OpenID strikes again
Ugh, so it turns out my old provider for openid, gpgpid has gone unavailable. That sort of screws me over. Or it would, if I actually used openid for anything with a point to it. I don’t know if it’ll be back, but it gpgid pretty much failed as a provider anyway. I haven’t done a significant security audit on it but I think it may have been vulnerable to man in the middle attacks after all, since it would authenticate you for an entire browser session. Also, it didn’t support any extensions.
Either way, I’ve decided that I’ll implement my own pgp-authenticated openid system on l3ib.org. One or more of the other lazy l3ib bastards might be helping me with it, who knows. It will hopefully fail less and be more friendly than gpgpid, and if it mysteriously dies I’ll at least be able to figure out why. I hope.
There are official libraries for openid, for php, python, and ruby. The ruby library requires rails, which is total overkill for this project. Php just plain fails. So, I guess I’m going with __lolpython(self).
