OpenID + Identity
the future of user module

what is identity?

who are you?

James Ransom Walker

G !
L U
S P
E S
EL
AM
SH

Director of Education

July 10, 1977

30

unique identifier

digital identity

walkah

walkah@walkah.net

james@lullabot.com

http://walkah.net/

http://www.lullabot.com/blog

http://drupal.org/user/1531

http://groups.drupal.org/
user/37

http://security.drupal.org/
user/12

http://association.drupal.org/
user/James_Walker

it’s a mess

what is OpenID?

OpenID is a free and
easy way to use a
single digital identity
across the Internet.

URL
http://walkah.myopenid.com/

globally unique

identifier
(like a passport ID)

anyone can provide

users can choose

security

SSL

certificate-based
authentication
http://myopenid.com/

two factor
authentication
http://myvidoop.com/

delegate

http://walkah.net/
http://walkah.myopenid.com/

OpenID 2.0

directed identity

“anonymous login”

user-friendly

extensible

SREG
Simple REGistration Protocol

AX
Attribute eXchange

PAPE
Provider Authentication Policy Extension

identity is
central

semantic web

OpenID is not

OpenID is not
an account

OpenID is not
a trust framework

(although central to
building one)

what about Drupal?

what’s in core?

Relying Party
support

creates
local accounts

associate multiple
OpenIDs

OpenID 2.0

directed identity
(works with yahoo!)

what’s not in core?

OpenID Provider
support

(full) SREG support

Attribute eXchange

what can Drupal
do better?

core support for...

multiple
authentication
systems

limiting
authentication
systems

weighting
authentication
systems

removing
assumptions

users = username
and password

and drupal.org?

http://drupal.org/user/1531

http://groups.drupal.org/
user/37

http://security.drupal.org/
user/12

http://association.drupal.org/
user/James_Walker

F T
A
proposal
R
D

OpenID provider
https://id.drupal.org/

delegation
http://drupal.org/user/1531

directed identity
“drupal.org”

wanna help?

thank you