Martin von Löwis avatar Martin von Löwis committed 72b80d7

Document is_op_endpoint.

Comments (0)

Files changed (2)

 Terminology
 -----------
 
-A *user* tries to authenticate to a *Relying Party (RP)*, referring to an
-OpenID *Provider (OP)* for verification. The objective is to assert
+A *user* tries to authenticate to a *Relying Party (RP)*, referring to
+an OpenID *Provider (OP)* for verification. The objective is to assert
 that the user owns his *claimed identifier*. He can either type in
-that claimed identifier during login, or select a *provider
-identifier* instead.
+that claimed identifier during login, or select a *OP identifier*
+instead (in which case the provider will identify the user first, and
+report the claimed identifier to the RP).
 
 For any identifier entered by the user, *normalization* must be
 performed. This will add an http: prefix, missing slashes,
 
   Callers must check openid.response_nonce for replay attacks.
 
+Discovery Utility Functions
+---------------------------
+
+.. function:: is_op_endpoint(services) -> bool
+
+   Determine whether the discovered identifier is an OP identifier or
+   a claimed identifier. XXX this should be called is_op_identifier.
+
 Response Utility Functions
 --------------------------
 
         if uri in services:
             return True
     return False
+is_op_identifier = is_op_endpoint
 
 # 4.1.3: Binary two's complement
 def btwoc(l):
Tip: Filter by directory path e.g. /media app.js to search for public/media/app.js.
Tip: Use camelCasing e.g. ProjME to search for ProjectModifiedEvent.java.
Tip: Filter by extension type e.g. /repo .js to search for all .js files in the /repo directory.
Tip: Separate your search with spaces e.g. /ssh pom.xml to search for src/ssh/pom.xml.
Tip: Use ↑ and ↓ arrow keys to navigate and return to view the file.
Tip: You can also navigate files with Ctrl+j (next) and Ctrl+k (previous) and view the file with Ctrl+o.
Tip: You can also navigate files with Alt+j (next) and Alt+k (previous) and view the file with Alt+o.