Critique of some aspects of OpenID, and a guide to what providers should do:
# Your application becomes a full consumer of OpenID
# You application allows users to link their existing accounts to their OpenID
# Your application allows users to *replace* their existing accounts with their OpenID
# Your application has no signup barrier other than requesting an OpenID and password
# You are *optionally* a provider of OpenID, if your user explicitly enables it (not sure why you want to be in the identity management business)"
Related Post:
Widget by [ Iptek-4u ]
