set of technologies and something I hope to do more with in the future. The timing of Sams instructions was perfect....
I think openID will take off in 2007, with the geek crowd. In 2008 you’ll start seeing it in some large sites owned by Yahoo/Google etc. Why do I think that? It seems a well thought-out system, open, and adoptable in the sense that it’s...
OpenID looks promising. You can use it to log into wikitravel, vox, and lots of other sites. OpenID sounds as if it shouldn’t work, but it does. Kinda like wikis. It’s secure and everything. To create an account, do this: 1. I went to...
Negli ultimi giorni ho raccolto un po' di link su OpenID. Post e interventi quanto mai benvenuti, visto che molti di essi hanno un taglio divulgativo a da howto che mi ha consentito finalmente di fare chiarezza sul funzionamento di questo sistema...
Regarding phpMyID: is it not important if using this to run it on a SSL-enabled server? Given you will be entering your ‘master’ password for your openid profile it seems silly to send it in clear-text!
Regarding phpMyID: is it not important if using this to run it on a SSL-enabled server? Given you will be entering your ‘master’ password for your openid profile it seems silly to send it in clear-text!
While TLS/HTTPS would be superior, phpMyID usses HTTP digest authentication, which means that the password is not sent in the clear.
Post en el que se explican varios conceptos sobre OpenID y cómo implementarlo en tu propia página o blog: cómo reclamar tu blog, cómo usar phpMyID en tu web para no delegar en servidores ajenos, cómo usar servicios como Yadis (yadis.org/) y cómo comprobar que toda tu configuración funciona. En inglés....
[more]
Sam Ruby’s post on OpenID delegation (and more) was inspiring enough to do it for my homepage, that runs on Drupal. It turns out that there’s a module make it very easy: OpenID URL. I’d suggest you download the dev version for the time being. And if...
- El cajero automático: nunca fue tan fácil y cómodo endeudarse- Sergio Langer es un dibujante ácido y corrosivo- El arzobispo de Canterbury reconoce que la Iglesia anglicana podría caminar hacia un cisma- Ford Motor Company utiliza Wordpress- Los...
Great post from Sam Ruby explaining how to OpenID-enable your blog/website/etc. Says Sam: Based on the results of my Unobtrusive OpenID post, it is quite evident that there is a lot of partial knowledge about OpenID out there. While my knowledge...
OpenId is interesting and I see something that would push a bit further. I will try to explain a bit.
Weblog Comments and Weblog posts are exactly of same nature. They have an author, they refer to a content sometimes (either another comment or a weblog post), they have a text, a date, etc.
But why do we have to comment ON the weblog as I do now, when we could all comment on our system AND keep track, traces, archives of our comments locally. What would be neat is that comments section on people’s weblog would be just an aggregation of the comment/posts made elsewhere. hmmm yeah. Nothing new. Is it not what Trackback was proposing, but failed in part because of spam. Indeed.
Though come OpenId. Would it be possible to have a trackback+openid combination. When the trackback is done, it’s not only a link to the post which is made but the aggregation of the full content in the commenting zone.
Another way of doing it is that when you are registered with an openid, your openid system aggregates all your comments done elsewhere.
Sam Ruby has a nice, step-by-step process for setting up OpenID for personal digital identity use. I’ve done part of the process, but will save the rest until I have some time. Hopefully OpenID will get enough traction that Google...
OpenID looks promising. You can use it to log into wikitravel, vox, and lots of other sites. OpenID sounds as if it shouldn’t work, but it does. Kinda like wikis. It’s secure and everything. To create an account, do this: 1. I went to...
- OpenID para todos- Diseño y programación Web... ¿desde 0?- Comprahost || Compra Hosting PHP, ASP, Ruby on Rails,DHTML... en www.comprahost.com- Versión 1.0 del Lenguaje de programación D- Hobo extensión a Ruby On Rails- Una mujer con un útero...
News Wire: Chris Wilson to Chair W3C HTML Working Group
The Adobe PDF XSS Vulnerability A new XSS vulnerability has been found in Acrobat and Acrobat Reader 7.0.8 and earlier for Windows. If a vulnerable user follows a malicious link to a PDF on your site, the browser will silently execute the...
OpenID for non-SuperUsers: Based on the results of my Unobtrusive OpenID post, it is quite evident that there is a lot of partial knowledge about OpenID out there. While my knowledge on the subject is far from complete, this post is my...
Comment utiliser OpenId, la solution d'identification tant attendue
Cela fait un moment que je suis ça de loin et la sauce est en train de prendre, Tarek en parlait d’ailleurs récemment. OpenId permet de s’identifier via une simple URL sans pour autant être tributaire d’un service puisque vous pouvez avoir votre...
OCAWA « ... un outil d’audit de page web orienté vers l’accessibilité. » tags : accessibilite web firefox extension OpenID for non-SuperUsers OpenID pour les nuls ou presque. tags : weblogging securite identite Switchy McLayout : An Adaptive Layout...
У меня сабж :-) Нашел наконец-то время разобраться с openid, как и предполагал ничего особо сложного нет. Все делал по этим статьям: OpenID for non-SuperUsers OpenID delegation under Django and lighttpd Теперь бы еще запустить свой openid сервер :-)...
TOMBO Project - Note Taking for Windows and PocketPC From the 43 Folder’s mailing list JotSpot Wiki - R2.9ReleaseNotes It appears there is some movement from Google’s purchase of JotSpot Need a 2007 calendar for printing? Nice site timeanddate.com...
Hush Tactics for the iPhone - Bits - Technology - New York Times Blog Apple tried to hire Jeff Han. Heh. (tags: jeffhan iphone appleinc UI NYU) Sam Ruby: OpenID for non-SuperUsers "The target audience for the bulk of this post is people who are...
“The target audience for the bulk of this post is people who are capable of adding autodiscovery links to their blog templates, may be able to install a small PHP script and/or know what a HTTP header is.” Originally posted by yatta from...
Sam Ruby’s “OpenID for non-SuperUsers” distills the process of setting up one’s own OpenID server with phpMyID in such a clear and concise manner, that I couldn’t help but implement it myself. I’ve taken his...
The noise and interest around OpenID, a distributed and open lightweight identity system, has been growing for a few years now, but my sense is that it has dramatically accelerated in recent months. So much so that things are starting to feel really, really close. And by that I mean that all it takes now is for one “big player” to jump on the OpenID bandwagon. OpenID will then either take off or fall flat on its face. Everyone is......
[more]
Sam Ruby shows how to get yourself enabled for OpenID. For Typo, I edited app/helpers/article_helper.rb and edited the page_header method to include the 2 links the OpenID delegate requires....
Sam Ruby: OpenID for non-SuperUsers An excellent, practical walkthrough on how to use OpenID. .::{WiiNintendo.net}::. Bloke plays Wii Sports, loses weight, gets fitter. Getting Started with MacFUSE: DLS How-To - Download Squad A clear howto on...
The noise and interest around OpenID, a distributed and open lightweight identity system, has been growing for a few years now, but my sense is that it has dramatically accelerated in recent months.So much so that things are starting to feel really,...
OpenID appears to be the new hotness. I’m only just starting to learn about this. There doesn’t appear to be anything technically earth-shattering here. As with most good ideas, it’s seems fairly simple. It...
Com tanta discussão sobre o OpenID recentemente, achei que seria interessante experimentar com o mesmo aqui no blog. Agora, nos comentários, você pode usar o seu OpenID para efetuar login no site. Infelizmente, isso não significa que você pode...
There have been some great projects lately about moving information control into the hands of users such as Move My Data. In that vein there is the idea of profile data using microformats. For example you have a list of your friends marked up on...
Now that we’re through with OpenID phishing (alright, maybe we’ll be soon ), this is the perfect time for addressing the spam issue. Jayant Kumar Gandhi brings us this “great news”: OpenID is getting popular day by day and...
When I read Simon’s proposal about social whitelisting with OpenID this morning, I was immediately intrigued by the idea. Basically, he’s suggesting that by whitelisting trusted OpenIDs, sharing these lists among peers, and using them...
This is going to be big and have month-old news in it; a consequence of the long southern-hemisphere posting interruption. I’ll even group ’em into paragraphs....
OpenID is ‘an open, decentralized, free framework for user-centric digital identity’. That doesn’t sound terribly exciting, but it has the potential to change the way we all use websites, particularly those that require you to...
A post on Intertwingly (Sam Ruby’s blog) brought me back to the idea of single sign-ons. A year and a half ago I came up with SPTP, the Simple Profile Transfer Protocol, which turned out to have a major flaw. Then I looked at SINP. But the...
If the question is why microformats, then the answer is WebCards
Less than two years old and microformats are already changing the way we pull semantic information (hidden metadata) out of the web. Designed for humans first and machines second, microformats are a set of simple, open data formats built upon...
“The target audience for the bulk of this post is people who are capable of adding autodiscovery links to their blog templates, may be able to install a small PHP script and/or know what a HTTP header is.” Originally posted by yatta from...
Sam Ruby - OpenID for non-SuperUsers: "Based on the results of my Unobtrusive OpenID post, it is quite evident that there is a lot of partial knowledge about OpenID out there. While my knowledge on the subject is far from complete, this post is...
Videntity.org, an OpenId server by Dan Libby, now imports user profiles from sites which provide your profile in hCard or FOAF. I hadn’t bothered previously filling in my profile details, but now that I’ve pointed it at my Flickr profile page and...
Adopting Standardized Identification and Metadata Since it’s becoming all the rage, I decided to go legit and get myself (and my blog) a standard ID and enable the site for easy metadata exchange. OpenID OpenID is an open and free framework...
Sam Ruby posted a while back on how to embed LINK tags in your blogs (or other web resources) in order to enable OpenID auto-discovery. Here’s a plug-in for WordPress that lets you accomplish this lickety-split....
I think I remember the conversation I had with Brad Fitzpatrick and Randy Reddig that inspired us to create OpenID (and by “us” I mean Brad). The conversation started with my trying to understand why more people simply don’t trust......
I think I remember the conversation I had with Brad Fitzpatrick and Randy Reddig that inspired us to create OpenID (and by “us” I mean Brad). The conversation started with my trying to understand why more people simply don’t trust......
This is going to be big and have month-old news in it; a consequence of the long southern-hemisphere posting interruption. I?ll even group ?em into paragraphs. Anyone interested in XML in particular or life online in general will enjoy Jon Bosak?s...
That was easy. First, I claimed it, then checked it, then mapped it and then checked it again, and now I guess I can claim my identity is gotze.eu. My public persona is currently at gotze.myopenid.com. I’m playing with my own IdP, but...
OpenID is sweet, more and more sites are starting to support it (well, LJ does at least, more sites should be). A while back Sam Ruby posted about how to get it up and running easy easy easy, but I only got around to doing it today. Would be...
Many thanks for this - got me on the OpenID road. I love your unobtrusive comment system, although you could make it clearer that I only need to enter the OpenID URI to authenticate.
Works, thanks!
After I read this post I add to my site head line with: http-equiv="X-XRDS-Location"
as an addition to: http-equiv="X-YADIS-Location"
which was not recognized by test on openidenabled.com.
Jak entuzjastę otwartych standardów (od niedawna zresztą) bardzo mnie ucieszyła informacja o zaprzęgnięciu obsługi OpenID w Joggerze. Poza oczywistymi korzyściami (jak i również wadami) samego OpenID to naprawdę fajne uczucie patrzeć jak Jogger się...
Sam Ruby: OpenID for non-SuperUsers More notes on OpenID… but still looking for how to set up my servers to accept OpenID. (tags: openid authentication howto identity) Converting your site to OpenID This is helpful… thanks, Lisa. (tags:...
It doesn’t take much to get me excited. Even so, I’m quite jazzed over this whole concept of OpenID. Basically it’s a way for websites and services to authenticate your identity in a secure, flexible and decentralized way. Unlike...
At the Vancouver PHP Conference this past weekend, and then again last night at Ignite Seattle, there were presentations on OpenID.OpenID is probably the coolest pieces of net “infrastructure” tech I’ve seen in a year. I’m really excited. I’m...
Yesterday, I blogged about AOL’s work-in-progress on OpenID. It generated a lot of positive commentary. I realized after reading the reactions that I buried the lead: There are now 63 million AOL/AIM OpenIDs. Anyone can get one by signing up for a...
901am points to AOL’s announcement that it is going to integrate OpenID into its 63 million user base.From the announcement:"Every AOL/AIM user now has at least one OpenID URI, [link] experimental OpenID 1.1 Provider service is...
OpenID for non-SuperUsers (tags: OpenID PHP XML RDF Tutorial Apache Identity Security) 10 steps to get Ruby on Rails running on Windows with IIS FastCGI (tags: IIS Rails Ruby FastCGI Windows)...
I’ve got OpenID set up with phpMyID. I got to that project and picked it based on the writeup here that jbeimler pointed me to. It should have been easy, but I made too many mistakes to count in the configs, and I still don’t know...
Kim Cameron - Microsoft: AOL and “63 Million OpenIDs”
First Microsoft’s announcement with JanRain, SXIP and Verisign at RSA. Now news that AOL has launched an experimental system and announced it will support the next version of OpenID. The world streams by at breakneck speed. We’re...
After enabling OpenID authentication at this site, I was wondering if I could become my own OpenID identity provider. Googling for references, I have found a detailed guide at Sam Ruby post OpenID for non-SuperUsers. I followed Sam’s instructions,...
The social Web is interesting. One of the new themes, memes, dreams, whatever you want to call it, that is prevailing at present is that of OpenID . The funny thing is, if you’re anything like me, it takes moment or two (and some serious...
OpenID är en tjänst som strävar till att ge oss en centraliserad identitet när vi rör oss på nätet. Bland annat innebär det här att vi slipper logga in skilt på varje tjänst som stöder OpenID utan det räcker med att vi har loggat på OpenID en gång...
OpenID is an open, decentralized identity system that attempts to provide a solution to the multiple log on ID systems to access various sites across the internet. At O´Reilly Radar, Brady Forrest gives some of OpenID Pros: You probably already...
Seguendo le istruzioni di Douglas Karr e di Sam Ruby ho installato phpMyID in modo che www.garuti.it possa fornire la mia identità OpenId Inoltre anche Digital||Divide e …per Carpi delegano a garuti.it la gestione della mia identità...
Having looked at OpenId I got to wonder a little how this links in with other technologies such as SAML . One nice thing is it looks like we can have one URL Identifier and use both services. Pat Patterson recently showed with a nice video how one...
A few postings, here, here and here already talk about converting their blog urls into OpenID URLs. This method allows you to use your blog URI as your OpenID URI and login any one of the participating websites using that, as opposed to creating...
Why Apple is the best retailer in America Apple are now seen as a leading company in terms of retail design, taking leads from hotel experience and a focus on what people do, not what Apple sell. The Apple retail experience will be hard to...
Great stuff; thanks for the very detailed instructions. You need to update the instructions with the latest versions of MyID.php, since for the non-PHP expert the latest 0.5 doesn’t set $idp_url directly anymore. Instead, it checks ! array_key_exists('idp_url', $profile), and if not, then defaults it to the current server.
The only other comment for non-experts is to carefully follow the MyID.php setup, especially the .htaccess stuff if needed: it relies on being served properly, which requires that your webhost allow you to use specific directives.
open_id_authentication is the OpenID consumer plugin for Rails, being written by DHH and some on the Rails core team. This plugin was getting some quick updates at first, but things have slowed down as the 37signals crew has focused on launching the...
OpenID est un système d' authentification unique (SSO ou Single Sign On en anglais) et décentralisé. Le système permet donc à un utilisateur d’utiliser son compte PpenID dans différentes applications web (sous réserve qu’elles intègrent cette...
A lot of people seem pretty happy about MyOpenId (it’s the one I use myself, and it seems pretty reliable). It’s also pretty easy to change OpenID providers. If you have your own domain name, my suggestion would be making your own domain name your...
“I’ve worked with the folks behind MyOpenID, and think it’s a good service, but I’m not sure about the idea of an identity that’s just an identity URL and not also part of your actual online presence.” With delegation , your OpenID...
I have uploaded the openid plugin for wordpress. The problem is that when I add a comment, the username contains the full path to the yadis file. Is there any way I can change it?
Sam Ruby has an awesome article on how to use OpenId. He summarizes: All told: I signed up for one free service, installed and tailored one PHP script, added one line to my weblog template, created one simple XML file and added a total of four lines...
Sam Ruby: OpenID for non-SuperUsers “All told: I signed up for one free service, installed and tailored one PHP script, added one line to my weblog template, created one simple XML file and added a total of four lines to my .htaccess...
Norman, sorry about the typo, it was actually right in the excerpt, but not in the first line of the whole entry, which is shown while it is current . I found strange that no news is good news is used as a criterion for ending a transaction, no...
I finally signed up for an OpenID identity with MyOpenID . I’d been meaning to try out a single sign-on scheme for a while. OpenID hits all the right buttons for me: open, lots of implementations, low barrier to entry (compare that with Microsoft...
Finally gotten around to set up my OpenID another great example of real simple technology just a couple of link tags on a page you can control (a web page, a blog) an Openid provider (server) like myopenid.com can communicate with the...
I would like to inform you about a new Openid provider. [link] allow you to create an OpenID account for free and manage your online identity.
You can create profils where you set witch informations you want to allocate.
This web site is based on the famous Joomla template.
Technophilia: One OpenID to Rule Them All...or Not?
Decentralized online identification system OpenID can log you into dozens of social networking sites (and counting) using a single username and password. OpenID asserts who you are by proving you own a URL—not an email address, not a...
Decentralized online identification system OpenID can log you into dozens of social networking sites (and counting) using a single username and password. OpenID asserts who you are by proving you own a URL—not an email address, not a...
OpenID: OpenID es un sistema de identificación digital descentralizado, con el que un usuario puede identificarse en una página web a través de una URL (o un XRI en la versión actual) y puede ser verificado por cualquier ser...
[more]
I think I remember the conversation I had with Brad Fitzpatrick and Randy Reddig that inspired us to create OpenID (and by “us” I mean Brad). The conversation started with my trying to understand why more people simply don’t trust......
In the redirect line for yadis, there is a [R,L] (Redirect, Last).
This produces as a result that the PIBB service will use the yadis URL as User URL (not sure if rightly or not). Switching to [P,L] (Proxy, Last) solved it here, and it looks that it produces no secondary effects, aside from a bit of access_log spam.
OpenID, the service that lets you login to websites using a single identity, has launched a cleaner, more modern website which states what OpenID is, where you can use it, and how you can get one. The site focuses on......
1) Go to “Use your own URL as your OpenID”
2) Type in your myID account and sign in.
3) Copy and paste the three URLs that appear onto the head section of your blog or homepage.
4) Now you can use your own URL as your OpenID.
Hi Sam,
Just wanted to ask you if you can update the DeCrufting part because on the new PhpMyID code, $idp_url variable is no longer a variable but part of the $profile[] array. I wanted to try your suggestions on decrufting but I don’t know where to place it since it is now an array and I have no idea how to program in php.
Hi Sam,
Just wanted to ask you if you can update the DeCrufting part because on the new PhpMyID code, $idp_url variable is no longer a variable but part of the $profile[] array. I wanted to try your suggestions on decrufting but I don’t know where to place it since it is now an array and I have no idea how to program in php.
This blog now functions as my ID. It is my delegate ID for OpenID. I got the idea for this from Sam Ruby’s post “OpenID for non-SuperUsers“. As he states, you just have to add this to the head of the HTML for the blog:...
I have been using OpenID more often to sign up for new web services. It seems to me that you should be able to build up an OpenID identity, but I’m not sure how to go about this. There still would need to be some sort of centralized reputation...
xkcd: One person, one vote in the Texas legislature: (Via Lawrence Lessig.) Starlings flocking; it starts to get good at about 2:00, though if that’s not good enough for you, go to 3:20. (Via Cosmic Variance.) Weird Hand-Drawn Game certainly...
Of course, you can always use your own URI, blog URL, website, etc as your OpenID. Delegation is the simplest way to get up and running with OpenID and Sam Ruby wrote a great tutorial. Delegation requires nothing more than an OpenID Provider and...
Sam,
there is a typo in the “Yardis” section: “redirectng” should be “redirecting”
(I’m happy for you to not publish this correction comment).
This is the best explanation of OpenID I have found!
Tony McNamara
Denerwuje Cię komentowanie na Bloggerze? Zdaniem wielu uczestników blogosfery główną wadą blogów na zarządzanej przez Google platformie blogowej Blogger/Blogspot jest sposób umieszczania tam komentarzy: pomijając już bardzo denerwujące komentowanie...
submit_url = ‘http://www.ablogaboutnothing.com/enable-comment-links-blogger/’; How to enable comment links on blogger In order to combat spoofing Blogger has decided to require that any blog which wishes to allow comment links needs to enable Open...
I wrote the other day that Google/Blogger had disabled linking in comments from bloggers who don’t use Blogger. As Pete, Lisa and Rose pondered or indicated, this change apparently has something to do with OpenID, despite Google/Blogger...
Blogger in Draft now lets you enable OpenID -based commenting, in your blogs' Settings | Comments tab: (OpenID comments work in both the Anyone and Registered Users modes) This means that users of OpenID-enabled services — such as LiveJournal and...
Recently I ran into some trouble trying to comment on Blogger blogs. It seems that, without notifying its users, Blogger suddenly changed its default comment system and now the default doesn’t allow people to comment without using a Google/Blogger...
Today I set up an OpenID at MyOpenID. I was expecting it to be a bit of a universal profile, but it isn’t (you can see my public profile here). So while this will let me comment on Blogger blogs, it doesn’t really provide an easy link to my blog....
Thanks! I just managed to do this.. I can now use my blogspot url as an OpenID and sign in for commenting at “Any OpenID”, thus getting a commentor name with the link to my blog attached to it! And that’s what I wanted!
Thank you very much!
Most of you will have noticed that it has been made impossible for a while to comment on Blogger/Blogspot blogs without a Blogger/Google account (unless the blog owner allowed anonymous comments) and that the ‘other’ option (used to just enter your...
Following the changes in the Blogger/Blogspot Commenting Section (see previous posts) I have created a new OpenID on my own name and registered my blogs to it. As a Blogger/Blogspot user I can now use any of my blogs urls as an OpenID, resulting in...
Many thanks for the full description about OpenID, I have made one account and I have try it to my blogger blog, but I must change the “ sign in your code:
<link rel="openid.server” href="http://www.myopenid.com/server" />
to this ‘ sign to become:
<link rel='openid.server’ href='http://www.myopenid.com/server' />
so I could save my blogger template without Error message.
Once, when I was a naive lad of 37, I allowed anyone to comment on this blog. After a particularly heinous spam attack, I began restricting comments to registered Blogger members. This always bugged me, because not everyone has a Blogger account. I...
블로거에서 오픈아이디 댓글을 지원 하면서 Blogger Spheres에는 오픈아이디에 대한 관심이 높아졌다. 심지어 Blogger in Draft 가 New feature: OpenID commenting 글을 Update 하면서까지 OpenID Delegation 하는 방법 을 제시하고 있다. 오픈아이디로 블로거 글에 댓글을 다는 방법을 Using OpenID for Blogger Comments 에 잘 설명이 되어 있고, 블로그 주소를...
I don’t know a whole lot about the OpenId thing, but honestly, would you want to have your ID linked to your Blog always? As the web progresses I think that it wouldn’t be a smart move. What if for some reason your post is victim of a hacker attack and things that you didn’t say get related to your identity online? Anyways good post.
Thanks
Wow, really detailed information here, I have made one open id account and I have try with my blog, I hope it work to me with this new comment system. Many thanks Sam.
Blogger in Draft has updated their announcement about OpenID to include a link to a blog post that shows how to claim ones URL for an OpenID . It still means bloggers will have to jump through hoops, and many will not like being told to do so. Maybe...
stoneman on '143 Social Bookmarking Site - Promote Your Blog For Free'
Jungl, the Blogger comments system sucks, but you can actually set up an OpenID that points to your blog’s open ID. Here is one way, which I don’t claim to understand: [link] It could...
Blogger in Draft now lets you enable OpenID -based commenting, in your blogs' Settings | Comments tab: (OpenID comments work in both the Anyone and Registered Users modes) This means that users of OpenID-enabled services — such as LiveJournal and...
After just two short weeks of testing on Blogger in draft , OpenID commenting is now available for all Blogger blogs . This means that your friends and readers can leave authenticated comments on your blog using their blog URLs from OpenID-enabled...
I did the same as advised, I have this
<link rel="openid.server" href="http://www.myopenid.com/server" />
<link rel="openid.delegate" href="http://samruby.myopenid.com/" />
setup before the begin editable section in the template for my site [link]. But it is not working can you tell me where I am making it wrong.
Blogger OpenID support commenting for all blogs hosted. This means that if you have an OpenID setup, you can ensure that all comments by you on blogger blogs are genuine. No one can spoof you when commenting on a Blogger blog. This assumes two...
Open ID Commenting is available on all Blogger blogs if you have “Anyone” or “Registered Users” allowed in your comment settings. In the comments, an icon will appear indicating whether someone is commenting via Open ID. There’s a little Blogger B...
Two weeks ago, i was surprised to find that i can’t enter the url in the “other” option in the comment box. i too joined the band of bloggers who thought, google is trying to make it mandatory that users must register with blogger to comment! last...
So Blogger realized the error of their ways and fixed the problem where you needed a Blogger ID to link within a comment. On VDog’s site there’s a great email from Blogger admitting to the fact they eliminated the URL field...
A little bit ago with no warning Gerry pointed out that the ability for non-blogger users to sign in and direct readers to their blog information went away. Yesterday someone ( Contrary ? Chicky ? not sure and really need to walk the dog so not...
Sam Ruby’s article on implementing OpenID has been the de facto reference for those new to OpenID. If you have 10 minutes, you can follow his simple directions to get your site OpenID-enabled.
Google’s Blogger Now Allows Links to All Commenters
Google’s Blogger uses OpenID to Allow Links to All Commenters Recently Google has come under fire in the blogoshpere for disallowing links to commenter’s who have blogs outside of the Blogger platform. Now Google’s Blogger uses...
Over the last few weeks I had several e-mails about the possibilities (or NON-possibilities) of commenting here. Fact is, that the possibility of just entering your name and website is gone. I hate that fact. Personally I think it makes everything...
I promise I’m not a spammer! Due to Blogger’s new commenting with openID, I’d like to claim by website. I’m not sure about the code I’m supposed to enter. What would be the code for a Blogger blog?
Postado por Eric, traducido por Deborah y Alicia Después de apenas dos semanas de ponerlo en prueba en Blogger , los comentarios a través de Open ID están ahora disponibles para todos los blogs de Blogger. Esto significa que tus amigos y lectores...
Recently, blogspot or blogger has stopped allowing commentors to leave a URI in the signature portion of comments. This has been the source of great consternation among many bloggers across the web, and forums are full of hate and discontent over...
I took a few minutes last night to set up [link] as my OpenID identity, using Sam Ruby’s super-easy instructions *. I went the super-geeky route of setting up my own OpenID server, but his instructions could also be of service to you if...
Blogger has recently added support for posting comments by authenticating with OpenID . The integration is now live for all Blogger blogs and that means you no longer have to show your identity by using a Google account. You already have an OpenID...
Blogger has recently added support for posting comments by authenticating with OpenID . The integration is now live for all Blogger blogs and that means you no longer have to show your identity by using a Google account. You already have an OpenID...
Been trying to update myself with whatever’s been happening in the security space. There are two new specifications in the realm of authentication and access control that seem to have potential to create a huge impact : OpenID and OAuth. Unlike...
One thing I haven’t been able to find on the web is what to do if you lose your domain name after you claim it as your OpenID. My domain and hosting recently expired and now I am no longer able to log in to all the sites I signed up to using OpenID. I tried putting the identity URI instead (e.g. foo.myopenid.com) but it didn’t work. Any ideas?
Oh dear. I’ve just realised that your commenting system is publishing my email address. Can this be removed please so it doesn’t get harvested by spammers?
I recently experienced difficulty commenting at my Blogger friends blogs using my WordPress blog’s URL. Many of you had comments from me that basically said, “Please allow anonymous commenting on your blog again. It is only allowing...
A while ago, our friends at blogger.com started using OpenID for commenters without Google Accounts. This works fine if you have a wordpress, livejournal or typekey blog, but if like me, you have a self hosted blog, you will have to create an Open...
I’ve set up an open ID at a URL. Is it possible to change my mind at a later date and create a new openID and put up configure a delegation at the old openID url without losing sign-ins on sites where I’ve registered my then deprecated openId URI?
I’ve been wanting to implement an OpenID server for a long time now. After reading this article today about how people like Google, Facebook and Plaxo are getting on board, I figured it was time to go ahead and knock it off the project list....
I’m trying to use openID to set up my Identity on [link].eu, which is my id aggregator. I put up these two lines, which I believe are right, in the head section of my website.
But it doesn’t work at all. The verify utility tells me that kurai.eu fails, and I can’t use my address to login to opne ID enabled sites. What should I do to get it work?
Thank you!
This is my final post in a series on OpenId. Previous posts you can find here , here , here and here . This last post is about where OpenID is going to or might be going to, and related technologies/things that come to mind. Of course I can’t see in...
I’ve seen alot of jabber about OpenID the last couple of days so I thought I’d share this tidbit of info. If you are a blogger, you can claim your blog with your OpenID pretty easily. What this means is, for instance, you (a provider...
Come sapete da queste parti si subisce il fascino geek di quel volpone di Kevin Rose (e del suo conto in banca, siamo sinceri). Per questo, quando Kevin nelle sue previsioni ha detto: More sites will adopt OpenID, but only geeks will notice ho...
This page needs to be updated for OpenID 2.0, i.e. <link rel="openid2.provider" href="http:////myprovider.com/server" /> <link rel="openid2.local_id" href="http://john.myprovider.com/" />, and may need some updating with some of the latest on XRDS.
I spent way too much time getting an OpenID. Mostly because I like to know what I’m doing and to control things or do it my way. Not the easiest of processes doing it my way. But if that’s how you like to fly, then every thing can be...
OpenID: un sola sola chiave per (quasi) tutte le porte
Le righe che seguono vogliono essere una piccola introduzione “for dummies” alla tecnologia OpenID, capace di fornire un meccanismo di autenticazione universale per ogni sito web che voglia supportarne il protocollo. 0. Cosa è OpenID? Cito dalla...
Well I was reading up on how to easily set up OpenID on your blog or webpage via delegates . And I do happen to have an AOL ID lying around :) Considering that your AOL account can easily be your Open ID, I decided to set up www.vashisht.net as my...
Guild Rooms on the Overdressed Tour at [caedmonscall.net] (tags: gfmorris_comment) Through a Glass, Darkly » The heart of my soul does not need warming. (tags: gfmorris_comment) Small Donations, Loosely Justified | Workbench "That last possibility,...
Estou riscando um dos itens na minha longa lista de coisas a fazer. Finalmente adicionei OpenID ao meu blog. Instalei o WP-OpenID. Nada dramático nem complicado, muito pelo contrário, foi rápido, simples e indolor. O que me faz pensar no porque eu...
O OpenID é um sistema de autenticação descentralizado que elimina o uso de vários usernames/passwords. Com um único login o usuário pode utilizar qualquer serviço na WEB que suporte a autenticação via OpenID. Esse tipo de autenticação além da óbvia...
Sam Ruby: OpenID for non-SuperUsers (tags: blog how-to howto internet security weblogs wordpress openid identity tutorial) Good health and good fortune - why men find a leggy lady lovelier | the Daily Mail Given two women of the same height,...
Danny Ayers Raw: Semantic Web: DataPortability Service Discovery
A wordy post* I just sent to the DataPortability.Action.Technical list, on a subject I reckon could use a few more semwebbish eyeballs. I was very critical of the blueprint doc when it appeared, not least because it come out of the blue without any...
In mijn vorige post had ik het over OpenID, de technologie die het mogelijk maakt met één identiteit te registreren en in te loggen op websites. Zo’n identiteit moet je aanvragen bij een OpenID Provider. De unieke ID die je uitgegeven krijgt...
Today Yahoo launched support for OpenID. On the surface this seems great for OpenID. Unfortunately there are a number of problems with it. For those unfamiliar with OpenID, it is a single sign-on system, which allows users to remember a single...
After just two short weeks of testing on Blogger in draft , OpenID commenting is now available for all Blogger blogs . This means that your friends and readers can leave authenticated comments on your blog using their blog URLs from OpenID-enabled...
I’m going to start out with some background information for OpenID before I delve into it. This is more or less for those that are as technologically challenged as I am. OpenID is a free program that anyone can sign up for. It creates one user...
OpenID es un servicio de identificación descentralizado, es decir, un sistema que elimina la necesidad de múltiples nombres de usuario en diferentes sitios web, simplificando la experiencia online. La identificación con OpenID sólo requiere una URL...
As I have been spending all day investigating all the different ways of securing a Web API (oAuth mainly) and all kind of user authentications (WSSE, AuthSub, OpenID), I decided to try out openID (especially since Yahoo announced their support and...
So what about Yahoo’s OpenID? They provide me with an OpenID identifier but nothing else. Trying to use the method mentioned at the beginning of this post (and copied below), I am assuming would replace the openid.delegate URL withthe OpenID identifier URL provided by Yahoo. Well that sounds fine but what about the OpenID delegate (the server). Yahoo does not provide additional information to help with using a remote delegate. I’ve tried yahoo.com and yahoo.com/server and neither works. Has anybody else been able to use Yahoo but with your own domain?
I’ve a question about open id. Open id seems to be really useful and helpful for identification . But, how about automatic identification ?
if I log in a website with classical informations, a cookie can be create and use to reconnect me automatically.
If I use open id ? What happens ? Can I be reconnected automatically too ? Can I be reconnected automatically on all the website that accept my open id identification ?
Thanks
With OpenID, you log into your website, and then the website you want to use verifies that that login was done. The way you log into your website can use cookies. The verification is automatic.
Did you ever get sick of making up a user name and password to each and every one of those websites where you have to have user names and passwords? A lot of folks try to simplify by using the same id and pass on every site, but that’s dangerous,...
After just two short weeks of testing on Blogger in draft, OpenID commenting is now available for all Blogger blogs. This means that your friends and readers can leave authenticated comments on your blog using their blog URLs from OpenID-enabled...
Bon vu que l’identité numérique va être un thème central de ce blog, la première chose à faire était d’activer l’authentification OpenID! C’est chose faite! Vous pouvez maintenant utiliser votre identifiant OpenID pour poster...
OpenID has been in the news lately. Having decided to get myself one, I discovered I already had ready access to two: Technorati Yahoo (I had to ask them to create it) However, one of the points of OpenID is that no central servers are needed, and I...
I’m now using the WP-OpenID plugin to allow you to post comments to my blog using your OpenIDs. There are still a few things I don’t like about this plugin, but it is far better than it was a year ago. It certainly seems stable enough...
I originally heard about OpenID around 6-8 months ago or so and immediately went to myopenid.com to secure my domain. After signing up and being anxious to try out the new “single-sign on process” I perused the list of sites that use the OpenID...
OK, so that didn’t work... Testing another (hopefully) OpenID-enabled domain of mine...
Hope you don’t mind my using your comments for this - it seems from the other comments here that you don’t!
Yadis est un protocole ouvert qui permet à une application de connaitre facilement quels sont les identifiants d’authentification ( OpenID , ou autres XRI s) associés à un URI . Sam Ruby en fait un bon résumé dans un de ses billets. Un fichier...
I originally heard about OpenID around 6-8 months ago or so and immediately went to myopenid.com to secure my domain. After signing up and being anxious to try out the new “single-sign on process” I perused the list of sites that use the...
I’ve recently begun to look into OpenID and like what I’ve seen so far…the idea that I control my identity and can choose who I want to provide the service appeals to me. When I first began evaluating OpenID, I found out that I...
OpenID + PayPal Sicherheits Schlüssel = Sicheres Internet
PayPal bietet einen Verisign Sicherheits Schlüssel an, das hat mich neugierig gemacht und ich habe mich gerade mal damit befasst. Das ganze Basiert auf OpenID bei dem schon ein paar Unternehmen mitspielen, unter anderem Google, IBM, Microsoft,...
Интернетные штучки » Соблюдение лицензии Creative Commons при постинге фотографий из Flickr в WordPress блог Плагин Photo Dropper Wordpress производит поиск интересующей вас фотографии по сервису Flickr и постит ее подобающим образом в ваш блог....
.......The good news is that it is easy. You don’t need any of these libraries. Simply download phpMyID. Place the one php file in on your web server and modify two lines:......
Place the one php file — where? In on? isn’t there something missing, such as a directory name?
Holy Crap. That worked. Wow. I’ve just had my ah-ha moment with OpenID and I’m really happy that it turns out that I can use my own domain as an OpenID while delegating the bits and bobs off to some other server. Thanks Sam for the pointers (even though this is over a year old). As always, you help pave the way for the rest of us to follow.
As you might be able to tell from the sidebar, Something Emporium is now OpenID enabled. This was one of the more interesting web standards I’ve used on the site. The standard itself is very complicated, consisting of a mish-mash of further...
Drupal 6 now includes support for OpenID logins so I’ve been having a nosy.. My understanding at the moment is that you need to either setup your own OpenID server or use someone elses who is willing to vouch for you. I’ve signed up with...
Drupal 6 now includes support for OpenID logins so I’ve been having a nosy.. My understanding at the moment is that you need to either setup your own OpenID server or use someone elses who is willing to vouch for you. I’ve signed up with...
The identity story on the web has long been a messy one. Lots of people have been working on this problem for a while, however, and trying to make the story less messy and it seems that OpenID is emerging......
No começo do ano algumas grande empresas mostraram confiança no OpenID, adotando-o. Nomes como Google, Yahoo e Wordpress fazem parte do grupo de grandes empresas que suportam o padrão, mas nem tudo são flores. Pelo que entendi, você pode usar o seu...
Ne avrete già sentito parlare. Su web, al bar, in riunione, al circolo (soprattutto, al circolo). Iniziamo con le definizioni . OpenID is a single sign-on system, which allows internet users to log on to many different web sites using a single...
I read about OpenID a while ago, and decided now I have a blog, I should get myself an ID to let me log in to the various sites that support it. I assumed there would be a WordPress plugin that let me do this, and I quickly found and installed...
I noticed that Yahoo recently started offering OpenID authentication as part of a Yahoo account, this means you can now use your Yahoo Id or Flickr account to authenticate for comments on this blog. Of course I had to install the wordpress openid...
I did the Beer and Blog tonight on how to OpenID enable your blog. Thanks to Justin Kistner for inviting me and thanks to everybody for showing up to hear me talk about OpenID (again and again and again) … ha! The gist of tonight was to show...
Yesterday I upgraded my version of Wordpress from 2.3 up to 2.5. That was not really me, but my great hosting service that provided the one-click upgrade. So they, DreamHost, did all the hard work. Part of the upgrade helped me recognize that some...
Her er mine links fra den 3. april: How to organize a WordCamp - Part 1 - Første del WP-Yadis « WordPress Plugins - WordPress-plugin, der hjælper dig til at as-if-bruge din egen blog som OpenID-provider OpenID for...
Like most people, I find having to maintain user names and passwords for dozens, if not hundreds, of different websites a tad tedious. I also suffer the hassle of having one of the commonest-names on the planet. No website ever has davidjones, or...
You can sign up with any of the providers for OpenID URL. URL will be hosted on the provider’s domain (for example yourid.myopenid.com). It can be an issue, if you are not happy with your provider or if your provider goes down and you want to...
For a while now I’ve been hearing about OpenID and have liked what i’ve heard, without being 100% sure of what it is or how it works. Sam Ruby has a good article on OpenID, and how to set it up. Well worth a read. If only more developers...
I just spent 30 minutes buying plane tickets on a well-known travel website. Selecting the right tickets took less than 2 minutes. Logging in and making the actual purchase took the other 28. This included, among other things, trying the 43...
Δεν θα το παίξω ειδικός. Κι εγώ είχα μπερδευτεί και βαριόμουνα να διαβάσω. Ξαφνικά όμως έφαγα μια φρίκη και αποφάσισα να ασχοληθώ. Θα εξηγήσω όσο πιο απλά μπορώ τι κατάλαβα και σε τι έχω ακόμα απορίες. Το OpenID είναι μια ενιαία διαδικτυακή...
לפני כחצי שנה כתבתי לעצמי אימייל TODO, שכותרתו: openid. openid הוא פרוטוקול מבוזר לזהות מקוונת, או במילים אחרות: דרך לשמור את הזהות שלהם בשרת אחד, ולא ב950 אלף. עם openid, הזהות שלהם היא url, שמאפשר זיהוי נוח שלכם בשרת לבחירתכם, בלי למסור את הסיסמא...
OpenID for non-SuperUsers, though that probably should be subtitled “who have a bit of techy knowledge”. Handy guide to using your own domain for OpenID rather than a hosted service. via How do I get an OpenID? on openid.net....
How to Be Your Own OpenID Provider and Use Your blog’s URL for Identification
If you have a self-hosted blog, meaning that you have the access to the files on the server, then implementing OpenID might be the greatest way to help your readers and yourself. If you haven’t heard about the OpenID before, then in a...
Many websites start to accept OpenID account, so it really starts making sence to create yourself an OpenID account, for example at myopenid.com . I did, so I now have [link] as my OpenID account. However, when you do that, and...
I’m a big fan of OpenID , and Data Portability in general. I like being able to use my LiveJournal account to post on other sites. It’s convenient. I’d like to be able to use my personal home page to control my online identity, though. Thankfully,...
OpenID là một cách tự do và dễ dàng để sử dụng một căn cước số đơn ngang qua Internet. Với một OpenID bạn có thể đăng nhập tới mọi websites ưa thích của bạn và quên về công việc giấy tờ trực tuyến! OpenID là gì? OpenID loại trừ nhu cầu cho nhiều tài...
Blogger.com je od minulého týždňa OpenID identity provider. Čo to znamená? Podľa tohoto krátkeho návodu môžete začat používať svoju *.blogspot.com doménu ako svoju OpenID identitu. Tradičný spôsob prihlasovania OpenID mení tradičný spôsob...
As a Twitter user I am interested in the quest for stability. It was the discussion around dealing with scalability that led me to Eran Hammer-Lahav’s thoughtfully considered postings on building a scalable micro-blogging platform This is even...
OpenID é una parola che recentemente compare molto spesso in internet, ma cosa é? OpenID é un sistema per l' univocità dell' identità digitale, ma che significa davvero? Innanzitutto capiamo cosa si intende per Identità Digitale: é una serie di...
O que é um OpenID? É um sistema de identificação desenvolvido por Brad Fitzpatrick do LiveJournal. Se trata de uma rede distribuída na qual a identidade de um usuário é dada por uma URL ou XRI que pode ser verificada por qualquer servidor...
There’s a lot of buzz surrounding OpenID at the moment, and there’s good reason for it too. The idea of one single login for all your Internet services has been the holy grail of online authentication for years. OpenID differs from...
Nguồn: OpenID Dịch sang Tiếng Việt bởi BÙI ANH TUẤN Bản quyền thuộc về NGASON.INFO OpenID là một cách tự do và dễ dàng để sử dụng một căn cước số đơn ngang qua Internet. Với một OpenID bạn có thể đăng nhập tới mọi websites ưa thích của bạn và quên...
I’m rather jazzed to make my first post from an untrusted public terminal without any fear. I’m using OpenID[?] with a VASCO[?] Digipass[?] security token key fob[?]. You can pick up one of these key fobs for US$5 at Paypal. Then you can...
To understand openID, you only need to consider the number of Internet accounts you currently maintain. Maybe you have one email account in Yahoo or Google, another account in Flickr for your photos, an account in YouTube for videos, another one in...
Selected links related to Semantic Web technologies for the week ending 2008-06-23, all weeks . Also available in RDF as linked data or via GRDDL . Only a minimal offering this week, a tiny fraction of the things that have been happening recently,...
I was thinking of writing a follow-up to my last openID post, but now I don’t need to, as Sam Ruby has already done a far better job! he presents a simple-to-follow set of steps that you can use to set up your openID in whatever way you need....
Seven Reasons to Move to Linux Maybe it’s time, then, to take another look at Linux on the desktop and/or the server side. We’ll look at the seven areas you need to consider. (tags: lnux corporate) Screenshots: Screen-by-Screen Guide to...
That’s not strictly Python At the opening day of PyCon UK 2007 Simon Willison delivered a keynote presentation entitled “Building the Social Web with OpenID”. Willison is an assured and expert presenter, and it took him just an...
That’s not strictly Python At the opening day of PyCon UK 2007 Simon Willison delivered a keynote presentation entitled “Building the Social Web with OpenID”. Willison is an assured and expert presenter, and it took him just an hour to work through...
I have successfully enabled picklewagon.com as a delegate for my OpenID. This has been something I have been wanting to do for a while. It was a lot easier than I thought it would be. What is OpenID? OpenID.net says it best: OpenID eliminates the...
Selected links related to Semantic Web technologies for the week ending 2008-06-23, all weeks. Also available in RDF as linked data or via GRDDL (this might not be fully functional right now, we just migrated to WordPress and it may be that not...
oeconomist on "Fine, I'm an idiot. How does OpenID work?"
Matt, this plugin is supposed to get a WordPress 'blog to accept , rather than to provide OpenIDs. Visit OpenID.net to learn how to get an OpenID, and look at InterWingly.net for instructions on how to roll-your-own if you have your own domain....
After reading about it in this cool blog, I’ve enabled OpenID on The AFC. This means that anyone with an OpenID can now comment using their OpenID url. Amazingly, that means anyone from: Blogspot - blogname.blogspot.com Flickr -...
Henri - there are plenty of standalone servers, as well as plenty of libraries in various languages that you can use to integrate with your server; and the libraries I’ve looked at contain examples. I doubt you will have any problems.
I’ve seen alot of jabber about OpenID the last couple of days so I thought I’d share this tidbit of info. If you are a blogger, you can claim your blog with your OpenID pretty easily. What this means is, for instance, you (a provider...
OpenID support continues to spread throughout the Web ecosystem and new names are added to the list of sites that support OpenID all the time. Since the release of OpenID 2.0 , which includes better security features, OpenID has gained major...
OpenID support continues to spread throughout the Web ecosystem and new names are added to the list of sites that support OpenID all the time. Since the release of OpenID 2.0, which includes better security features, OpenID has gained major traction...
A friend of mine has a blogspot blog that does not allow anonymous comments. I was curious what that little OpenID option was (I know I’m just so far behind the times!) so I looked into it and ended up reading this explanation by Sam Ruby . Note...
Protams, OpenID vairs nav nekāds jaunums un arī Latvijas interneta ārēs ir pieejamas lapas ar šādu funkcionalitāti (pašlaik tā uz ātru roku izdevās atrast - nekur.lv , www.zemjumta.lv ), bet, tomēr šādas tādas pārdomas arī man ir sakrājušās. Kāpēc...
Vous avez un open id mais l’url qui vous es fournie ne vous convient pas. Vous êtes dans le même cas que moi. Et si vous avez un domaine une solution toute simple existe. Rajouter ces lignes à dans le head de l’index de votre domaine....
OpenID is your universal login name which server as single sign on (SSO) to authenticate yourself on other blogs and websites, without ever filling out those registration forms again. It is simply a URL that can be used to sign in to any website...
Mostly it seems that questions to 'Net help fora result in some combination of eerie silences and advice such as “did U try googling?” I’ll try to be more helpful than that. mu-open-id was designed to be used with the multi-user version...
OpenID: una buena solución para acceder a todos los servicios con un único usuario
OpenID es una solución que permite definirnos un usario (con su contraseña) para poder logearnos en todas las páginas y servicios web que queramos (siempre y cuando estos usen esta tecnologia). Estos sitios que soporten OpenID, no requieren que los...
Answer by Konrad Rudolph for How do you set up an OpenID provider (server) in Ubuntu?
I’ve actually done this (set up my own server using phpMyID). It’s very easy and works quite well. One thing that annoys me to no end is the use of HTML redirects instead of HTTP. I changed that manually, based on some information gotten in the...
Use OpenId in your WordPress blog for comments and your identity
The web has evolved into this amazing place filled with user-created content, blogs, wikis, photo sharing sites, and users can enter comments on just about all of them. But there’s a problem - commenting in Blogger, Flickr, and some random...
Blogger in Draft now lets you enable OpenID -based commenting, in your blogs' Settings | Comments tab: (OpenID comments work in both the Anyone and Registered Users modes) This means that users of OpenID-enabled services — such as LiveJournal and...
Hi Sam Ruby, thank you for this great instruction. I not only get myself an open ID but also an openID server at http://id.apmart.com too. That shall be good for someday I can have a collection of users using my own openid sub domain for their identification.
I hope this comment works.
Oh I read your spam policy and I’m really scared. What type of comment is spammed? Is it something like "just testing"? Please email me if you answer my question.
Two days ago I was so happy to find what OpenID is, and with the help of Sam Ruby’s phpMyID script I was able to get my own single user OpenID provider. The next question is: What happens if my server is down when I want to access a resource that requires my OpenID? It seems I’ll not be able to use it.
I think YADIS can be of some help if the yadis.xrdf will be available at a third-party server: “YADIS defines a simple format for declaring multiple identities, potentially using multiple different protocols.”. I said ok, that’s good, if one identity can’t be checked, the second one can be used. It reminds me about loadbalancing and DNS nameservers. But it generates the next question: how SiteXYZ.com should treat two identities? where can I specify that two identities X and Y are aliases for the main Z identity.
After some readings about OpenID, I found ([link]) that there are many security, privacy, trust, usability and other problems. So now I’m scratching my head and think: should I really use OpenID? ... I think yes, but not for private things.
In the idcorner.org link above, I saw this: “Your identity provider is able to track all websites you log into. They even tell you it’s a feature. User profiling made easy!”. Ouch! Now I understand how important phpMyID is: nobody will be able to track your activities :)
У меня сабж :-) Нашел наконец-то время разобраться с openid , как и предполагал ничего особо сложного нет. Все делал по этим статьям: OpenID for non-SuperUsers OpenID delegation under Django and lighttpd Теперь бы еще запустить свой openid сервер...
Open ID: ←Older revision Revision as of 17:03, 28 October 2008 Line 28: Line 28: Your OpenID URL is an identifier you can use to log in to sites which support OpenID. Your CC Network Open ID URL is the same as your profile URL. For example, if your...
Answer by Steve Tranby for PHP Tutorial for OpenId and OAuth
This is a complex solution which is why it’s not easy to make simple. oAuth is not OpenID is a good post on some of the specifics of each. It might help to look at tutorials for any language, and figure out how to port it to PHP. oAuth is sort of...
OpenID is sweeping the web. With announcements by Microsoft and Google recently to support the OpenID Framework, things have effectively gotten huge! One of the things I’ve been wondering about is WCF Security and how one could integrate with...
paganda on "OpenId Could not discover an OpenID identity server endpoint"
I’ve been trying to figure out how to use openid and it’s so confusing. I just don’t know enough to understand all the terminology. I went to this site but came away with more questions than answers:...
saperduper posted an entry on Όσο ζω, μαθαίνω OpenID με το domain σου σε 2 βήματα 12 hours ago - Comment - Like endiaferon liked this Sam Ruby didn’t say anything about X-XRDS-Location meta tag, so I’m only using the two link tags:...
Publicado por Eric, traducido por Deborah y Alicia Después de apenas dos semanas de ponerlo en prueba en Blogger , los comentarios a través de Open ID están ahora disponibles para todos los blogs de Blogger. Esto significa que tus amigos y lectores...
clipped from www.intertwingly.net OpenID for non-SuperUsers Claim Your Blog If you have an OpenID identity and a blog, then follow these instructions. If you don’t have an OpenID identity, you can get one for free at MyOpenID . Here’s mine ....
[link] Bài viết này cũng làm mình phân vân: có nên sử dụng OpenID hay không ? Tại thời điểm này, mình trả lời là không, nhất là đối với người làm bảo mật, không nên sử dụng OpenID...
I found a very interesting post by Sam Ruby called OpenID for non-SuperUsers that describes how to use OpenID delegation so that one can use her or his own Blog URI as an OpenID identifier....
Xoder: Not that it helps now, but if you’ve got your own website, even a plain old HTML one without any server side scripting, you can use that as your OpenID but delegate the actual mechanics to LJ, say. Sam Ruby discusses this (in the first part,...
As I have been spending all day investigating all the different ways of securing a Web API (oAuth mainly) and all kind of user authentications (WSSE, AuthSub, OpenID), I decided to try out OpenID (especially since Yahoo announced their support and...
Dear fandom: Please to hold back on the panic. Did you know that there are still people who have their primary fannish internet interaction on Usenet ? (For the unfamiliar: Usenet is a bit like an old-fashioned Bulletin Board and a bit like an...
I enable openid for my blog by finding and adding the necessary wordpress plugins. With this, users can log in to a my blog or leave comments and the other one will allow you to sign in to various OpenID supported sites using your blog URL.
I spent nearly two hours trying to get the OpenID I supposedly have via my Technorati account to allow me to post a comment on a BlogSpot (aka Blogger) blog, and I just couldn’t get it to work. I looked around the web and it seems the word on...
Modules can help solve a wide range of problems in a web site that uses Joomla, but many Joomla site designers do not really know how to fully utilize modules. Eight months ago when I began designing the CyberSym Blogs site, I had some definite...
Is there an article in plain English for me and others not too technically informed? I’m getting about 1/3 of what this post mentions--about what I grasp from a typical Scientific American article.
Does OpenID help you remain anonymous with posts to other sites, or across blogs?
Wt, C++ Web Toolkit - Introduction # Web-based GUIs for web-enabled embedded systems benefit from the low footprint of a C++ web application server. # Web-based GUIs that require integration with (existing) C++ libraries, for example for scientific...
“All told: I signed up for one free service, installed and tailored one PHP script, added one line to my weblog template, created one simple XML file and added a total of four lines to my .htaccess files.”
Indeed very simple...but I suppose the average user will rather ‘claim’ their FaceBook identities through FaceBook Connect...and OpenID will remain geekness territory...Hmmm...
It’s so easy to set up, I can’t believe I haven’t done it before. All you need is an openid account (like www.myopenid.com , which they seem to like), and a static HTML page. You don’t really need the static HTML page, but it allows you to switch...
RDFa’s use of @rel does not conflict: ←Older revision Revision as of 19:44, 5 March 2009 (13 intermediate revisions not shown.) Line 1: Line 1: - Mark Nottingham brought up an issue with the W3C TAG regarding XHTML1.1+RDFa interpreting the @rel...
Hey there. Nice post but I’m having problems getting this to work with myopenid.com. I created an account as you said and in my wordpress theme’s header.php file I inputted the following just before the </head> tag:
I like the OpenID idea but I think that OpenID is now a little bit weak and the people don’t understand it. I believe that OpenID is a good solution if it is alone in the comment form.
So, first stage of the move to Dreamwidth is complete. Stage 1: I did that mass defriending (which still left me with approximately 12 zillion people and communities friended.) Stage 2: I’ve made a list of people to give invite codes. Stage 3: I’ve...
Super Simple Guide to OpenID (Modulo GeekFactor) : I hate registering for a web site account. Hate hate hate. Red-hot-fire-of-a-thousand-suns-style hate. So, when I came across Sam’s post, I jumped all over it. I’ve owned my own domain for years....
LiveJournal for people who don't have a LiveJournal
Recently - not very recently because I’ve not written a thing worth reading in over a week - I’ve become aware of the number of readers at innerbrat that are coming from outside the LiveJournal community - by which I mean people who have...
I discovered — after I’d set up OpenID delegation (using the Drupal OpenID URL module and Sam Ruby’s instructions ) — that each OpenID used with a Drupal site needs to be associated with a Drupal account. Therefore, even though OpenID delegation...
I’m looking into OpenID. I needed to update this blog to test it. So this post is rather short on the usual drama and gossip to which I have allowed you to become accustomed. For that, I am steeped in regret. I am grateful that your forgiveness...
Meine delicious.com-Links vom 28. April bis zum 30. April: OpenID for non-SuperUsers - 10 Papers Every Programmer Should Read (At Least Twice) - Most are easy to read but some are rough going – they drop off into math after the first few...
OpenID est un système d' authentification unique (SSO ou Single Sign On en anglais) et décentralisé. Le système permet donc à un utilisateur d’utiliser son compte OpenID dans différentes applications web (sous réserve qu’elles intègrent cette...
Diese Links sind hauptsächlich für mich. Wer sie trotzdem interessant findet, darf sie gerne behalten: Microformats POSHformats.org - Möchtegern-Microformats (oder eben gerade nicht) Get started with Microformats - es ist ganz einfach! Plain Old...
Answer by Konrad Rudolph for How do you set up an OpenID provider (server) in Ubuntu?
I’ve actually done this (set up my own server using phpMyID). It’s very easy and works quite well. One thing that annoys me to no end is the use of HTML redirects instead of HTTP. I changed that manually, based on some information gotten in the...
Answer by Steve T. for PHP Tutorial for OpenId and OAuth
This is a complex solution which is why it’s not easy to make simple. oAuth is not OpenID is a good post on some of the specifics of each. It might help to look at tutorials for any language, and figure out how to port it to PHP. oAuth is sort of...
I like OpenID and have wanted to use it in my day-to-day internet usage. Up until recently I was attempting to use my @gmail.com account but now I have something even better. The @gmail.com account was OK, but Google’s choice of login URI is...
Finally gotten around to set up my OpenID another great example of real simple technology just a couple of link tags on a page you can control (a web page, a blog) an Openid provider (server) like myopenid.com can communicate with the...
I know it’s silly, but here is my entire list of bookmarks as collected via Firefox and sorted/pruned in Textmate. As it turns out, it appears that I am a web designer, based on what appears to be the overwhelmingly predominant collection of...
I recently registered myself to a site which asked me for my ‘open Id’ while registration. A number of sites are nowadays following this concept of ‘OpenId’,which for sure reduces the hassle of keeping track of various accounts made online. It is...
I’ve been using OpenID for a while now but I’ve only just realised how easy it is to integrate with a Wordpress Blog. If you do this then you can use your own domain to identify yourself. Now what could be easier than that? The Basics...
Seeing that I’ve spent countless hours setting up my Drupal installation, I thought that I would share this with others and document it for future reference. Drupal is an extremely powerful CMS which can be used to create a wide variety of sites....
To understand openID, you only need to consider the number of Internet accounts you currently maintain. Maybe you have one email account in Yahoo or Google, another account in Flickr for your photos, an account in YouTube for videos, another one in...
Answer by mpbloch for What personal information does an OpenID provider make available to the consumer?
If you want to drop open ID from GMail, you should look into setting up an openID delegate on your blog or some other HTML URL you control. Also, whenever I sign up for a new site using my OpenID, I get the -option- of transferring my stored fields...
OpenID1 ist ein dezentrales Single SignOn Verfahren das helfen will, die Legion der User/Passwort-Kombinationen zu reduzieren. Die Idee ist, dass man sich einmal eine OpenID besorgt und sich dann mit dieser bei vielen Sites anmelden kann. Dazu wird...
Logging into websites have always been a pain if you want to stay somewhat secure. One could either use the same username and password everywhere or choose from a few remembered passwords. The next best thing is to use some kind of password manager,...
thx alot for this tutorial! i turned my blog page into an openid. the other steps seem a little bit more difficult, so i will leave them for another time. i noticed that this link — [link] doesn’t work, it gives me 503 error. is there another test service you can recommend?
i copied and pasted the 2 uri’s into my header.php file and adjusted the second one for my own openid account (that i just opened) but it doesn’t seem to be working.
i tried to leave a comment on my old blogger blog using my new blog as my openid but it didn’t work, i get this error: “your open id credentials could not be verified.”
i’m not sure what i’m doing wrong. i use wordpress though i host the blog myself. if you could clarify that would be great, thanks in advance!
sorry for the second comment - i see that the link to my blog (in my first comment) is working on this site but not on blogger - i was able to publish my test comment on blogger but when i click on my name it goes to my openid page, not my blog which i don’t like.
Sam Ruby: OpenID for non-SuperUsers Great article on getting going with Open ID (tags: openid identity privacy) URL Rewrites and 301 Redirects - How Does It All Work? (tags: seo) How to Move Your Home Folder to Another Drive [Mac Tip] (tags: mac)...
What is an OpenID OpenID is an URL OpenID eliminates the need for multiple usernames across different websites, simplifying your online experience. It means OpenID is an open, decentralized standard for user authentication and access control,...
AFAIU not using ssl/tls allows for a wide variety of attacks where you or your server could be talking to another server/openid provider so attacker gets access or gathers information allowing him to login as you.
We recently looked at how to create your own intranet application using the 37signals products. The first step was to get yourself an OpenID. I touched on what OpenID is — a way to use the same credentials to log in to multiple services on the web....
Просматривая френдленту своего зеркала в ЖЖ (ктати, рекомендую подписаться на нее тоже , я туда пишу почти каждый день с краткими заметками, тогда как здесь обычно идет длинный пост не чаще раза в неделю), обратил внимание на интересный вид...
Answer by GAThrawn for Set up my openID to use mydomain.com
Presuming that you already have some kind of website at mydomain.com or macha.mydomain.com then you can use OpenID Delegeation to use any normal web page as your OpenID identity by just adding a couple of HTML tags to the head section of the page,...
Dimitar, I was able to use this page to carry my OpenID tests using a phpMyID instalation. However, the only way I managed it to work was by making openid.server, openid.delegate and idp_url have the exact same value.
There’s lots of ways to do this. Listed in order of preference: microid whois (check email address and/or name) OpenID w/ delegation DNS TXT (or CNAME if you must) Insert HTML comment into main page I would recommend implementing some combination...
In this post I speculate about the implications of having a social graph outside of specific social networks, creating your digital self, and setting up your blog as an OpenID....
Nebylo by to úžasné, kdybychom měli v reálném životě jen jeden klíč od všech dveřích? Jeden klíč co by nás pustil domů, jeden co by nastartoval auto a ten stejný k našemu sejfu v bance? Bohužel, je toto hudba budoucnosti alespoň co se reálného světa...
TextCube uses OpenID so I finally decided to roll out my own identity system with the help of phpMyID and this nice great tutorial from Sam Ruby. Till now the only “problem” that I find in OpenID is the lack of an explicit logout. You log in...
to explain a bit more see: [link] and what i want to do is kind of username.domain.com with the stuff to forward to www.domain.com/identity/username so you can use username.domain.com...
Excerpt from
at
I recently registered myself to a site which asked me for my ‘open Id’ while registration. A number of sites are nowadays following this concept of ‘OpenId’,which for sure reduces the hassle of keeping track of various accounts made online.
I’ve only just realised how easy it is to integrate with a Wordpress Blog. If you do this then you can use your own domain to identify yourself. Now what could be easier than that?
Hi,
i am investigating Yahoo OpenID.bt am failing to get the exact methods ie of the form openid.server,openid.delegate,etc... invoked by a third party while authenicating for a website using yahoo uri.At the same time i am also interested in the response that yahoo provides and in what form.
I found a DTD for Google authentication.The following is just a part that includes its response:
OpenID is really interesting. I will not explain in details what it is about because openid.net or wikipedia will probably do that better than me. Basically, it’s a try to get an unique way to log on various websites. For example, with OpenID, you...
Blogger.com je od minulého týždňa OpenID identity provider. Čo to znamená? Podľa tohoto krátkeho návodu môžete začat používať svoju *.blogspot.com doménu ako svoju OpenID identitu. Tradičný spôsob prihlasovania OpenID mení tradičný spôsob...
Interesting artifacts found on May 9, 2010: Delicious: Sam Ruby: OpenID for non-SuperUsers I nice little tutorial on using your own personal site as the delegate for an OpenID....
I’m a happy new user of [link] . Registration was very simple The OpenID urls you get are nice (yourchoice.myopenid.com) It supports multiple personas, i.e. during the signon process, you can choose differents sets of personal...
I’m new to OpenID. I just created one, above, and tried it on SlashDot. It recognized it but said I had to log in to “attach” it to an account. What good is that?
If Sam is an expert and, based on all the corrections in the comments, claiming your blog with Open ID must be really hard to do.
Also I think it’s interesting that these comments have the posting time right down to the second but we can’t even tell what year is was. Very strange design choice.
I didn’t know what I was doing at first, but managed to muddle through it, and document what I did. At most, that makes me a bit of a trailblazer. It certainly doesn’t make me an expert.
we can’t even tell what year is was
The full date of the original post is at the top, just under the title. Comments are grouped into sections, each containing comments that were made on the same day. The date is included iin the header above each section.
Additionally, if you hover over the timestamp for an individual entry, you will see the full timestamp for that entry. That’s the design choice here: not to repeat the same information in each entry.
Minor bit of trivia: depending on your time zone, you might see different posts included in each section, depending on which day the comment was posted — relative to your time zone. The times themselves are also localized.
I was hung up for a while because, even though I followed the instructions precisely, my password wasn’t being accepted.
I looked at the README for phpMyID and discovered the problem. (I don’t know whether or not this applies to all versions of phpMyID.) Since my server runs PHP in safe mode, PHP adds a number to the end of the authentication realm, so the realm was “phpMyID-XXXXXX” instead of “phpMyID”.
The password is really supposed to be a md5 hash of ‘username:realm:password’, so I had to change it from ‘username:phpMyID:password’ to ‘username:phpMyID-XXXXXX:password’.
If anyone else uses PHP in safe mode, you’ll need to make that change. You can check the realm by going to your phpMyID page, where it lists the server. (See Sam’s original instructions where it says "Now visit the page you just updated in your browser.")
Two bits of newness. I’ve taken the plunge and moved to hosting my own WordPress blog. The LiveJournal import script crapped itself a few times (it reached 13,000 comment imports; I only have 212 comments), but I think I’ve gotten them all across....
In looking to try out yet another social service this weekend, I was presented with the following choices for login: I never liked the idea of letting one of the major brands own my web identity so I’ve always set up a new ID on every site...
I just completed, well mainly completed, the process of making this site verify my identity as an OpenID user, or something. It’s complicated and twists my brain up a bit, it’s explained here in detail. What it means is that those of you...
Can I ask when was the last time this was updated as it would seem some of the links and steps have changed within this tutorial. For example phpmyID is now v0.9. The check your setup does not seem to work. While I’d love to sign up to a Janrain engage I simply do not have the dollars to cover the required for the plans, yes the free one is there but it is very limited.
oeconomist on "Fine, I'm an idiot. How does OpenID work?"
Matt, this plugin is supposed to get a WordPress 'blog to accept , rather than to provide OpenIDs. Visit OpenID.net to learn how to get an OpenID, and look at InterWingly.net for instructions on how to roll-your-own if you have your own domain....
Whats the openid.org OpenID server endpoint? [updated]
Hi OpenID I’m trying to setup openid using mydomain and openid.org - as detailed in [link] but need to know the openid.org OpenID server endpoint can you please publish this details...
paganda on "OpenId Could not discover an OpenID identity server endpoint"
I’ve been trying to figure out how to use openid and it’s so confusing. I just don’t know enough to understand all the terminology. I went to this site but came away with more questions than answers:...
OpenID is simpler – and nicer – than I thought. Based on Sam Ruby’s notes, I registered [link] and then created my own OpenID at [link] that delegates to the myOpenID provider....
I’m following the instructions here: OpenID by Sam Ruby And everything seems to work fine up until I try to log in with my own username/pw. I get the “Missing expected authorization header” error. SO, first I try the solution the README file...
In looking to try out yet another social service this weekend, I was presented with the following choices for login: I never liked the idea of letting one of the major brands own my web identity so I’ve always set up a new ID on every site...
OpenID Support ist ja schön und gut, aber es wäre noch schöner wenn auch OpenID Delegation unterstützt würde. Hier noch ein Link der das Thema ein bisschen erläutert: [link]...
I’ve heard of Open IDs every once in a while poking around the internet. I’ve been meaning to “get” one for a bit now ’cause it just felt like something I should do … what’s an Open ID you may be asking? The...
Mostly it seems that questions to 'Net help fora result in some combination of eerie silences and advice such as “did U try googling?” I’ll try to be more helpful than that. mu-open-id was designed to be used with the multi-user version...
OpenID permet d’utiliser le même crédential pour s’authentifier sur des sites différents. Plus besoin de créer un compte sur chaque service en ligne que l’on souhaite utiliser. Autre avantage, OpenId fonctionne de manière...
Installing OpenID on my server turned out to be fairly painless. Just follow the instructions at OpenID-for-non-SuperUsers and you should be good to go in a few minutes....
Norman, sorry about the typo, it was actually right in the excerpt, but not in the first line of the whole entry, which is shown while it is current . I found strange that no news is good news is used as a criterion for ending a transaction, no...