This saddens me but does not surprise. Just yesterday I was taking a third or fourth look into hosting my own OpenID provider until I realized that practically nobody uses it anymore.
The problem with a universal, distributed, federated identity/authentication system is that nobody wants their user database to be dependent upon third-parties. Or to put it another way, they want all of their users to live in their garden, not just visiting on the way through.
My only hope now is that if we are now condemned to manage hundreds of individual online accounts ourselves, hopefully some day soon we will be doing it in a more scalable way like hardware token auth or GRC’s SQRL.
Here’s me feeling pangs of guilt for not ever finishing my draft of “Why OpenID has failed”… As well as loads of other incredibly insightful and impactful posts I could’ve blogged.
OpenID sadly never took of anywhere, the only provider that I know that offers and supports it is Uberspace and they are very niche.
OAuth Connect is probably going to be a bit more successful since it piggybacks off OAuth2 internally.
This saddens me but does not surprise. Just yesterday I was taking a third or fourth look into hosting my own OpenID provider until I realized that practically nobody uses it anymore.
The problem with a universal, distributed, federated identity/authentication system is that nobody wants their user database to be dependent upon third-parties. Or to put it another way, they want all of their users to live in their garden, not just visiting on the way through.
My only hope now is that if we are now condemned to manage hundreds of individual online accounts ourselves, hopefully some day soon we will be doing it in a more scalable way like hardware token auth or GRC’s SQRL.
Here’s me feeling pangs of guilt for not ever finishing my draft of “Why OpenID has failed”… As well as loads of other incredibly insightful and impactful posts I could’ve blogged.