SPID login

[bhack]

Can we explore SPID login? A few months ago SPID was opened to private services.

SPID is under public RFC untill 12th Dec to be extended also for digital signature. As well as simplify the most complex component of the flow like id scan/shot, upload, verify etc. (see https://github.com/associazione-rousseau/camelot-flutter/issues/17) the near digital signature feature could let to the app to offer really interesting extra service. Just as an example try to figure out this technology with some law proposal like "Proposta di legge C. 1892".

[github-actions[bot]]

Thank you so much for filing your first issue from Associazione Rousseau!' first issue

[simone]

Following the prices, for 250.000 unique users, we should pay flat 200.000€ per year (0,8 € per user) https://www.agid.gov.it/sites/default/files/repository_files/all4_prezzariospid.pdf

Probably could have sense quite the opposite, Rousseau "could" became an accreditate SPID Identity Provider :-)

[bhack]

Do you know if the "Associazione Rousseau" is eligible to be an IDP"? Who can check this? I suppose that this would also calm down some of the controversy regarding the system, at least for the identity managment component.

[emanuelconunaemme]

Thank you so much! When we considered SPID, it was already the old pricing model, that was unsustainable. Now, reading the doc I'm thinking we might be able to use "login" (0.40 €) to actually do a registration, since with a login you can get enough user info (name, date of birth, place of birth and codice fiscale).

The protocol they use is Open ID Connect, which is the same we use. Plus, external "federation" is supported by keycloak (the open source sso we use). We did something similar when we had to import users from the old platform.

I'll propose this internally. In any case, this is mainly a backend change. On the client, we'll only need to support this alternative registration flow.

[bhack]

@emanuelconunaemme let us know after the "internal" check.

[bhack]

See also: https://www.agid.gov.it/it/agenzia/stampa-e-comunicazione/notizie/2019/06/21/spid-nuovo-tariffario-il-mercato-privato

[bhack]

So with the new pricing table attached to the previous article we have:

• Free 1000 unique user authentication at level 1 or 2 with every single IDP (i.e. poste, Tim etc.).
• 0,4 € starting from 1001th unique user autentication with the single IDP
• Acquiring a new user to the platform in registration mode cost 3,5 € for level 1-2.

[bhack]

Some very fresh news: https://www.agendadigitale.eu/cittadinanza-digitale/identita-digitale/spid-diventa-pubblico-e-gratuito-il-nuovo-scenario-nazionale-ed-europeo/

[emanuelconunaemme]

That's super cool! We should definitely integrate it. We don't have room now, but I'll try to get some programmer to work on that. Plus, keycloak allow external identities integration really easily. SPID also uses OpenID Connect. So, it shouldn't be too complicated.

[bhack]

Today refreshed analysys on the news: https://www.agendadigitale.eu/cittadinanza-digitale/identita-digitale/spid-a-gestione-pubblica-la-rivoluzione-nel-2020/

[bhack]

Finally: https://www.altalex.com/documents/news/2020/04/21/spid-linee-guida-firma-documenti-digitali