ELMIT wrote:
I am sure it is not a Yubikey question. Is there another list for OpenId questions? However, it is more likely that you will need it with Yukikey.
As long as a yubikey is involved somewhere, I count it as on-topic. There are general openid lists, see openid.net.
Quote:
I want to that the user has only a short time before they have to use the yubikey again (1 min, 30 sec).
That makes sure that if we need to use OpenId for another site, the Yubikey has to present again.
Is such a function in the code?
We only provide code for the OpenID server -- and it seems the OpenID consumer would need to implement the auto-logout mechanism you want. Possibly there should be something in the OpenID standard that allows the server to inform the openid consumer to re-do authentication once in a while.
I agree it would be a highly useful addition to the openid protocol.
/Simon