[Sergio Tapia]

Have you guys heard about Mozilla Persona?

https://developer.mo...US/docs/Persona

Here's a quick start guide:

https://developer.mo...ona/Quick_Setup

Edit: And here's an example on how to use Persona on an ASP.Net MVC3 application:

https://github.com/s...C3-Persona-Demo

Before you actually read anything, just try the process of signing in to this website. It doesn't matter if you don't have an account with Persona, you can easily create one in 2 clicks. This is miles ahead of OpenID from a usability perspective. I can definitely see my mother using this easily with no problems.

Is that smooth like butter or not?

I'm going to write a small blog post on how to use Mozilla Persona with ASP.Net MVC3 soon, but check it out in the meantime. This is a step in the right direction.

This post has been edited by Sergio Tapia: 02 October 2012 - 07:39 PM

[Skydiver]

What do you mean two clicks? So far I'm up to 8:
1) enter email, click
2) enter password, click to next field
3) enter password again, click to confirm passwords
4) click on Outlook
5) click on Send/Receive
6-7) Double click on message to open it.
8) Click on link in email to confirm.

[Sergio Tapia]

1) enter email, click
2) enter password, click to next field
3) enter password again, click to confirm passwords
4) click on Outlook
5) click on Send/Receive
6-7) Double click on message to open it.
8) Click on link in email to confirm. You do these anyways.

Plus, once your Persona is set up, you don't need to do those steps again.

[Skydiver]

Let me quote from your original post:

Sergio Tapia, on 01 October 2012 - 02:52 PM, said:

It doesn't matter if you don't have an account with Persona, you can easily create one in 2 clicks.

This is why I tried out Persona. I wanted to be able to create an account in 2 clicks. If you meant to say "you can logon in 2 clicks" that would be different, but not earth shattering since it's 2 clicks for me to logon with OpenID anyways.

[Skydiver]

I just tried Voost... it looked to be a promising 2 clicks at the start, but alas far I'm at 15 and counting...

1) enter email. click
2) click on Outlook.
3-4) double click to open confirmation message.
5) click on confirmation link.
6) enter full name. click
7-8-9-10-11-12) enter Birth:
click in day, click on day,
click in month, click on month,
click in year, click on year.
13) Click on sex.
14) Click in location, enter location.
15) Click on continue.

And I'm currently stuck on Continue. For some reason the Powered by Google location search isn't finding my location despite the location being suggested by Google.

I tried logging in without filling the the profile information (clicks 6-15), but it wouldn't recognize me and let me in.

[Sergio Tapia]

I think that's bad implementation on Voost's part. I tried logging into my existing Persona account on The Times crossword puzzle website and it is literally:

1. Login with Persona.
2. Yes, please log me in for 1 month.

Done.

[Skydiver]

Yeah, I definitely agree that for succeeding logons, it works well, but it doesn't seem any better than my experience with OpenID, just enter my ID and it's good to go.

Looking at the implementation side, though, it looks like everything was very well thought out to make it dead simple. Just add some JScript to the client facing HTML, and a basic query to a single URL, and wait for the response. No extra handshaking that OpenID or LiveID or OAuth requires. (Or at least all that handshaking is hidden away is pre-made libraries.)

Given a choice, I would probably opt to go with Persona over OpenID.

[Curtis Rutland]

Quote

Given a choice, I would probably opt to go with Persona over OpenID.

Did I misread, or is it Firefox-only for now? Missing the Chrome and IE markets is a chunk I wouldn't be willing to go without.

[Skydiver]

From my experiments, it worked with Chrome and IE10. I didn't try IE9 or IE8 since I don't have those versions easily available to me.

[Skydiver]

Here's the list of supported browsers: https://developer.mo...r_compatibility

[Curtis Rutland]

Ok, I misread this line:

Quote

Persona is built on the BrowserID protocol. Once popular browser vendors implement BrowserID, they will no longer need to rely on Mozilla to log in.

[Sergio Tapia]

That is incorrect. Persona works on all major browsers - natively on Firefox, and using a JS shiv on the rest. Once browsers support the protocol the shiv will no longer be needed.

https://login.person...include.orig.js

It's not Firefox or Mozilla exclusive. Any email provider can implement Persona and offer an endpoint for users to autenthicate on.

[Skydiver]

Any email provider with a web site and with an SSL cert, that is.

If somebody just has a personal domain, but no website backing it, there is no place for the wellknown documents to live in, and do any requests for verification against.

I was thinking of implementing an IdP on my personal domain, but I need an SSL certificate if I read the fine print correctly. Although the broadstrokes of the protocol description just says any website, as I was reading the details, it seems like the query for the wellknown documents MUST be done over SSL. Kind of makes sense from a security point of view.