search

FusionAuth / fusionauth-issues

FusionAuth issue submission project
https://fusionauth.io
90 stars 12 forks source link

Compatibility with OpenID Shared Signals #2608

Open chrisobdam opened 5 months ago

chrisobdam commented 5 months ago

Compatibility with OpenID Shared Signals

Problem

Syncing data with services that use FA can be troublesome. The Shared Signals standard fixes that.

Solution

Implement Shared Signals https://openid.net/wg/sharedsignals/ "The Shared Signals Framework (SSF) improves API efficiency and security by providing privacy-protected, secure webhooks. It is in use by some of the largest cloud services to communicate security alerts and status changes of users, continuously and securely to prevent and mitigate security breaches. It is currently leveraged by two applications – the Continuous Access Evaluation Protocol (CAEP) and Risk Incident Sharing and Coordination (RISC) to achieve this result."

Related

mooreds commented 5 months ago

@chrisobdam which of the specifications would you like to see implemented?

chrisobdam commented 5 months ago

https://openid.net/specs/openid-sharedsignals-framework-1_0.html This bit. Usage of the CAEP Events.