[Catalog-sig] OpenID on PyPI

Noah Kantrowitz noah at coderanger.net
Thu Sep 10 18:57:38 CEST 2009

> -----Original Message-----
> From: catalog-sig-bounces+noah=coderanger.net at python.org
> [mailto:catalog-sig-bounces+noah=coderanger.net at python.org] On Behalf
> Of "Martin v. Löwis"
> Sent: Thursday, September 10, 2009 9:46 AM
> To: Jesus Cea
> Cc: catalog-sig
> Subject: Re: [Catalog-sig] OpenID on PyPI
> > Then the OpenID support is very compromised.
> That may well be the case.
> > The point of OpenID is not
> > to depend of a centralized service. That is the reason I have my own
> > OpenID provider.
> If that's the idea, then I think OpenID is severely flawed.
> However, I disagree that this is the idea. Instead, the idea is
> to have an open protocol, to allow for competition between providers.

>From http://openid.net/specs/openid-authentication-2_0.html:

"OpenID is decentralized. No central authority must approve or register
Relying Parties or OpenID Providers. An end user can freely choose which
OpenID Provider to use, and can preserve their Identifier if they switch
OpenID Providers."

Sounds pretty clear to me.


More information about the Catalog-SIG mailing list