JGate Blog

There are many advantages when a site offers OpenID or OAuth for login. Signup is instant and the users don't have to rember a new user name and/or a new password. For additional security an user can opt for two-factor authentication, which is offered by Google's federated login.

When a site accepts passwords, it is responsible to keep them secure. As many users reuse passwords, a security breach can cause broader damage, if a site uses unsalted hashes or wrong hash algorithms.

When using OpenID, there is no need to store any passwords. There are ready-made solutions for nearly every programming language. See: http://wiki.openid.net/w/page/12995176/Libraries

We added openid4java to the AppJet native API so that every AppJet application can now use OpenID and act as an OpenID consumer. The lib-login library can be used as a drop-in replacement for the lib-rpx library which does the same but relies on a third-party service (Jan Rain). Lib-login additionally supports Twitter's OAuth variant for authentication.