I'm a little confused at how the process could be any clearer. Just trying to register on your site, I'm asked to enter my email address. Upon providing a gmail address, I'm redirected to a Google OpenID page. It specifically says that your site will be granted access to my email address, no more. By clicking yes (without being asked to enter my password anywhere) I'm authenticated.
Thanks for the kind words! For most people, it works exactly like you described. Unfortunately, there are some rough corner cases for folks with multiple Gmail addresses, and the experience is less-than-stellar if you're not logged into Google at all when you start.
(We do have patches ready for those issues. They'll go live as soon as we work out some deployment kinks and finish upgrading our production servers to Node 0.10.)
Is it documented that there is some rough cases that are still being worked on? Diving off from https://developer.mozilla.org/en-US/Persona I don't seem to see a summary of the real world state of play.
(Just mentioning this as I think it might help adoption if the project is more upfront about rough edges.)
I was asking why there is not (or at least not that I've found) a summary of the state of play in a prominent place.
I could have read through several hundred issues to determine that I'd run into some rough edges with these bridges and that perhaps I should come back later. Instead I find these rough edges when I dive-in, and now I wonder what other shortcomings are not being mentioned with the same gusto as the projects wins.
really? you've never seen the countless amount of "connect with <facebook|google|yahoo>" using oauth?
They have one step less, are totally not federated, don't allow you to use your own email and have a bunch of downsides for the user.
But they are simpler.
(also, I remember logging in with yahoo/google email+openid years ago, that was exactly as simple)
I've never used a more simple SSO system before.