digg

Facebook Connect Join Digg About
See the original image at readwriteweb.com

Google is Now an OpenID Provider

readwriteweb.com Google will allow web services to join a limited test of an API based on the OpenID 2.0 protocol that will give Google Account users the option to sign in to websites with their Google credentials and without having to sign up for a new account at those sites.

Who dugg this? Made popular Oct 30, 2008

Digg DudeWhat is Digg?

Digg is a place for people to discover and share content from anywhere on the web. Digg surfaces the best stuff as submitted and voted on by the community. Take the Tour to learn more.

66 Comments

show profanity settings
expand all
  • docmphd, on 10/29/2008, -13/+94Big effing deal...another PROVIDER.

    1. I now have as many OpenID's as I have regular ID's....so much for "one ID to use everywhere"
    2. Google, Yahoo, MS, etc don't even accept OpenID's
  • tibbon, on 10/30/2008, -0/+33Too bad they aren't compliant with the standard http://USER.URL.TLD format, so you can't use it on many sites. Most sites won't accept it in email format since they are standards compliant.
  • BlaenkDenum, on 10/30/2008, -2/+28But isn't that your decision? It's not like you were forced to get all of those OpenID's. OpenID's will work if people want them to work. With Google doing this, more people will be exposed to it and more sites will feel like supporting OpenID.
  • colincornaby, on 10/30/2008, -9/+32Marked as inaccurate. They created their own version of OpenID that doesn't work with the real version.
  • SteveMax, on 10/30/2008, -0/+19The point is that we don't need only providers. We need more sites, specially the big ones, to accept OpenID logins. At this moment, we can use tens of OpenIDs to login to basically no services at all. When I can use my Google OpenID in MSN Messenger and Flickr or an Yahoo OpenID in YouTube, then I can call it a huge progress. Right now, there are lots of providers but nobody accepting it; and this is what we need to ask the big companies to do, not pat them in the back for doing the easier part of providing logins.
  • denhamcoote, on 10/30/2008, -3/+21... is also now taking part and is an OpenID provider.
  • tomithy, on 10/30/2008, -6/+19Except they forked it and are making it incompatible with everyone else... kind of defeats the purpose of an OpenID doesn't it?

    http://tech.slashdot.org/article.pl?sid=08/10/29/2 ...
  • chbfiv, on 10/30/2008, -0/+12For those of you who really don't understand. We don't need more providers. I'm glad Google is a provider, but it doesn't help OpenID to have 10,000,000 providers and no websites allowing us to login with our unique Id. IE Google is just one more provider that doesn't allow the other half of the service. Making it just more pointless.

    I'm almost getting sick of seeing these posts about these large companies supporting OpenId. Until the support both parts, it's still pointless. We need more sites allowing us to login with a unique ID, and less sites providing them.
  • Atomic1fire, on 10/29/2008, -3/+14Now can we get some more openid auth using sites, since the potential userbase is large enough
  • Darkhacker, on 10/30/2008, -5/+15Quite honestly, I'm surprised it took them this long. I once wrote a blog post back in 2006, predicting they'd start supporting OpenID in early 2007. I'm glad to see them stepping up. I realize that OpenID has some criticisms, but it's damn useful instead of signing up for service after service. In fact, I've actually closed out pages asking me to sign up because I was too lazy too. I was using YouTube for years and only got an account when I learned I could sign in through Google because I was too lazy to even sign up for YouTube.
  • scruffles, on 10/30/2008, -0/+7read the retarted slashdot article. Then I read google's developer document and the Open ID spec. Google is making something else.

    Take a look at the examples at the end of google's document:
    http://code.google.com/apis/accounts/docs/OpenID.h ...
    They are expecting people to enter their Google email address as a user id.

    Now read the spec:
    http://openid.net/specs/openid-authentication-2_0. ...
    You have to use a XRI or a HTTP/HTTPS url
  • nazsco, on 10/30/2008, -2/+8Google is Now an OpenID Provider. Except that they are not.

    there. fixed for you.

    ...and i tought yahoo and microsoft were the sux because they only provide login, and does not accept login from other providers.
  • FishHammer, on 10/30/2008, -2/+7your link didn't work. :(
  • Murdats, on 10/30/2008, -0/+5because their source of revenue is data, their products are built for data, google lives off data.
  • Culyt, on 10/30/2008, -3/+7If your that worried about it host your own provider (or at least domain name that redirects), or sign up for several IDs.

    Most people use the one password for everything anyway.

  • Darkhacker, on 10/30/2008, -1/+5There aren't that many tagged for over 18 and most of the videos I watch are educational.
  • blitzkriegpunk, on 10/30/2008, -8/+12Yay! I love OpenID! It's SOOOO great! Wow, what an idea!

    :~|

    Great idea until someone snags your single username / pass combo and they now have access to EVERYTHING you use OpenID for.
  • inactive, on 10/30/2008, -0/+4How is that different from someone gaining access to your email and then using all those "Forgot your password?" links?
  • inactive, on 10/30/2008, -0/+4Google actually does accept OpenIDs for Blogger comments.
  • mmtiller, on 10/30/2008, -1/+5I hear this argument all the time and it is completely misguided. Who said I access my OpenID with a username and a password? You might settle for that but I don't. I use two factor authentication for my OpenID. That makes it a hell of a lot more secure than 98% of the other "credentials" I have. I you can't be bothered to pick a secure provider that is your problem but at least OpenID gives you the option to be secure if you want to be.
  • TexanPsycho, on 10/30/2008, -3/+6I think of all the possible providers, Google stands to be one of the biggest.
  • Opiate, on 10/30/2008, -3/+6I think you forgot your drugs, it doesn't even support 2.0.. it's a completely proprietary fork, you know the ***** microsoft used to do? Get off it fanboy..
  • Otto, on 10/30/2008, -1/+4@wdr1: NO, HE IS NOT WRONG.

    Google added new requirements to OpenID. They are NOT OpenID Compliant, because you have to modify your code to support them specifically.

    They are not OpenID 2.0, nor are they OpenID 1.0. This is OpenID-Google, because they are not compliant with the specification, period.

    Google ***** up here, big time.
  • DBeta, on 10/30/2008, -0/+2That's the lovely part of OpenID, you can run your own server. This includes securing it however you want. You can do all kinds of things to ensure that it is really you logging in, including simple cookie management, cryptographic dongles, or even manual acceptance(if you have direct access to the machine hosting the OpenID server).

    If I was going to do OpenID for all my logins, I wouldn't trust Google, or Microsoft, or Yahoo!, I'd do it myself, with my own security, and be far safer than I am now with only about five different passwords unlocking pretty much every site I go to.
  • wdr1, on 10/30/2008, -7/+9WRONG. Just like the retarded slashdot article.

    Google is OpenID compliant. Google did NOT invent a new version of OpenID.

    If you pay attention, if you read the ***** article, you'll see they clearly state they're support OpenID 2.0 -- NOT OPENID 1.0.

    So anyone who has a mother & father who aren't blood related, shouldn't be surprised it's different from 1.0.
  • ldkronos, on 10/30/2008, -2/+4It wasn't supposed to. It wasn't an actual link. It was an example of the OpenID url format he was talking about.
  • JQP123, on 10/30/2008, -0/+2Just my opinion but in order for OpenID to be a good thing, there needs to be one or more *neutral* providers that everyone can trust. Not anyone who has a vested interest in profiling, tracking and ultimately compromising your privacy. I see a business opportunity here.

    Oh, one more thing. Google, Yahoo and MS need to accept OpenID from said neutral providers. Once this happens, I might be interested. Until then, no thanks Google.
  • Myztry, on 10/30/2008, -0/+2What, with one of those backdoor "What's your dogs name" recovery questions.
    The more doors that exist, the sooner someone is going to get in...
  • OrangeSoda31, on 10/30/2008, -1/+3ITS A TRAP!
  • maumac, on 10/30/2008, -0/+2I actually laughed and thought he was being sarcastic. Am I too optimistic about people?
  • RoboDonut, on 10/30/2008, -0/+2Hosting your own sounds like a better idea.
    If someone grabs your password, you just unplug the webserver that's sitting in your closet. So much faster than traditional password recovery.
  • BlaenkDenum, on 11/01/2008, -0/+1@chbfiv: While that's true, the importance of major companies like google becoming providers aids immensely in the decision of whether or not a site will support OpenID. If they see that a major, well known company is now a provider of OpenID, they will be more motivated to support it. Although that isn't the goal of OpenID, anyone can become a provider, but it definitely has a say on whether web sites will invest the time and resources in supporting OpenID.
  • ayeroxor, on 10/30/2008, -0/+1A better term may be "dozens" or "scores"...
  • Atomic1fire, on 10/30/2008, -0/+1ok fine, its a rickroll by google, no pedo involved
  • collution, on 10/30/2008, -1/+2Can anybody answer me how OpenID is really useful? I find it to be just another medium for usenames and passwords. Half the time, I can just signup on a website about the same way I could with OpenID and save basically no time. Honest question if someone doesn't mind.
  • 0ceanic, on 10/30/2008, -0/+1i would gladly pay $5 $10 or even $50 to have one universal ID for the internet.

    or at least give me a chance to bid on the ID i want.

    they need to not be free, so spammers just dont make good ones and throw them away.

    dear google, i would absolutely pay $10 for an ID of my choosing.
  • TheXuu, on 10/30/2008, -0/+1WANTED KID MALL PICS!! GOT RICKROLL INSTEAD!!! WILL NOT CLICK AGAIN!!!
  • lut4rp, on 10/30/2008, -1/+2Too many openIDs spoil the web.
  • inactive, on 10/30/2008, -0/+1One thought from someone who deals with network security:

    Universal authentication is good for users, and horrifically bad for security.

    Just imagine your ATM PIN number being the same as your email and Windows logon password, which is the same as your password on 4chan, Fred's Garden Supply website, and everything else you ever touch.

    Now imagine one rogue in the network.
  • angrykeyboarder, on 02/22/2009, -0/+1I need to get out more. I somehow missed this story/announcement
  • escoz, on 10/30/2008, -0/+1Actually, reviewing google's version of openId, I kinda of like it better, and think it would have a lot more success than the current one.
    My father or mother would just never understand why they need to type another site's address to enter a site.. With google, they would just need to type in their email.
    My hope is that others will adapt and accept this new version. Highly unlikely, but my hope.
  • weif, on 10/30/2008, -1/+2I actually DON"T like the idea of a single sign on solution for broad swaths of the internet. It seems to me, especially with players like Microsoft, Yahoo!, and Google in the game that it is a very large privacy risk, as well as a security risk. With different logins (even using the same username and password) on different sites, you have better security than if they all share the same login. With them having the same login, once someone is in your OpenID (or .NET Passport) account, they're in in too many places.

    also, do you want M$, Yahoo!, and Google holding this much more of your information for you? M$ has demonstrated their ongoing untrustworthiness, and Google becomes more questionable all the time...
  • Atomic1fire, on 10/30/2008, -0/+1alright, here is a working example link
    http://www.example.com
    not anything to do with openid though,
  • Atomic1fire, on 10/30/2008, -0/+1the google accounts work with directed identity,
    Find a directed identity site, like jyte.com
    and then type in this
    https://www.google.com/accounts/o8/id
    that will allow you to login, then allow you to verify the page and get you redirected back to whatever you were on.
  • cheerio, on 10/30/2008, -0/+1I STILL don't have a youtube account, or break, washigntontimes, or any site i can avoid having to sign up.
  • inactive, on 10/30/2008, -0/+1Napalm.
  • yuanzhoulu, on 10/30/2008, -0/+1the old saying goes, "a douche bag can fit nine douches"
  • enclaved, on 10/30/2008, -4/+4it must have been hard using youtube for years without being able to watch any video marked as inappropriate for under 18
  • Fetching more discussions...
    Show 51 - 73 of 73 discussions

  • Add a Comment

    Login or register to comment!
    Or, sign-in super fast with your Facebook account ...


© Digg Inc. 2009 — Content created and posted by Digg users is dedicated to the public domain | Terms of Use Updated | Privacy Policy
DIGG, DIGG IT, DUGG, DIGG THIS, Digg graphics, logos, designs, page headers, button icons, scripts, and other service names are the trademarks of Digg Inc.