Opened 12 years ago

Closed 7 years ago

#157 closed Bug/Something is broken (invalid) does not provide a "data policy" URL when authenticating via OpenID

Reported by: Daniel Kahn Gillmor Owned by: alfredo
Priority: Medium Component: Tech
Keywords: openid Cc:
Sensitive: no


I just signed into with my openid -- nice work, alfredo!

our OpenID provider indicated that the username and e-mail addresses would be required by in order for the OpenID authentication to continue. It also displayed the message:

The server supplied no data policy URL.

I think this implies that there's a way that OpenID consumers (like can indicate how they plan on using that data. It would be good to provide such a policy and explicitly document it.

Change History (3)

comment:1 Changed 11 years ago by Daniel Kahn Gillmor

Keywords: added

comment:2 Changed 11 years ago by Daniel Kahn Gillmor

Keywords: added; removed

comment:3 Changed 7 years ago by Daniel Kahn Gillmor

Resolution: invalid
Status: newclosed

We're no longer using; the new doesn't give the "data policy URL" message. So this ticket doesn't apply any longer.

Please login to add comments to this ticket.

Note: See TracTickets for help on using tickets.