OpenID & OAuth for the Consumer Web Workshop, Part 1 of 3

OpenID & OAuth for the Consumer Web Chris Messina David Primmer Eric Sachs Ping Cloud Identity Summit Keystone, CO July 20, 2010

Agenda • The Value • The Technology • The Future • Breakouts

The Value

chris.messina@gmail.com ••••••••••

Why support third party auth? (Answers that relying parties should care about!) • Who do you want to be, in this context? • Who do you want to hang out with (in this context)? • How can we be instantly relevant and meet your needs with minimal eﬀort? • What kind of handles and scaﬀolding can we provide to make it easier to create social interaction? 22

Plaxo’s 92% Success Story

Spot the problem?

Second Brain

Evil Bad Brain

Plaxo’s 92% success story • specially-crafted email to Gmail users • Gmail users likely to have Google proﬁle & address book • one-click sign up and address book import • also requests name, veriﬁed email address

Plaxo’s 92% success story • Better for the user: higher success rate with no password anti- pattern • Better for the provider: Happy users and no automated data scraping • Better for the site: Higher conversion rate; more informed social graph

+ + Portable Contacts

Photo by Teresa Stanton

Unique OpenID Relying Parties As of July 1, 2009 50,000 40,000 30,000 20,000 10,000 0 5 06 06 06 6 07 07 07 7 08 08 08 8 09 09 /0 /0 /0 /0 1/ 4/ 7/ 1/ 4/ 7/ 1/ 4/ 7/ 1/ 7/ 10 10 10 Data from Janrain 10

1 Billion+ OpenIDs

Janrain

OpenID usage trends (Janrain) OpenID Providers on UserVoice 34% 33% 10% 15% 8% Google Facebook Yahoo! Other Twitter Data from Janrain, May 2010

OpenID usage trends (Janrain) OpenID Providers on Interscope Records 8% 12% 12% 52% 6% 10% Google Facebook Yahoo! Other Twitter MySpace Data from Janrain, May 2010

OpenID usage trends (Janrain) OpenID Providers on sulit.com.ph 10% 24% 1% 64% Google Facebook Yahoo! Other Chart from Janrain, January 2009

OpenID usage trends (Janrain) Sign in preferences across all properties 23.5% Google 38.8% Facebook Yahoo! Other (MySpace, Windows Live, AOL, etc) 13.0% Twitter 5.8% 18.9% Data from Janrain, May 2010

Third-party authentication usage trends (Gigya) Sign in preferences across all Gigya properties Source: Gigya, June 2010

Third-party authentication usage trends (Gigya) Sign in preferences across entertainment sites Source: Gigya, June 2010

Third-party authentication usage trends (Gigya) Sign in preferences across news sites Source: Gigya, June 2010

Third-party authentication usage trends (Gigya) Sign in preferences across B2B sites Source: Gigya, June 2010

Source: Echo, March 2010

What does this tell us? 54

What does this tell us? • People use diﬀerent identities for diﬀerent purposes 54

What does this tell us? • People use diﬀerent identities for diﬀerent purposes • Ultimately choice and competition is a good thing to foster in this early landscape 54

What does this tell us? • People use diﬀerent identities for diﬀerent purposes • Ultimately choice and competition is a good thing to foster in this early landscape • Digital identity is in its infancy; it’s too early to pick the winners 54

What does this tell us? Basecamp Lady Gaga

Totals Janrain OAuth 32% OpenID 48%+ Gigya OAuth 62% OpenID 38% Echo OAuth 35% OpenID 64%

It’s inevitable

conversion, convenience, costs

service

NASCAR

Photo by larry wfu

Photo by Vaguely Artistic

WebFinger

The Hammer Stack Discovery for the open web

How WebFinger works Enter email: Email Lookup

How WebFinger works Enter email: chris.messina@gmail.com Lookup

How WebFinger works Discovering a user’s WebFinger profile chris.messina@gmail.com

How WebFinger works Discovering a user’s WebFinger profile chris.messina@gmail.com { domain

How WebFinger works Use host meta to retrieve an LRDD document $curl http://gmail.com/.well-known/host-meta

How WebFinger works Server returns LRDD document <?xml version='1.0' encoding='UTF-8'?> <XRD xmlns='http://docs.oasis-open.org/ns/xri/xrd-1.0' xmlns:hm='http://host-meta.net/xrd/1.0'> <hm:Host xmlns='http://host-meta.net/xrd/1.0'>gmail.com</hm:Host> <Link rel='lrdd' template='http://www.google.com/s2/webfinger/?q={uri}'> <Title>Resource Descriptor</Title> </Link> </XRD>

How WebFinger works Plugin acct: into URI Template http://www.google.com/s2/webfinger/?q={uri}

How WebFinger works Plugin acct: into URI Template chris.messina@gmail.com http://www.google.com/s2/webfinger/?q={uri}

How WebFinger works Plugin acct: into URI Template acct:chris.messina@gmail.com http://www.google.com/s2/webfinger/?q={uri}

How WebFinger works Plugin acct: into URI Template http://www.google.com/s2/webfinger/?q={uri} acct:chris.messina@gmail.com

How WebFinger works Retrieve WebFinger document $curl http://www.google.com/s2/webfinger/?q=acct:chris.messina@gmail.com

How WebFinger works XRD Profile <?xml version='1.0'?> <XRD xmlns='http://docs.oasis-open.org/ns/xri/xrd-1.0'> <Subject>acct:chris.messina@gmail.com</Subject> <Alias>http://www.google.com/profiles/chris.messina</Alias> <Link rel='http://portablecontacts.net/spec/1.0' href='http://www-opensocial.googleusercontent.com/api/people/'/> <Link rel='http://webfinger.net/rel/profile-page' href='http://www.google.com/profiles/chris.messina' type='text/html'/> <Link rel='http://microformats.org/profile/hcard' href='http://www.google.com/profiles/chris.messina' type='text/html'/> <Link rel='http://gmpg.org/xfn/11' href='http://www.google.com/profiles/chris.messina' type='text/html'/> <Link rel='http://specs.openid.net/auth/2.0/provider' href='http://www.google.com/profiles/chris.messina'/> <Link rel='describedby' href='http://www.google.com/profiles/chris.messina' type='text/html'/> <Link rel='describedby' href='http://s2.googleusercontent.com/webfinger/?q=chris.messina%40gmail.com&fmt=foaf' type='application/rdf+xml'/> <Link rel='http://schemas.google.com/g/2010#updates-from' href='http://buzz.googleapis.com/feeds/102034052532213921839/public/posted' type='application/atom+xml'/> </XRD>

Putting it together Making OpenID easier using an email address Enter email: Email Connect Lookup

Putting it together Making OpenID easier using an email address Enter email: Email Connect

Putting it together Making OpenID easier using an email address Enter email: chris.messina@gmail.com Connect

Putting it together Making OpenID easier using an email address Signed in as: Chris Messina 

Connect

The anatomy of connect ...according to David Recordon 95 Source O’Reilly Radar.

The anatomy of connect ...according to David Recordon • Proﬁle (identity, accounts, proﬁles) 95 Source O’Reilly Radar.

The anatomy of connect ...according to David Recordon • Proﬁle (identity, accounts, proﬁles) • Relationships (followers, friends, contacts) 95 Source O’Reilly Radar.

The anatomy of connect ...according to David Recordon • Proﬁle (identity, accounts, proﬁles) • Relationships (followers, friends, contacts) • Content (posts, photos, videos, links) 95 Source O’Reilly Radar.

The anatomy of connect ...according to David Recordon • Proﬁle (identity, accounts, proﬁles) • Relationships (followers, friends, contacts) • Content (posts, photos, videos, links) • Activity (poked, bought, shared, blogged) 95 Source O’Reilly Radar.

The anatomy of connect ...according to David Recordon • Proﬁle (identity, accounts, proﬁles) • Relationships (followers, friends, contacts) • Content (posts, photos, videos, links) • Activity (poked, bought, shared, blogged) • Goal: Discovery of new people and content 95 Source O’Reilly Radar.

Connect

Agenda • The Value • The Technology • The Future • Breakouts

OpenID & OAuth for the Consumer Web Workshop, Part 1 of 3

by Chris Messina on Jul 20, 2010

Accessibility

Categories

Tags

Upload Details

Usage Rights

Statistics

OpenID & OAuth for the Consumer Web Workshop, Part 1 of 3 — Presentation Transcript