Federated Credential Managment components for the Authnomicon project.
Federated Credential Management (FedCM) is a privacy-preserving approach to federated identity. It consists of a client-side JavaScript API and an HTTP-based API. The JavaScript API is called by a website via a script executing in the browser, and is used to sign a user in using their identity provider (IDP). The HTTP API is a set of endpoints implemented by the IDP, which are requested by the browser during the sign in ceremony.
The browser mediates the user interaction between the website and the IDP, which enhances privacy relative to traditional federated identity protocols such as OpenID Connect and SAML, which operate using redirects, iframes, or other mechanisms that rely on third- party cookies (which, unfortunately, are also abused to track users).
This package provides components that implement the HTTP-based API, which are used when building a FedCM-compatible IDP.
Developed by Jared Hanson.
// https://blog.timcappalli.me/p/preso-osw24-fedcm101/ // https://blog.timcappalli.me/p/preso-osw24-fedcm101/OSW24-FedCM101.pdf // https://oauth.secworkshop.events/osw2024/agenda-thursday-osw-2024
- Jared Hanson { }
Copyright (c) Jared Hanson