Comments on: A New Kind of OpenID Proxy

By: Will Norris

Will Norris — Thu, 02 Dec 2010 23:21:21 +0000

@fred: my contact information really isn’t that hard to find (hint: http://willnorris.com)

By: Fred Trotter

Fred Trotter — Thu, 02 Dec 2010 17:47:03 +0000

Will, would like to discuss this type of directed-identity proxy further... could you drop me an email?

-FT

By: Fred Trotter

Fred Trotter — Tue, 26 Jan 2010 19:47:21 +0000

It is so ironic that you are moving to the only company that I can find that is already using OpenID to do directed identity by default, exactly what I had hoped to enable for everyone else.

If I decide to do this it will be after you have had time to settle.... Ill let you know...

-FT

By: Will Norris

Will Norris — Tue, 26 Jan 2010 18:58:50 +0000

@Fred: well, given my new change in employment, I certainly can't commit to anything right now. I'll have to see once things settle down a bit.

By: Fred Trotter

Fred Trotter — Mon, 25 Jan 2010 17:42:40 +0000

I am wondering if I should build something like this and offer it as a service? I would much prefer for it to already exist... I wonder if you or Michael would like to do that?

I would like to build a client app that only supports either directed (like google or those generated from a proxy like this) or opaque (like Yahoos) identities. But I cannot build a client like that and say "only Google/Yahoo users can login" it kind of defeats the point of OpenID.. I would like to be able to insist that other OpenID providers be forwarded over to this directed id proxy so that I can ensure that any OpenID user can login, but that they are psuedonymous from my applications perspective...

What would be your interest level for such a project be? If you were interested what would be the timeframe?

It seems pretty trivial technically, but it would be have to be a pretty long term hosting commitment...

-FT

By: Will Norris

Will Norris — Thu, 21 Jan 2010 17:28:26 +0000

Michael and I (okay, well mostly Michael) wrote a really basic django app in an afternoon that does most of the proxy stuff. Nothing more has come of the idea since then, though I think it is still absolutely relevant.

By: Fred Trotter

Fred Trotter — Thu, 21 Jan 2010 17:17:27 +0000

This "salt-proxy" idea is great. Has it been built yet? No URL and post is more than six months old...

Any update?

-FT

By: Will Norris

Will Norris — Wed, 26 Aug 2009 16:32:47 +0000

@David: ideally the proxy would be run by an organization like the EFF or EPIC.

And this is not something you would use for every RP... follow the argument carefully. We're only talking about a situation where you must have a directed identity. Today, the only option is to use a large OpenID provider like Google. At least with the proxy solution, I'm able to use my own OpenID, plus no one can go back and track what sites I've logged into except for me.

By: David Collantes

David Collantes — Wed, 26 Aug 2009 13:09:58 +0000

Right…. so, who owns/controls the proxy? Back to a monolithic or semi-monolithic (ala Passport) solution? I pass.

By: Stephen Paul Weber

Stephen Paul Weber — Mon, 03 Aug 2009 21:06:03 +0000

Hence why chaining is a good idea :)