Openid Drupalcon 2008

75 %
25 %
Information about Openid Drupalcon 2008

Published on March 10, 2008

Author: walkah



My talk on OpenID, Drupal's implementation and the future of OpenID in Drupal for DrupalCon Boston 2008

OpenID + Identity the future of user module

what is identity?

who are you?

James Ransom Walker


Director of Education

July 10, 1977


unique identifier

digital identity

walkah user/37 user/12 user/James_Walker

it’s a mess

what is OpenID?

OpenID is a free and easy way to use a single digital identity across the Internet.


globally unique

identifier (like a passport ID)

anyone can provide

users can choose



certificate-based authentication

two factor authentication


OpenID 2.0

directed identity

“anonymous login”



SREG Simple REGistration Protocol

AX Attribute eXchange

PAPE Provider Authentication Policy Extension

identity is central

semantic web

OpenID is not

OpenID is not an account

OpenID is not a trust framework

(although central to building one)

what about Drupal?

what’s in core?

Relying Party support

creates local accounts

associate multiple OpenIDs

OpenID 2.0

directed identity (works with yahoo!)

what’s not in core?

OpenID Provider support

(full) SREG support

Attribute eXchange

what can Drupal do better?

core support for...

multiple authentication systems

limiting authentication systems

weighting authentication systems

removing assumptions

users = username and password

and user/37 user/12 user/James_Walker

F T A proposal R D

OpenID provider


directed identity “”

wanna help?

thank you

Add a comment

Related pages

OpenID and Identity in Drupal: the future of user.module ...

SESSION OVERVIEW This session is about identity management in Drupal focused primarily on the role of OpenID. With the release of Drupal 6 and the ...
Read more

DrupalCon Boston 2008 - OpenID and Identity in Drupal ...

Presenters: James Walker (walkah) Track: community and core Session Description: SESSION OVERVIEW This session is about identity management in Drupal...
Read more

SA-2008-045 - OpenID - Multiple vulnerabilities |

Advisory ID: DRUPAL-SA-2008-045 Project: OpenID (third-party module) Version: 5.x Date: 2008-July-9 Security risk: Less critical Exploitable from: Remote ...
Read more

SA-2008-016 - OpenID - Incorrect claimed_id returned for ...

Advisory ID: DRUPAL-SA-2008-016 Project: OpenID (third-party module) Version: 5.x-1.0 Date: 2008-January-30 Security risk: Less critical Exploitable from ...
Read more

OpenID at DrupalCon Boston 2008 | walkah

Here we go again! One week from today, DrupalCon Boston 2008 will get underway. For the 3rd straight conference, I'll be doing a session on OpenID in Drupal:
Read more

OpenID, Drupal, and the Open Web | DrupalCon DC

OpenID - the open, decentralized identity framework - is a few years old now. Drupal support both in core and contrib has been steadily growing and expanding.
Read more

Lessons from DrupalCon: Twitter, RDF, OpenID, and more ...

I’m spending the bulk of this week at DrupalCon Boston 2008, a conference for web developers who use Drupal, an open source content management system ...
Read more

OpenID | Drupal Groups

DrupalCon OpenID Code Sprint. Posted by wundo on February 26, 2009 at 7:15pm. Start: 2009-03-07 09:00 - 15:00 America/New_York. Organizers: ... 2008 at 5:46pm.
Read more

DrupalCon Boston 2008 - Panels 2 and Nodequeue : Free ...

DrupalCon Boston 2008 - Panels 2 and Nodequeue ... DrupalCon Boston 2008 - OpenID and Identity in Drupal . Feb 29, 2008 02/08. movies. eye 73 favorite 0
Read more