[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: FW: [OpenID] Signing method for XRD
Here is one message from the OpenID list thread (that Nat started - thanks Nat!) with a good point about one workaround for implementation complexity no matter what XRD signature method we choose. =Drummond >> -----Original Message----- >> From: general-bounces@openid.net [mailto:general-bounces@openid.net] On >> Behalf Of Hans Granqvist >> Sent: Tuesday, June 16, 2009 10:46 AM >> To: Peter Williams >> Cc: general@openid.net >> Subject: Re: [OpenID] Signing method for XRD >> >> It seems the major hurdles to using xmldsig are "it's too hard to >> implement" and "there is no good API in the {foo, bar, baz, ...} >> language" >> >> Since we envision a world of interconnected services, is it not easy >> to avoid all issues by creating and set up a signing/verification >> service endpoint. Internal or external, just use this service for all >> nasty xml signature needs. I've done this myself a few times and use >> it wherever http is spoken. It's pretty easy. >> >> Hans >> _______________________________________________ >> general mailing list >> general@openid.net >> http://openid.net/mailman/listinfo/general > >
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]