http://openid4.me/ -- OpenId ♥ foaf+ssl
By bblfish on Nov 19, 2009
OpenId and foaf+ssl have a lot in common:
- They both allow one to log into a web site without requiring one to divulge a password to that web site
- They both allow one to have a global identifier to log in, so that one does not need to create a username for each web site one wants to identify oneself at.
- They also allow one to give more information to the site about oneself, automatically, without requiring one to type that information into the site all over again.
OpenId4.me allows a person with a foaf+ssl profile to automatically login to the millions of web sites that enable authentication with OpenId. The really cool thing is that this person never has to set up an OpenId service. OpenId4.me does not even store any information about that person on it's server: it uses all the information in the users foaf profile and authenticates him with foaf+ssl. OpenId4.me does not yet implement attribute exchange I think, but it should be relatively easy to do (depending on how easy it is to hack the initial OpenId code I suppose).
If you have a foaf+ssl cert (get one at foaf.me) and are logging into an openid 2 service, all you need to type in the OpenId box is
openid4.me. This will then authenticate you using your foaf+ssl certificate, which works with most existing browsers without change!
If you then want to own your OpenId, then just add a little html to your home page. This is what I placed on http://bblfish.net/:
<link rel="openid.server" href="http://openid4.me/index.php" /> <link rel="openid2.provider openid.server" href="http://openid4.me/index.php"/> <link rel="meta" type="application/rdf+xml" title="FOAF" href="http://bblfish.net/people/henry/card%23me"/>
And that's it. Having done that you can then in the future change your openid provider very easily. You could even set up your own OpenId4.me server, as it is open source.
More info at OpenId4.me.