• If you are citizen of an European Union member nation, you may not use this service unless you are at least 16 years old.

  • Buried in cloud files? We can help with Spring cleaning!

    Whether you use Dropbox, Drive, G-Suite, OneDrive, Gmail, Slack, Notion, or all of the above, Dokkio will organize your files for you. Try Dokkio (from the makers of PBworks) for free today.

  • Dokkio (from the makers of PBworks) was #2 on Product Hunt! Check out what people are saying by clicking here.


OpenID for Commenting

Page history last edited by Chris Messina 13 years, 4 months ago

Work in progress

OpenID can be used for several different purposes, and it's important that when OpenID is used, it's clear who is benefitting from its use. The owner of an OpenID benefits from being able to us a single identifier to identify themselves to websites, reducing the number of different account credentials that they need, and enabling them (typically) to bypass email account confirmation. 

But OpenID can also be used to verify that someone is who they claim to be (from the perspective of web architecture). Thus when someone leaves a comment on a blog and provides a website address, unless the commenter is able to somehow prove that the website address is under their control, they could be pretending to be someone else. OpenID is one mechanism for verifying that a commenter indeed owns the URL that they've provided in a uniform, simple (and over time) familiar flow.

But what is the value of a verified comment? Is it worth it to force people to verify the address they provide, or should it be optional?

Argument for mandatory OpenID verification

Verified identity


Arguments against

User expectations





Design mockup: letting the commenter choose

OpenID for Commenting

View full size.


Comments (0)

You don't have permission to comment on this page.