Comments on: OpenID at Sun

By: Sven

Sven — Thu, 10 May 2007 22:22:45 +0000

Sven Dowideit’s working on re-architecting TWiki’s authentication and session system to enable better support for external user management – for the upcoming TWiki 4.2.0 release in June, we should see OpenID support – at least for login, and registration – and later, TWiki will be able to be an OpenID providor too..

By: Andreas Åkre Solberg

Andreas Åkre Solberg — Tue, 08 May 2007 06:22:47 +0000

Hi Pat!

Regarding:

"what could it mean to have an OpenID that says you are an employee of Sun Microsystems (or, for that matter, any company)?"

In my opinion it does not matter whether the OpenID provider that says you are an employee of Sun is the OpenID provider at Sun. For a OpenID consumer it is totally irrelevant whether it is the official Sun OpenID Provider or if it is a free random open registration provider somewhere on the net. And this is where OpenID's goal is totally different from SAML thinking, and this is also where OpenID often is misunderstood.

That said, what you are gaining, and what is totally awsome for Sun employees is that you will get SSO between internal services and all those random openid consumers. (off course if the openid provider is the same as your saml idp).

I tried to sketch some of my ideas of what happens, and why, to put up OpenID interfaces to existing SAML IdPs, but I am no good at writing.

By: Pat Patterson

Pat Patterson — Mon, 07 May 2007 17:13:43 +0000

Oh yeah – marketing too

By: Rich Sharples

Rich Sharples — Mon, 07 May 2007 17:07:36 +0000

Ah, that’s where I left my keys – on the scanner !

By: Pat Patterson

Pat Patterson — Mon, 07 May 2007 16:28:55 +0000

Correcting Johannes' post - this was a cross-department effort with contributions from (amongst others) the CTO office (in particular Gerry, Eve, Lauren and Hubert), SunIT and the OpenSSO team. I was on vacation and schmoozing with Liberty in Belgium for most of the past month, so I really can't accept any credit.