Dave Johnson on open web technologies, social software and software development
Lot's of activity in the OpenID and OAuth space recently. Both OAuth and OpenID have suffered from bad user experience, bad developer experience and low adoption. Now they're in the process of re-invention and folks from both Google and Facebook are involved. Here's my reading list so far on the topic:
Tim Bray: Whatâs more interesting is that weâre rolling out an OpenID provider at (last time I looked)Now, if only Roller and blogs.sun.com supported OpenID we'd reallly be cookin'
openid.sun.com, but with a twist: You canât get an OpenID there unless youâre a Sun employee, and if someone offers an OpenID whose URI is there, and it authenticates, you can be really sure that theyâre a Sun employee. It doesnât tell you their name or address or anything else; thatâs up to the individual to provide (or not). The authentication relies on our Access Manager product, and itâs pretty strong; employees here have to use those crypto-magic SecureCard token generators for serious authentication, passwords arenât good enough.
Trey Drake: How do you demo a directory server? Build cool apps around it. To that end, we've built an Atom/APP server, a lightweight OpenID server, a blogging and "twitter" like app - all powered by OpenDS. Drop by our booth (Glassfish alley at CommunityONE and .org section of the pavilion during JavaONE). Ludo and I will introduce OpenDS and show off the demos in two talks; today at CommunityONE at 5PM and Wednesday at 1:30 in the CommunityCorner.
Very cool. I'm not going to be the only one talking about Atom protocol at JavaOne. I'll have to stop by the CommunityCorner, that sounds too good to miss.