Comments Johan Allard LiquidFiles Yes, something like this will definitely be implemented. On a practical note, the timestamp probably needs to be minutes (in UTC), like: 201107120039 and we can check 201107120038 and 201107120040 as well to give us a little bit of a time in case there's a lag or times slightly off. We can probably have the option of userid and email as well so the query string would be like: /sso_login?email=test@example.com&signature=4b0cbd7d07e4d373087b061fc4b9c5a14e32e5d2 where signature in this case would be made up of: SHA1(test@example.com + 201107120039 + <pre-shared key>) No ideas on timeframes or anything, but it's definitely bubbling there in the background July 13, 2011, 07:26 Johan Allard LiquidFiles This was added in 1.7. February 21, 2012, 14:21