yi...@chromium.org, tanza...@chromium.org, cbies...@chromium.org
https://github.com/w3c-fedid/active-mode
Spec PR for the Mode API: https://github.com/w3c-fedid/FedCM/pull/660
Spec PR for the Use Another Account API: https://github.com/w3c-fedid/FedCM/pull/678
We intend to ship two new extensions for FedCM to address two issue that were collectively identified as CR blockers by the FedID WG: “A not-yet logged in IDP has no route to success” and “Allow signing in to additional account(s)”.
To address this issue, we intend to introduce the following extensions to FedCM:
- Mode: The “active” mode allows websites to call FedCM inside a button click (e.g. clicking on a “Sign-in to IdP” button), which requires FedCM to guarantee it will always respond with a visible user interface (as opposed to in “passive” mode, which doesn’t show any UI when users are logged out). So, calling the FedCM API in “active mode” takes users to login to the Identity Provider (IdP) when users are logged-out. Also, because the active mode is called within an explicit user gesture, the UI is also more prominent (e.g. centered and modal) compared to the UI from the passive mode (which doesn’t require a user gesture requirement and can be called on page load).
- Use Other Account: With this extension, an IdP can allow users to sign in to other accounts.
In addition, the APIs are solving two related CR blockers identified by the FedID WG.
Feedback from Origin Trial:
We ran the Origin Trial with 30+ registrants. The feedback we got was positive.
From the extension’s perspective, this proposal is sufficient to assist the users who are not signed in to their IdP when FedCM extension is invoked. We also renamed the extension from “button” mode to “active” mode to untie from certain UI affordances which was well received by partners as well.
From UX’s perspective, we have been iterating on the Chrome implementation based on feedback to address potential usability issues and provide users better context about their login.
https://github.com/w3ctag/design-reviews/issues/935
Pending
FedCmButtonMode, FedCmUseOtherAccount
https://developers.google.com/privacy-sandbox/blog/fedcm-chrome-125-updates#button-mode-api
kFedCmButtonMode, kFedCmUseOtherAccount
Gecko: Not filing a standards position request for small additions at the explicit request from Firefox (they prefer PRs). Positive on the “active” mode based on TPAC discussions and GitHub issues.
WebKit: No signal on the particular FedCM extensions. Positive on the initial FedCM API. Standards position requests for FedCM extensions have been merged so not filing a new one.
Web developers: Positive These features are being developed to address existing feedback for the FedCM API.
Other signals: N/A
This feature, specifically, is one that can be currently controlled by JS SDKs, so we expect activation to have a similar profile as FedCM: immediately enabled to websites (without redeployment) by IdPs making use of it (by redeploying their JS SDKs).
It’s worth noting that the pop-up window has the same web platform properties as what one would get with window.open(url,””,”popup,noopener,noreferrer”)) that loads the login_url. There's no communication between the website and this pop-up is allowed (e.g. no postMessage, no window.opener).
Does this intent deprecate or change behavior of existing APIs, such that it has potentially high risk for Android WebView-based applications?
None
Same as FedCM in general – console messages in devtools and general JS debugging. e.g. we show messages when transient activation is missing when invoking an active mode, or when a passive flow is terminated in favor of an active flow etc.
No, FedCM API is not available in WebView
FedCmButtonMode, FedCmUseOtherAccount
FedCmButtonMode, FedCmUseOtherAccount
True
https://crbug.com/1490588, https://crbug.com/40939658
https://launch.corp.google.com/launch/4348674
https://fedcm-button.glitch.me
Open questions about a feature may be a source of future web compat or interop issues. Please list open issues (e.g. links to known github issues in the project for the feature specification) whose resolution may introduce web compat/interop risk (e.g., changing to naming or structure of the API in a non-backward-compatible way).
None
https://chromestatus.com/feature/4689551782313984?gate=4942283999019008
Intent to Prototype: https://groups.google.com/a/chromium.org/d/msgid/blink-dev/CACh2XCPzJ1beiSbsmQqvu9x24zmf6LkGuup%3DgPVyXEx%2Bux9%3Dyg%40mail.gmail.com
Intent to Experiment: https://groups.google.com/a/chromium.org/d/msgid/blink-dev/1745ebe7-6c98-49c7-9d98-94b25d39b409n%40chromium.org
Intent to Extend Experiment 1: https://groups.google.com/a/chromium.org/g/blink-dev/c/bQqXXv2S9q0/m/yHvhuFL3AQAJ
Intent to Extend Experiment 2: https://groups.google.com/a/chromium.org/d/msgid/blink-dev/CACh2XCMPQ9s2hUR2UYuTTkRDra0qfjxBXA0bOme2baQGbPE6NA%40mail.gmail.comContact emails
yi...@chromium.org, tanza...@chromium.org, cbies...@chromium.org
Explainer
https://github.com/w3c-fedid/active-mode
Specification
Spec PR for the Mode API: https://github.com/w3c-fedid/FedCM/pull/660
Spec PR for the Use Another Account API: https://github.com/w3c-fedid/FedCM/pull/678
--
You received this message because you are subscribed to the Google Groups "blink-dev" group.
To unsubscribe from this group and stop receiving emails from it, send an email to blink-dev+...@chromium.org.
To view this discussion visit https://groups.google.com/a/chromium.org/d/msgid/blink-dev/CAK9HhFkgmbC_UG8G5yYguB609UZY%3DV66qrJrVor3PdStbadY6g%40mail.gmail.com.
You received this message because you are subscribed to the Google Groups "web-identity-core" group.
To unsubscribe from this group and stop receiving emails from it, send an email to web-identity-c...@google.com.
To view this discussion visit https://groups.google.com/a/google.com/d/msgid/web-identity-core/CAOMQ%2Bw90Jj7RBzmjrrQFD274KthUpLLQ5u_XxvOxYHECzquxQQ%40mail.gmail.com.
For more options, visit https://groups.google.com/a/google.com/d/optout.
--
You received this message because you are subscribed to the Google Groups "web-identity-xfn" group.
To unsubscribe from this group and stop receiving emails from it, send an email to web-identity-x...@google.com.
To view this discussion visit https://groups.google.com/a/google.com/d/msgid/web-identity-xfn/CAOMQ%2Bw90Jj7RBzmjrrQFD274KthUpLLQ5u_XxvOxYHECzquxQQ%40mail.gmail.com.
For more options, visit https://groups.google.com/a/google.com/d/optout.
Hi Chris,Similar to the other I2S, our team is working with the FedID Working Group for standard work. At TPAC the proposals got the approval to advance to stage 2. Since then we brought the spec PRs to the WG calls a couple of times and people are generally aligned. Since the WG is newly formed this year, the chairs and members are collaborating to streamline procedures such as merging spec PRs and we are in the middle of the process.YiOn Wed, Nov 13, 2024 at 11:27 AM Chris Harrelson <chri...@chromium.org> wrote:
On Thu, Nov 7, 2024 at 2:37 PM Zachary Tan <tanza...@chromium.org> wrote:
Contact emails
yi...@chromium.org, tanzachary@chromium.org, cbiesinger@chromium.org
To unsubscribe from this group and stop receiving emails from it, send an email to blink-dev+unsubscribe@chromium.org.
--
You received this message because you are subscribed to the Google Groups "web-identity-core" group.
To unsubscribe from this group and stop receiving emails from it, send an email to web-identity-core+unsubscribe@google.com.
To view this discussion visit https://groups.google.com/a/google.com/d/msgid/web-identity-core/CAOMQ%2Bw90Jj7RBzmjrrQFD274KthUpLLQ5u_XxvOxYHECzquxQQ%40mail.gmail.com.
For more options, visit https://groups.google.com/a/google.com/d/optout.
--
You received this message because you are subscribed to the Google Groups "web-identity-xfn" group.
To unsubscribe from this group and stop receiving emails from it, send an email to web-identity-xfn+unsubscribe@google.com.