-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 (Separating topics in this thread.) On 01/25/2012 02:45 AM, Ewoud Kohl van Wijngaarden wrote:
On Wed, Jan 25, 2012 at 10:17:43AM +0200, Itamar Heim wrote:
can we separate the openid support for authentication (so people can user same user/password) from authorization (can an openid account do something)?
so we would still have the process of an existing user has to give edit permissions to an openid user?
That could be a mitigation in case we do get spammers.
That's a rather nice idea - it would save us from losing the investment in getting OpenID working if we didn't have to roll all the way back, and if we had to fall-back to manual-initial authorization, at least we'd be helping contributors reduce account complexity. - - Karsten - -- name: Karsten 'quaid' Wade, Sr. Community Architect team: Red Hat Community Architecture & Leadership uri: http://communityleadershipteam.org http://TheOpenSourceWay.org gpg: AD0E0C41 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iD8DBQFPIHYO2ZIOBq0ODEERAkt7AJ9ZuqPFFW/qEHgSItBqB2QgJ/xLOwCdGcpf VS6cFPMJ+rupMepGmA5peZc= =7FWL -----END PGP SIGNATURE-----