Example BrowserID Relying Party
This is the simplest possible (stateless, static, client-only) BrowserID Relying Party. It
demonstrates the steps required to use BrowserID to verify the identity of a user.
Click here to kick off the party. Here's what will happen:
1.
Browser Interaction: Upon clicking the link above, the webpage will call navigator.id.getVerifiedEmail() to indicate to the browser that it would like an identity for the user
2.
User Interaction: The browser will spawn a dialog that the user can interact with the select what identity they want to provide to the site
3.
Assertion Generation: Upon selection of an identity, an assertion will be returned to the webpage via a callback, it looks like this:
...waiting for party commencement...
4.
Assertion Verification: This site can then send that assertion up to a verification server which cryptographically checks that the identity embedded in the verification actually belongs to the browser in use by the monkey at the keyboard. The request looks like
...waiting for party commencement...
5.
Verification Response: The verification server responds to the site to tell it whether or not the verification blob is valid:
...waiting for party commencement...
6.
All Done! The site can now create an account keyed on the users identity (email address), set cookies, etc! Logging in again is just re-running these same steps.