Hi - in testing the module with Drupal 5.1 I found a few usability concerns - perhaps these have been addressed in Drupal 6?

They mostly stem from the fact that there ought to be a separation between authentication and account, such that the OpenID used for authentication is not the same as the Drupal username, perhaps using a table such as:

create table user_openids (
        openid_url varchar(255) not null,
        primary key (openid_url),

        user_id int not null,
        index (user_id)
);

This would, among other things, help solve some of the usability problems with the current implementation, which include:

  • One should be able to choose their nickname upon registration with an OpenID, as long as the nickname does not match the regex of an OpenID, at least not one that doesn't belong to the registering user
  • After logging in with =iname I can't add an email address or bestow admin role access to the =iname user, as "The username contains an illegal character."
  • An email address must be attached to the OpenID at http://name.myopenid.com or the error "E-mail address field is required." is returned
  • There's no OpenID field on the user/register page

I'll keep testing, and I'll try to pull a more stable copy of Drupal 6 for testing where some of these changes may have been incorporated.

Hope this helps - and thanks!
=Fen

Comments

walkah’s picture

Status: Active » Fixed

there has always been separation between the openid and the account - check hte {authmap} table.

I believe your other concerns have been addressed in the latest version.

Anonymous’s picture

Status: Fixed » Closed (fixed)