Your SlideShare is downloading. ×
2007 Barcelona Drupalcon: OpenID
Upcoming SlideShare
Loading in...5
×

Thanks for flagging this SlideShare!

Oops! An error has occurred.

×
Saving this for later? Get the SlideShare app to save on your phone or tablet. Read anywhere, anytime – even offline.
Text the download link to your phone
Standard text messaging rates apply

2007 Barcelona Drupalcon: OpenID

4,182
views

Published on

Published in: Technology, Business

0 Comments
2 Likes
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total Views
4,182
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
110
Comments
0
Likes
2
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide

Transcript

  • 1. supported in core...
  • 2. now what?
  • 3. questions?
  • 4. answers!
  • 5. explanation
  • 6. what is OpenID?
  • 7. “OpenID is an open, decentralized, free framework for user- centric digital identity.”
  • 8. “OpenID is an open, decentralized, free framework for user- centric digital identity.”
  • 9. what is identity?
  • 10. who you are
  • 11. who am I?
  • 12. “walkah”
  • 13. James Ransom Walker
  • 14. yes... “Ransom”
  • 15. July 10, 1977
  • 16. 29
  • 17. 30
  • 18. over 19
  • 19. over 21
  • 20. over 25
  • 21. under 65
  • 22. who you are
  • 23. how does it work?
  • 24. Who is involved? • Users - OpenID Identifier • Relying Party (RP) - aka “consumer” • Wants your information • OpenID Provider (OP) - aka “ID provider” • Has your information
  • 25. User provides identity (URL) to Relying Party
  • 26. Relying Party performs discovery
  • 27. Re-directs to OpenID Provider
  • 28. ... with choices
  • 29. User authenticates
  • 30. User receives signed authentication response
  • 31. Redirected to RP
  • 32. Relying party verifies this response
  • 33. access granted!
  • 34. what’s the point?
  • 35. too many usernames & passwords
  • 36. single sign-on
  • 37. registration headaches
  • 38. real world
  • 39. photo ID
  • 40. what is an OpenID identifier?
  • 41. not an account
  • 42. URL
  • 43. globally unique
  • 44. identifier
  • 45. ... like your passport number
  • 46. isn’t that a bad idea?
  • 47. what if someone steals my identity!?
  • 48. “OpenID is an open, decentralized, free framework for user- centric digital identity.”
  • 49. choice of: OpenID Provider
  • 50. get a couple!
  • 51. multiple personas
  • 52. choice of: authentication method
  • 53. choice of: released data
  • 54. (including not presenting ID)
  • 55. user decides
  • 56. where do i get one?
  • 57. how do i use it?
  • 58. is it secure?
  • 59. you don’t give your credentials to anyone but your OpenID provider
  • 60. (unlike drupal.module)
  • 61. what’s next?
  • 62. OpenID provider
  • 63. DRUPAL-4-7--2
  • 64. 5 & 6 soon!
  • 65. in core?
  • 66. attribute exchange
  • 67. key-value pairs
  • 68. keys are URLs
  • 69. (also globally unique)
  • 70. http://pants.com/pants/status => off
  • 71. not necessarily from your provider
  • 72. cached by your provider
  • 73. can be digitally signed by attribute provider
  • 74. we can achieve true digital identity
  • 75. more questions?