[webfinger] Vision for Webfinger - what are we doing?

Eric Mill <eric@konklone.com> Tue, 15 October 2013 03:22 UTC

Return-Path: <konklone@gmail.com>
X-Original-To: webfinger@ietfa.amsl.com
Delivered-To: webfinger@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 975E421E814A for <webfinger@ietfa.amsl.com>; Mon, 14 Oct 2013 20:22:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.977
X-Spam-Level:
X-Spam-Status: No, score=-1.977 tagged_above=-999 required=5 tests=[AWL=-0.000, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, NO_RELAYS=-0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id A2G7amt0Q6br for <webfinger@ietfa.amsl.com>; Mon, 14 Oct 2013 20:22:17 -0700 (PDT)
Received: from mail-ee0-x234.google.com (mail-ee0-x234.google.com [IPv6:2a00:1450:4013:c00::234]) by ietfa.amsl.com (Postfix) with ESMTP id F092421E8146 for <webfinger@ietf.org>; Mon, 14 Oct 2013 20:22:16 -0700 (PDT)
Received: by mail-ee0-f52.google.com with SMTP id c41so3738540eek.39 for <webfinger@ietf.org>; Mon, 14 Oct 2013 20:22:14 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:from:date:message-id:subject:to:content-type; bh=fySr7fon0mtaCA59ORai/5FYFnifbi2KTNTaNpDpryQ=; b=bb5jkyX8dEtmmVxVuIF6m/3aIUhoqM6tAskFK7aFjJhavoB1s8cdCnNYRnCrP5W76f njUUag1kehVcotLNN+SZHS9iABfk5/NEaXA0mOMoFaKdmSMpGcKAvUXWW/t5vTk9pq9C yNFMWRiTvCr3yoeivX4o8t+KspZwGJ7RxAIQh+5QuM+DF0Rfdq0AF3d6ssEeRFYjNHxO 4y9awEEHCVmukvRQ9H+QMIEi1j2wboEuRKbMM9Z4EhHYSIbTFEfO0FlqjNsPx0owpyj+ tV6UJ4g9UJ5HnectJTjpDkHUnfX+wCVmMHQQLbA+SwQJth4OEQxuYKHPghJWLWFXarSI muug==
X-Received: by 10.15.98.194 with SMTP id bj42mr62017498eeb.12.1381807334318; Mon, 14 Oct 2013 20:22:14 -0700 (PDT)
MIME-Version: 1.0
Sender: konklone@gmail.com
Received: by 10.223.167.69 with HTTP; Mon, 14 Oct 2013 20:21:33 -0700 (PDT)
From: Eric Mill <eric@konklone.com>
Date: Mon, 14 Oct 2013 23:21:33 -0400
X-Google-Sender-Auth: 94QPF3d08hEFe0pDGcYPGV_rim0
Message-ID: <CANBOYLVNwmneMiNaM+7DGm+UyDbZBhhcX15b=CeNoZgxf+oEDw@mail.gmail.com>
To: "webfinger@ietf.org" <webfinger@ietf.org>, webfinger@googlegroups.com
Content-Type: multipart/alternative; boundary=089e0160cd884f664204e8bf1738
Subject: [webfinger] Vision for Webfinger - what are we doing?
X-BeenThere: webfinger@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Discussion of the Webfinger protocol proposal in the Applications Area <webfinger.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/webfinger>, <mailto:webfinger-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/webfinger>
List-Post: <mailto:webfinger@ietf.org>
List-Help: <mailto:webfinger-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/webfinger>, <mailto:webfinger-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 15 Oct 2013 03:22:19 -0000

Hey all,

I was at a hackathon
<http://fedscoop.com/code-dc-calls-furloughed-feds/> today,
and spent the day working on Webfinger libraries for
Sinatra<https://github.com/konklone/sinatra-webfinger>and
Jekyll <https://github.com/konklone/jekyll-webfinger>. It was really
productive, but -- at the end of the day, a reporter was there asking
everybody questions about their projects.

When he asked what Webfinger was for, I realized that the original
easy-to-communicate killer app for Webfinger, easing universal login
through OpenID,
was<http://productblogarchive.37signals.com/products/2011/01/well-be-retiring-our-support-of-openid-on-may-1.html>
dead <https://www.myopenid.com/>. The only thing I could think to say was
"Remember OpenID? Before it died? Well, this is a piece of the puzzle to
putting something like that back together again."

That didn't feel like a very impressive answer. So, now that OpenID is
dead, what's the one line explanation for why Webfinger is important?
What's the path forward to making Webfinger something people are
incentivized to support?

Should we be pushing really hard to resuscitate OpenID via OpenID Connect?
Do we just need to wait for internal lobbying inside of
Google/Microsoft/Twitter/etc to pay off in some announcement? I know
Webfinger supports more than email lookup -- is there some particular
killer app people were envisioning when they lobbied for that feature?

I'm so happy there's finally an RFC, after so many years. I recognize how
much work was put in to make that happen, and this shouldn't be taken as a
criticism of anyone. I just want to know what others see for the future of
Webfinger, and what I should do next.

-- Eric

-- 
konklone.com | @konklone <https://twitter.com/konklone>