openid

I am a little curious to know about how OpenID authentication works. Is there any difference between OpenID authentication and the authentication which sites use exclusively for themselves? Patrick Desjardins What is OpenID? OpenID is an open, decentralized , free framework for user-centric digital identity. OpenID takes advantage of already existing internet technology (URI, HTTP, SSL, Diffie-Hellman) and realizes that people are already creating identities for themselves whether it be at their blog, photostream, profile page, etc. With OpenID you can easily transform one of these existing

The Uri class defaults to RFC 2396. For OpenID and OAuth, I need Uri escaping consistent with RFC 3986. From the System.Uri class documentation : By default, any reserved characters in the URI are escaped in accordance with RFC 2396. This behavior changes if International Resource Identifiers or International Domain Name parsing is enabled in which case reserved characters in the URI are escaped in accordance with RFC 3986 and RFC 3987. The documentation also states that activating this IRI mode and thus the RFC 3986 behavior means adding a uri section element to machine.config and this to

I'm having an issue that is driving me crazy. I'm trying to modify the openid-selector to support facebook. I'm using RPXNow as my provider so it requires the form to be submitted to a different url than the standard. For example. RpxNow requires me to setup my form like this: <form action="https://wikipediamaze.rpxnow.com/openid/start?token_url=..."> This works for every provider except for Facebook and Myspace. Those require the form to be posted to a different url like this: <form action="https://wikipediamaze.rpxnow.com/facebook/start?token_url=..."> and <form action="https://wikipediamaze

I have a product with a straightforward REST API so that users of the product can directly integrate with the product's features without using my web user interface. Recently I have been getting interest from various third parties about integrating their desktop clients with the API to allow users of my product to access their data using that third party application. I've seen that applications that want to use Twitter authenticate using a login page hosted by Twitter that grants a specific application permission to access that user's data. You click the "Allow" or "Deny" button and the

We have a website where the only way to login and authenticate yourself with the site is with Facebook (this was not my choice). The first time you login with Facebook, an account gets automatically created for you. We now want to create an iPhone application for our site and also a public API for others to use our service. This question is about how to authenticate with our website from the app/API and is broken into 2 parts: What is the correct way to handle REST authentication from an API to a website which only uses Facebook OAuth as an authentication method? I have read and researched a