|
Kurt Zidane
Just Human
Join date: 1 Apr 2004
Posts: 636
|
12-21-2004 15:26
I was thinking of way to bring the sl community closer together. I don't know if it is feasible, but I think it would be great if every one could log into 3rd party web sites with little or no registration process. Kind of a universal user-name/password to use with GOM, SL EXCHANGE, THE HARALD. Or being able to log into secondlife.com, and thensigns up for other web sites by doing some thing quick and simple. Like choosing the website, a user name, and a password. Just click agree and presto good to go.
|
|
Azelda Garcia
Azelda Garcia
Join date: 3 Nov 2003
Posts: 819
|
12-22-2004 05:47
Hmmm, thats an interesting idea.
How it could work is to grab either the secondlife.com cookie, or a new cookie made specifically for this purpose, and send it to lindenlab.com/secondlife.com for validation. lindenlab.com/secondlife.com replies either with the name of the avatar, or blank. Blank means failed authenticated.
Azelda
|
|
Eggy Lippmann
Wiktator
Join date: 1 May 2003
Posts: 7,939
|
12-22-2004 09:57
You mean like MS passport?  |
|
Moleculor Satyr
Fireflies!
Join date: 5 Jan 2004
Posts: 2,650
|
12-22-2004 10:29
I definitely do NOT support this product and/or service.
1. MSN Passport must die.
2. I like my accounts seperate, thankyouverymuch.
3. Interdependancy sucks, as I'm learning the hard way with a minor system file corruption on my Windows XP install that simply can NOT be repaired in any way.
_____________________
</sarcasm>
|
|
Azelda Garcia
Azelda Garcia
Join date: 3 Nov 2003
Posts: 819
|
12-22-2004 10:59
Well... I think if the service is provided by LindenLab themselves there's no particular security issue. Most of our stuff is directly visible by them anyway, a little bit more probably wont hurt.
It's true that if SSO were provided by a non-Linden third-party, I'd be a little more concerned about putting all my eggs in one basket.
Azelda
|
|
Azelda Garcia
Azelda Garcia
Join date: 3 Nov 2003
Posts: 819
|
12-22-2004 11:02
(Note to Eggy: not sure if youre just kidding or not, but just in case you're not, the issue with MS Passport is that it doesnt enforce one avatar = one account; which is pretty important for many products and services).
(Altho..... hmmmm.... what we could do is have a third party provider that uses an MS Passport account, and handles the linking-to-avatar bit. In other words, it doesnt authenticate the website account itself, it just handles authenticating that the account is associated with an SL avatar, and the name of that avatar)
(Azelda)
|
|
Carnildo Greenacre
Flight Engineer
Join date: 15 Nov 2003
Posts: 1,044
|
12-23-2004 00:14
I don't trust single sign-on systems. The only place I trust to keep personal information is a PDA I use to keep track of my passwords, and that one has never and will never be connected to the Internet.
_____________________
perl -le '$_ = 1; (1 x $_) !~ /^(11+)\1+$/ && print while $_++;'
|
|
Lex Neva
wears dorky glasses
Join date: 27 Nov 2004
Posts: 1,361
|
12-24-2004 13:01
Hmm, so if someone evil works for AAA Currency Exchange Company, they would pretty much have access to whichever SL account they want, wouldn't they?
I don't like the idea. Even if it was just a capability to sign up for a bunch of different third party sites from SL, I bet that most people would use the same password for those sites as SL. They might well do this already. I know most people aren't evil, but all it takes is one...
|
