Sunday, August 30, 2009

Cerebral Snapshot


  1. Man on Southwest Flight 3149 from LAS to LAX: I repeat you cannot save seats. Much less 6 seats with a full plane !
  2. Taxi drivers are really nice when the economy is shit. Today one offered be complimentary bottled water... (I didnt accept it but gave him an extra buck)
  3. Vegas is the best quit smoking plan -- cough cough -- so that's where all the smokers went
  4. Damn I accidentally bought an Ed Hardy shirt....
  5. Eating Healthy Choice Tortilla soup when temperature im my apt > 85F is a bad idea


  1. The only way to scale is to be redundant.
  2. Semantics are king
  3. Progressive enhancement means Microformats and
  4. You must inject the microformats server side
  5. Don't bother exposing an API full of GETs

Sunday, August 23, 2009

OpenID Registrars

Recently I saw Mr. Messina's mocks for teaching the user what an OpenID is and how to get one or use an existing one. See

I feel that this is still complicated for a regular end user. They just want to log in or signup for the new service as fast as possible.
The open id relying party should be able to just show the user their openids with the last one they used selected so the end user does not even have to bother typing anything if they don't want to.

I would like to propose a potential solution to this. When a provider creates an openid for a user they register it with an "OpenId Registrar". The OpenID registrar will cookie the user.

An OpenId Registrar keeps track of all the identities a user has. It will have APIs similar to the Social Graph Apis from Google. Given one OpenID from a given provider you can get the rest. This can also be supported via webfinger. Given an email address give me all the openids for the person. And with the help of the cookie it can say give me what openid provider I should present to this user.

So the way in which having an OpenID registrar would solve the NASCAR issue is that it will provide an API which returns the list of OpenIDs for the user on that browser and the last one used. Which means the registrar should also have an endpoint which can be invoked to store which provider was just used.

Fairly simple but should address end user confusion.

What do you think ?

social coder

My photo
San Francisco, California, United States
Open Web Standards Advocate