Jon Warbrick wrote:
> ... and you (as a service operator) have to decide if you are willing to
> trust each user's chosen OpenID identity provider, something which in
> general you are not in a position to do.
Quite. Or you end up forcing them to use a particular OpenID Provider,
which kind of defeats the point of OpenID.
Fiona.
|