Now using OpenID for commenter authentication

December 26, 2006 8:23 PM | Permalink

In a series of experiments around identity and trust, I’ve now enabled OpenID comments on this blog. In the comment area, you see a new “Your blog URL” field. The default wording is a bit confusing, and what’s going on here is that it actually asks for your OpenID URL.

Typekey also remains working, but as you could also use Typekey as OpenID server, it’s kinda redundant. I could hack around this, but I’d prefer that SixApart and the plugin providers provided a bit cleaner solution in the next versions. The comment stuff is still a bit messy. For example, when using the “comment preview” function in Movable Type, you’re no longer signed in at all.

What I don’t like about OpenID here is that in it’s out-of-box configuration, it doesn’t provide “nicknames” for people, only an URL. People have names, not URL-s, even if you are authenticated by an URL.

I’ve been following OpenID for quite a while now and it’s got a big boost in the blogs. For an intro, check Simon’s webcast. I’m using Marc’s MT OpenID-comment plugin.

11 Comments

And so this is what an OpenID comment looks like when using my own blog as the URL…

http://www.jaanuskase.com/en/about/

| December 26, 2006 8:34 PM

… and this is what it’s like when I’m coming through myopenid.com.

jaanus.myopenid.com

| December 26, 2006 8:34 PM

w00t, I remembered I have a Livejournal ID too. So this is what a comment authenticated by Livejournal looks like.

terminus1

| December 26, 2006 8:41 PM

It wouldn’t make sense for OpenID to hand over a username, because it needs to be able to integrate with sites that already have user account systems and as such you can’t be sure that any given username hasn’t already been taken.

That said, there’s an OpenID extension that can hand over the user’s name and other information if the user gives permission for that to happen.

Simon Willison

| December 27, 2006 3:17 AM

Indeed, Simon, that’s what I meant, thanks not to have a unique immutable “username” in the system, but instead, hand over my nickname/alias/avatar as well as photo and other stuff, and have different sets of this info handed over to different sites.

http://www.jaanuskase.com/en/about/

| December 27, 2006 10:55 AM

Yes, myOpenID is great! As you see, I use it myself for various pages, so thanks for implementing it!

nafcom.myopenid.com

| December 28, 2006 3:54 AM

And the nifty thing here is that you can use things like eID cards to allow authentication of these identities - you really don’t need any passwords!

Martin Paljak

| January 4, 2007 10:17 PM

And as we can see from this same blog comment - you can put several interesting things together - openid and foaf - I never mentioned my real name but with automagic openid autehntication, my nickname name or even my real name can be extracted from my foaf profile that is referenced from my blog url.

As Cartman would say - sweeeet!

Martin Paljak | January 4, 2007 10:26 PM

Testing commenting…

carl.myopenid.com

| April 13, 2007 3:11 AM

so.. what does this look like if I’m coming with my ID card?

http://www.jaanuskase.com/en/about/

| May 10, 2007 4:26 PM

Nice, Estonian ID-card based open.id.ee login works!

http://esken.net/erki/

| May 20, 2007 1:36 PM