I'm designing a new web application. Some quick points on it:
- ASP.NET MVC Web Application
- SQL Server 2008
- Entity Framework ORM
- 3 User Roles: Anonymous, Registered, Administrators.
- Anonymous users can view stuff, Registered Users can post stuff, Admins can do anything
- Heavy social integration with Facebook, Twitter and the like.
- I plan to use OpenId for authentication (DotNetOpenAuth)
So, pretty simple right? (famous last words)
Now my question is:
Should i provide OpenId as the only means of authentication, or should i also give the user the option to log in using my own authentication system?
So this is basically a "User Experience" question. Take the example of StackOverflow - you MUST signup with OpenId. It seemed fine to me, but what about the general public? Can i be happy with the fact that a user of my site must have an OpenId account? (or signup for one before using my site)
Is giving the user two options to login bad UX?
I realize this is a partially subjective question, but im just looking for advice on which road to take, some case studies would be helpful.
Thanks.