[x] There's evidence the domains are currently related (SSL certificates, DNS entries, valid links between sites, legal documents etc.)
[ ] If using shared, the new group serves login pages on each of the included domains, and those login pages accept accounts from the others. (For example, we wouldn't use a shared association from google.co.il to google.com, because google.co.il redirects to accounts.google.com for sign in.)
[ ] If using from and to, the new group, the from domain(s) redirect to the to domain to log in.
Heroku uses verify.salesforce.com for TOTP validation. If I understood the file syntax correctly, this change would allow password managers to suggest TOTP from Heroku credentials when the user is on verify.salesforce.com.
rmondello
commented
1 month ago
Overall Checklist
for shared-credentials.json
shared, the new group serves login pages on each of the included domains, and those login pages accept accounts from the others. (For example, we wouldn't use asharedassociation fromgoogle.co.iltogoogle.com, becausegoogle.co.ilredirects toaccounts.google.comfor sign in.)fromandto, the new group, thefromdomain(s) redirect to thetodomain to log in.Hello! This is my attempt to fix https://github.com/apple/password-manager-resources/issues/695
Heroku uses
verify.salesforce.comfor TOTP validation. If I understood the file syntax correctly, this change would allow password managers to suggest TOTP from Heroku credentials when the user is onverify.salesforce.com.