account migration

All timestamps are based on your local time of:

Posted by: stak
Posted on: 2006-10-01 18:43:01

i've been working on getting OpenID working with my site, so that instead of creating an account using a username/email address/password and then logging in using your username/password, all you need to provide is your openid identity URL. accounts will be created automatically the first time you log in, and account info will be stored on the server. you will optionally be able to specify a screen name and email address (required for the delaygames).

as it turns out, openid is much simpler for both you (the user) and me (the website owner). so much so, in fact, that instead of supporting two different login/account systems, i'm planning on migrating all the accounts to openid and getting rid of the traditional account system altogether.

so this is how it's going to work.. the first step is for existing users to specify their openid identity. you can do that by going here (make sure you're logged in to first, or it won't save your identity). in a week or so i'll change the login to be openid-based instead of username/password. at that point, any accounts that have not specified an openid identity will receive a reminder email, and will be deactivated a few days after that.

a lot of you probably haven't heard of openid before, so here's a quick summary of how it works: some website serves as your identity provider. this can be any site with an openid server set up (LiveJournal is one of these; see the list here). the identity provider website is usually one you're logged in to all the time. when you log in to some other website using your openid, that website redirects your browser to your identity provider with a request to validate your identity. since you're logged in to your identity provider, the provider can ensure that you are in fact you, and redirects your browser back to the original website with a yes/no response. there's some additional stuff like cryptokeys and getting your permission to share your identity, but that's the high-level overview. for details, see the OpenID website. or you could just figure out how to use it as you go along (it's not hard).

if you already have an account with some website (such as LiveJournal) that provides you with an OpenID identity, great. if not, i suggest creating one at one of the free servers listed here. or not, if you don't think it's worth the hassle. it's up to you.

Click here to get started.

Posted by Fai at 2006-10-02 15:20:10
if we don't get an openid, will we not be able to read private posts?
[ Reply to this ]
Posted by stak at 2006-10-02 20:11:26
again with the weird negated questions! the answer to your question is yes.
[ Reply to this ]
Posted by Fai at 2006-10-05 14:19:14
oh, but I don't really want to get one. do you even make private posts anymore?
[ Reply to this ]
Posted by stak at 2006-10-05 20:26:11
occasionally. i just made one yesterday. but meh.. if you don't want one, then don't get one. i ain't forcing you. i just like being able to do something about reducing the number of passworded sites that don't really need a secure password.
[ Reply to this ]
Posted by stak at 2006-10-05 20:44:18
oh, and the photos are pretty much all private, with various degrees of restrictions.
[ Reply to this ]

[ Add a new comment ]

(c) Kartikaya Gupta, 2004-2024. User comments owned by their respective posters. All rights reserved.
You are accessing this website via IPv4. Consider upgrading to IPv6!