Blogging Roller

Latest Links - August 1, 2011

Dave Johnson — Sun, 31 Jul 2011 15:00:01 +0000

Latest links, favorites and photos shared elsewhere:

snoopdave RT @mraible: Happy 9th Blogiversary to http://raibledesigns.com: 3045 entries, 13,269 comments. Thanks for keeping all my memories Apach ... 12:35:12 PM 01 Aug 2011

mgile First day at the new, new office. Obligatory empty startup office pic: http://t.co/7oVDQjk 10:29:17 AM 01 Aug 2011

snoopdave Shared: Million Persona March on Google, Labor Day? http://bit.ly/qmAR5y #fb 09:40:01 AM 01 Aug 2011

OAuth and OpenID: take2

Dave Johnson — Tue, 18 May 2010 13:48:47 +0000

Lot's of activity in the OpenID and OAuth space recently. Both OAuth and OpenID have suffered from bad user experience, bad developer experience and low adoption. Now they're in the process of re-invention and folks from both Google and Facebook are involved. Here's my reading list so far on the topic:

IETF OAuth working group - The OAuth 2.0 Protocol - draft-ietf-oauth-v2-05 is the latest draft of OAuth 2.0, published about two weeks ago.
Eran Hammer-Lahav - Introducing OAuth 2.0 is an excellent overview of what's different and new about OAuth 2.0, listing the six new flows that are supported including a username/password flow.
David Recordon (Facebook) - OpenID Connect: A strawman... is a proposal for "OpenID Connect" a standard way to do what Facebook Connect and Google Friend Connect today, allow users to login sites with either their Facebook, Google or other identity provider credentials.
Chris Messina (Google) - Combining OpenID and OAuth with OpenID Connect covers the thinking behind OpenID Connect and the expansion of the "OpenID brand."
Michael Calore (WebMonkey) - New ‘OpenID Connect’ Proposal Could Solve Many of the Social Web’s Woes covers motivations behind OpenID Connect, problems with OAuth and OpenID.
Joseph Holsten - Your New New Web Identity another nice overview of the new OpenID and OAuth ideas, pushes back against dropping/reinventing of OpenID Attribute Exchange.
Tantek Celic - I'm calling bullshit on #OpenID Connect. Still too complex, ... is about one run-on tweet's worth of contructive criticism

Congrats to Webmink and Forgerock

Dave Johnson — Mon, 10 May 2010 08:12:16 +0000

Congrats to Simon Phipps on what sounds like a great new job at ForgeRock and on his new column in ComputerWorld.UK.

One of the key benefits to customers of the source code becoming open source is that, in the event a product is discontinued by its owner, a group of people from the community can simply pick up the source code and keep on maintaining and improving it. That's a radical change from proprietary products, which can be killed stone dead with no appeal. With open source, the company may fold but the community carries on.

That's all fine in theory, but does it actually work? I intend to find out. Starting this week, I'm joining ForgeRock as chief strategy officer.

SuperPat speaks tonight at Tri-LUG

Dave Johnson — Thu, 8 Nov 2007 08:31:05 +0000

Tri-LUG announcement: Pat Patterson from Sun Microsystems will provide us with a developer perspective on digital identity, starting from the emergence of LDAP in the 90s, through single sign-on, SAML and the Liberty Alliance protocols to recent developments such as OpenID, Cardspace and OAuth. The emphasis will be on understanding the protocols and how they are implemented in the real world, with a particular focus on deciding which (if any!) approach to select for a given project.
Pat Patterson is a federation architect at Sun Microsystems, focusing on federation, identity-enabled Web services and OpenSSO, Sun's open-source implementation of those technologies. Pat's blog centers on identity-related topics.

Looks like a great talk and I've always wanted to meet SuperPat, so I'll be there.

Here are the details:

Speaker:   Pat Patterson
Title:     Digital Identity from LDAP to SAML and beyond
Date/time: 7PM Thursday Nov. 8, 2007
Location:  Red Hat HQ (map)
           1801 Varsity Drive
           Raleigh, North Carolina 27606
           Tel: +1-919-754-3700

Configuring Roller with OpenDS

Dave Johnson — Thu, 8 Feb 2007 16:28:13 +0000

Trey Drake explains what you have to do to get Roller 3.x working with OpenDS. He's right, its a kludgey process and I hope we can improve it. The bug he mentions "after registration the user must close and re-open the browser" will be fixed in Roller 3.1 which is just about ready for release.