The state of openID third party login integration on WordPress
Last week a friend of mine asked me why count’t I simply do the same authentication scheme as on Blogger? From a user’s point of view, it made some sense: why have one more login, in as many sites. Well, from a security point of view, it may also make sense. On the aftermath of the Linkedinscandal, where around 9 million hashed passwords were disclosed, and about 2 million passwords were recovered, I wouldn’t feel confortable having another unprotected database containing sensitive user data, even if that database was mine. It’s far better to have Google, Facebook or Microsoft handle …