OpenID

G

Gordon.C

Member
I think I dont understand thoroughly the concept of OpenID.

The OpenID is a URL that you will be given and that you use for any logins instead of proper nickname and password right?

What happens if your URL is stolen? The one who stole it will be able to sign in under your OpenID? How is this handled really
For example if your OpenID is your full name its not that hard to guess it
 
The link with what can be your name, like http://markcross.openid.co.uk/ is only used on openid enabled websites.

To use it you have to log into your openid provider first using "username" and "password", so if someone steals your openid link they still cannot use it because it is tied to your "username" and "password".

For instance, I log in to openid provider as (a) and my name for enabled sites is (joe).
(Fred) has logged in to openid provider as (b) but tries to use (joe) on an enabled site. This site checks openid provider and says "but you are logged into me as (b) so you cannot use (a's joe) name.

Does that make sense :confused: :)
 
It does make sense... Basically you have to be signed into OpenID on your computer and than you can sign to any OpenID website using only the URL isnt it right
 
You must log in or register to reply here.
Back
Top