[pLog-svn] r4415 - in plugins/branches/lifetype-1.1: . openid openid/class openid/class/action openid/class/view openid/locale openid/templates

[Jon Daley]

 	You use bad behavior, right?  Did you try it with bad behavior 
enabled?  I am getting blocked when trying to post on LifeJournal, due to 
the test on line 39 of common-tests, something about the Range http header 
being bad.  There is an exception made for user-agent: MovableType, so I 
thought maybe another exception should be LiveJournal, but their 
user-agent is URI::Fetch/0.03, so that sounds less like something you 
would want to make an exception for.

 	Also, it is slightly disconcerting for a password dialog to appear 
asking for my LifeType password when I am posting on another site.  Am I 
really guaranteed that the password dialog is coming from my site, and not 
faked?  Maybe it would be better to replace the phpmyid with the blogname 
or something, so it looks a little more personalized, and harder to fake.
 	Maybe the better solution is to already be logged into LifeType 
before posting the comment?

 	And lastly, is there a way to have my name show up on the comment, 
(maybe by editing the openid.php sreg array?) instead of just my URL?

All that said, it works, and that is nifty:
http://welldone.livejournal.com/83972.html?view=169220#t169220


On Sat, 23 Dec 2006, pwestbro at devel.lifetype.net wrote:
> First pass at the OpenID plugin.
>
> When using your blog url as the OpenID, you can use your LifeType
> username/password to authenticate your OpenID identity.
>
> Ideally, this would use digest authentication, but there isn't an api on the
> users object that takes the md5 version of the username and password