Reputation: 51186
How to address OpenID providers downtime?
OpenID is all good... UNTIL the provider goes down. At that point you're potentially locked out of EVERYTHING (since you jumped on the bandwagon and applied OpenID everywhere you could).
This question came up because I can't, for the life of me, login with my myopenid.com provider. :-(
Upvotes: 10
Views: 563
Answers (3)
Reputation: 17047
The fix is for your OpenID site to accept multiple OpenIDs per user account. Something that the spec recommends.
Upvotes: 20
Reputation: 3603
The answer is simple. Store an email for the user. Have your own login mechanism. Making OpenId optional is the straight forward answer to this.
Unfortunately some sites are closed minded about OpenId.
Upvotes: -1
Reputation: 180085
This is why I use my personal website to delegate OpenID services to another site. If WordPress.com (my current chosen provider) goes down, I just switch the code in my site to point at a different provider. A few seconds and I'm back up and running.
Upvotes: 6
Related Questions
- OpenID Migration
- How can handle the local authentication when a SSO website is down?
- OpenID providers - what stops malicious providers?
- Current status of OpenID connect
- OpenID endpoints
- How to protect an OpenID consumer against abuse?
- Troubles with my open id provider. How to debug?
- Provide your own openid server
- Open ID - What happens when you decide you don't like your existing provider?
- Using OpenID as a login for my website - redundant providers