As an IdP, I want to be able to delegate authority without being forced to buy an SSL certificate, so that I can afford to support Persona on every one of my domains.

mozilla / persona-roadmap

A repository for user stories related to Mozilla's Identity efforts.

3 stars 1 forks source link

Open callahad opened 11 years ago

r0bl0rd commented 11 years ago

@callahad I assume you're referring to an IdP? At what phase of adoption does this block an IdP?

Priority?

Is the benefit just saving $ or something more beneficial than that?

callahad commented 11 years ago

Yep, changed title to IDP.

This blocks initial adoption -- we've had several potential IdPs (including Fastmail.fm) highlight this as an issue, as well as personal domains.

It's cost savings and administrative burden.

callahad commented 10 years ago

Per dev-identity, insecure DNS or HTTP is out. DNSSEC might be feasible, but not until it's more broadly deployed.