[OpenID] OpenID Registration Scenario
John Wang
jwanggroups at gmail.com
Tue Jul 10 21:21:38 PDT 2007
For a site that does not have sensitive information but does have an online
identity aspect where there will be a lot of information associated with
user's online identity on the site over time, does it make sense to have
OpenID users also create a local username/password?
I think it makes some sense to have a username since a user can have
multiple OpenIDs associated with one online identity. Additionally a
username will be more user-friendly to see on various pages. The username is
associated with a unique online identity for the site while the OpenID is
just an authentication method.
As for a local password, it seems to make for a better user experience to
have a fallback incase the user's OpenID OP auth server becomes unavailable
for whatever reason. This way the user can use OpenID when they want but if
it ever becomes unavailable, they still have access to their online
identity. From a community site perspective, it seems to make sense to give
the user a fallback auth mechanism controller by the site instead of forcing
the user to rectify the situation with their OP in case there's an issue
there.
More information about the general
mailing list