Using Token for new accounts (Re: Status of OpenID Consumer in Bugzilla)
robla at robla.net
Fri Jul 1 23:35:12 UTC 2005
On Fri, 2005-07-01 at 18:39 -0400, Jake wrote:
> On Fri, July 1, 2005 4:40 pm, Rob Lanphier wrote:
> > Hey, whaddya know! :) I saw that the standard new account creation
> > mechanism just pushed out a password rather than a login token, so I just
> > assumed that there wasn't a token mechanism.
> > Any philosophical reason why Token isn't used for new account creation,
> > or is it just a bit of cleanup that's always been below the cut line?
> I remember asking that question once before myself, but I don't remember
> what, if anything, the answer was. But I agree that using the tokens would
> be better than email a password in almost every case I can think of.
Looks like this bug is the answer:
Summary: it's just been below the cut line, and just fell below the cut
line for 2.20, but is targeted for 2.22.
More information about the developers