openradar-mirror
commented
8 years ago Modified: 2016-01-30T16:11:06.342990
Open openradar-mirror opened 8 years ago
openradar-mirror
commented
8 years ago Modified: 2016-01-30T16:11:06.342990
openradar-mirror
commented
8 years ago Modified: 2016-01-30T16:11:06.342990
openradar-mirror
commented
8 years ago Modified: 2016-01-30T16:11:06.342990
Description
Many apps require the user to provide at least an email address and a password as part of their sign up process.
The users email address is already attached to their Apple ID and is typically available via the Contacts Framework (though not programatically identifiable to the app).
A unique password is also easily generated by the Shared Web Credentials SecCreateSharedWebCredentialPassword() call in the Security Framework.
Additionally, using the same Shared Web Credentials is it possible for a developer to get access to login details associated with an app and a website.
These technologies could be bought together into a new, powerful, but simple and secure, way for users to allow apps to generate accounts for them.
Additionally, in a similar manner to how the user has control over the data they share in the Apple Pay sheet, it should be possible for the user to choose what data they share with the app beyond the critical. For example; age, gender, location, address.
The steps would be quite simple
A new option in the Settings for the app would allow the user to revoke access, which the app would be requited to respect as part of the app review process/agreement.
I understand that some of this information is available via the CloudKit CKDiscoveredUserInfo class, which is a definitely help but still does achieve the full purpose this change, which is to facilitate rapid, secure and shared logins for apps and websites. Such a framework would conceivable be tied into this class.
Product Version: Created: 2016-01-30T15:41:34.015420 Originated: 2016-01-30T00:00:00 Open Radar Link: http://www.openradar.me/24425703