This site now uses OpenID

That was indeed painless... of course, i'm sure it's not half as painless to get an openid with a domain of one's own choosing (i.e. tom@tomster.org ;-)

regarding the commenting framework... my next plone day is still a week away, i'm afraid... i do think, though, that at the end of the next session i can come up with something demo-able... in the meantime OpenID seems like a nice step forward...

when i'm logged in and clicking on my preferences link produces a 404. FYI.

never used openid before.. but it looks like it's working??

Donna

Thanks Martin, you provided incentive for me to finally get an OpenID.

It works :-D

:D

Been seeing the OpenID login on a lot of the Plone 3 sites popping up these days... so this will come in handy!

Need to do something about the author link up in the top right corner though... leads to a nasty 404 :)

... but right now the present is a little messy. Not only do we not have prefs, but also OpenID users can't be assigned permissions through the sharing tab.

Still, there is tremendous potential here. I'd ultimately like to see a Plone site be able to be an openID *server*. ;-)

I created at test instance a couple of weeks ago and logged in with an openid. It seemed to create a temporary unsearchable member named "http" with no real member properties so I deemed it not ready for prime time. So commnenting is the working use case at this time?

I will say that logging in with an openid ssl cert worked fine. The auth in openid is pluggable and not part of the protocol. So the cert working credit should go to myopenid.org. I think claimid.com just got this working, also.

The current comment framework really needs an update. But what I really like about OpenID is delegation, so you can login with your personal domain.

It's the first time I use my openID account except for my test Plone 3.0.2 installation. I'm thrilled. I swear it's the last time I do that sort of pseudo-spam ;-).

Now why can't we all standardize on openid...

This is great. I have been looking for a work-around for form submission without having anonymous access. How did you structure the permissions of openid users?

Hi martin,

OpenID used in this way is not a good way to prevent comment spam. Basically you are still allowing anonymous comments, and it's just a matter of time before spammers start targeting sites that use openid in this way. There are open id providers that give out anonymous throwaway openids like the one I used just now, and that is a perfectly good way to use the protocol. OpenID is good for single sign on to multiple accounts, or to share centrally stored user information, not ever to replace having an account on the server at all.

eric casteleijn (thisfred gmail com)