issues
search
fedidcg
/
FedCM
A privacy preserving identity exchange Web API
https://fedidcg.github.io/FedCM
Other
357
stars
66
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Make it easier to deploy this at the eTLD+1 for registered IdPs
#620
aaronpk
opened
3 days ago
0
Make it clearer that IdP needs to check Sec-Fetch-Dest
#619
npm1
opened
1 week ago
2
Support chained authentication flows before reducing heuristics and classifications/lists in navigational tracking mitigations
#618
judielaine
opened
1 week ago
1
Support signing in with an IdP using a redirection
#617
embesozzi
opened
1 week ago
2
Once `params` are merged into the spec, deprecate the `nonce` parameter
#616
samuelgoto
opened
1 week ago
0
In addition to "use", "continue", "signin" and "signup", consider adding "pay" or "checkout"
#615
samuelgoto
opened
2 weeks ago
0
Skip the .well-known check for Registered IdPs
#613
anderspitman
opened
2 weeks ago
34
Move the WPTs out of the credential-manager directory
#611
samuelgoto
opened
3 weeks ago
0
Specify the webdriver command to open terms of service and privacy po…
#610
cbiesinger
opened
4 weeks ago
0
Spec says we send SameSite=Strict cookies
#609
cbiesinger
opened
4 weeks ago
0
Error fetching the accounts list from localhost
#608
samuelgoto
opened
4 weeks ago
2
Validate email addresses before displaying them
#607
samuelgoto
opened
1 month ago
2
IdP Registration API: allow enumerating all registered `configURL`s
#606
samuelgoto
opened
1 month ago
7
IdP Registration API: should the browser reveal to the RP when no IdP has registered before?
#605
samuelgoto
opened
1 month ago
2
infinite `login_url` loop when hints are not met
#604
panva
opened
1 month ago
7
is `IdentityCredentialRequestOptionsContext` for FedCM UI only?
#603
panva
opened
1 month ago
5
`login_url` lacks a mode hint
#602
panva
opened
1 month ago
2
FedCM IdP error responses
#601
panva
opened
1 month ago
5
Account picture formats
#600
obfuscoder
opened
1 month ago
1
OAuth profile for FedCM
#599
aaronpk
opened
1 month ago
10
Client authentication and consent creation
#598
yaron-zehavi
opened
1 month ago
12
Bug - FedCM shows only 1st account after login
#597
yaron-zehavi
closed
1 month ago
5
The Multi IdP API: handle slow IdPs gracefully
#596
samuelgoto
opened
1 month ago
1
FedCM privacy concerns
#595
anderspitman
closed
1 month ago
20
The Registration API: Consider not making requests to unknown login status
#594
cbiesinger
opened
1 month ago
7
The Registration API: Remove the user gesture requirement behind `IdentityProvider.register()`
#593
samuelgoto
opened
1 month ago
7
Send `Accept-Language` in the HTTP requests
#592
samuelgoto
opened
1 month ago
9
Question: why use terms_of_service_url instead of tos_uri?
#591
ThisIsMissEm
closed
1 month ago
2
Add `interaction_required` error response
#590
aaronpk
opened
1 month ago
17
Relax the mimetype check of the .well-known/web-identity file
#589
samuelgoto
opened
1 month ago
0
Reset "Not signed in with the identity provider"
#588
anderspitman
closed
1 month ago
3
Why must SameSite=none?
#587
anderspitman
opened
1 month ago
30
In `any` mode, make the browser automatically generate `clientId` based on the RP's origin when omitted
#586
samuelgoto
closed
2 weeks ago
15
Allow IdP registration and RPs to match on a "type"
#585
aaronpk
opened
1 month ago
92
Add optional `token_endpoint` to IdP config
#584
aaronpk
closed
1 month ago
4
Remove note on IdP to validate nonce (#582)
#583
obfuscoder
closed
1 month ago
5
FedCM spec: IdP should validate nonce to prevent CSRF?
#582
obfuscoder
closed
1 week ago
11
Allow RPs to provide their own terms of service and privacy policy URLs for "configURL: any" option
#581
aaronpk
opened
1 month ago
8
DNS option instead of well-known URI
#580
aaronpk
opened
1 month ago
7
The name "token" seem to imply that only ID Tokens can be passed back to RPs
#579
samuelgoto
closed
1 week ago
13
Allow IdPs to return JSON objects rather than Strings back to RPs
#578
samuelgoto
opened
1 month ago
6
FedSub Domin
#577
cklim5
closed
1 month ago
1
How do you see the API per RP working? The API comes from the `fedcm.json` file which is served without credentials and without client_id or referrer information. How does the IDP provide differing RP information to FedCM?
#576
cklim5
closed
1 month ago
1
Allow showing the widget UI for logged-out users
#575
cbiesinger
opened
1 month ago
0
Add sections for the continuation API bundle to the HOWTO
#574
cbiesinger
closed
1 month ago
0
Create debug-network-requests-chrome.md
#573
yi-gu
closed
1 month ago
0
DPoP support
#572
thhck
closed
1 month ago
9
configURL on different subdomain than other endpoints
#571
obfuscoder
opened
1 month ago
2
Is FedCM (currently) compatible with CredMan?
#569
dolda2000
closed
1 month ago
1
The invisible UI is kinda weird
#568
dolda2000
closed
1 month ago
8
Next