Ready for Trial: Federated Credentials Management API (was WebID)
Sam Goto
Contact emails
Explainer
https://github.com/fedidcg/FedCM
Specification
https://fedidcg.github.io/FedCM/
Design docs
https://github.com/fedidcg/FedCM
Summary
A Web Platform API that allows users to login to websites with their federated accounts in a privacy preserving manner.
Blink component
TAG review
https://github.com/w3ctag/design-reviews/issues/622 (early TAG review, deeper dive next)
TAG review status
Pending
Risks
Interoperability and Compatibility
Zero compatibility risk (new API)
Interoperability risk not yet known, currently working on getting formal signals
Gecko: No signal
WebKit: No signal
Web developers: No signals
Other signals: This proposal has been presented in TPAC 2022/2021 and the last two BlinkOn sessions. This API was initially incubated at the WICG and is now being developed within the FedID CG with attendance of identity providers, browser vendors and standards experts.
Goals for experimentation
Learn about demand, requirements, ergonomics and deployment viability.
Ongoing technical constraints
Currently, limited Android only implementation
Currently, only ID tokens provided, no access or refresh tokens
Currently, limited session management functionality (only front-channel logout)
Debuggability
Basic devtools integration supported (tracking bug, HOWTO). More to come as we learn.
Will this feature be supported on all six Blink platforms (Windows, Mac, Linux, Chrome OS, Android, and Android WebView)?
At I2S, we expect the feature to be available on all platforms (Windows, Mac, Linux, ChromeOS and Android) but WebView. The current implementation is currently only supported on Android, with Desktop (Windows/Mac/Linux/ChromeOS) coming next.
Is this feature fully tested by web-platform-tests?
Yes
DevTrial instructions
https://github.com/fedidcg/FedCM/blob/main/explainer/HOWTO.md
Flag name
fedcm
Requires code in //chrome?
True
Tracking bug
https://bugs.chromium.org/p/chromium/issues/detail?id=1216142
Launch bug
https://bugs.chromium.org/p/chromium/issues/detail?id=1216142
Estimated milestones
Devtrial on Desktop 104
OriginTrial on Android 101
DevTrial on Android 100
Link to entry on the Chrome Platform Status
https://chromestatus.com/feature/6438627087220736
Links to previous Intent discussions
Intent to prototype: https://groups.google.com/a/chromium.org/g/blink-dev/c/2B4TJ7j2U4M/m/1X5T3OszCAAJ
This intent message was generated by Chrome Platform Status.
Ian Kilpatrick
Contact emails
Explainer
https://github.com/fedidcg/FedCM
Specification
https://fedidcg.github.io/FedCM/
Design docs
https://github.com/fedidcg/FedCM
Summary
A Web Platform API that allows users to login to websites with their federated accounts in a privacy preserving manner.
Blink component
--
You received this message because you are subscribed to the Google Groups "blink-dev" group.
To unsubscribe from this group and stop receiving emails from it, send an email to blink-dev+...@chromium.org.
To view this discussion on the web visit https://groups.google.com/a/chromium.org/d/msgid/blink-dev/CALdEk-xvmkkTbnhxO-8oX3G5E1%2BjvvNQ2xAf4TozWZbmi47eEA%40mail.gmail.com.
Sam Goto
On Tue, Feb 15, 2022 at 8:59 AM Sam Goto <go...@chromium.org> wrote:Contact emails
Explainer
https://github.com/fedidcg/FedCM
Specification
https://fedidcg.github.io/FedCM/
Design docs
https://github.com/fedidcg/FedCM
Summary
A Web Platform API that allows users to login to websites with their federated accounts in a privacy preserving manner.
Blink component
Should this component be Blink>SecurityFeature>CredentialManagement ?
Ian Kilpatrick
Balazs Engedy
To unsubscribe from this group and stop receiving emails from it, send an email to blink-dev+unsubscribe@chromium.org.
Sam Goto
To unsubscribe from this group and stop receiving emails from it, send an email to blink-dev+...@chromium.org.