[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [security-services] Official statement to W3C WG about impact on SAML?
I'm sorry for being so late to this thread. I'm supportive of the SSTC weighing in on this issue with the W3C, but my sense is that it's really Chrome and Firefox (and Safari, but they are being typically "Apple coy" about participating in any of this at the
moment) that need convincing, and a number of us have been regularly meeting with the former two parties, plus Microsoft, to good effect. We had a half-day side meeting at IIW two weeks ago, and got to a fairly decent place w/r/t unlocking browser functionality
in support of enabling SAML/OIDC transactions to proceed if blessed by the user. We plan to get back together for another three hour focus session mid-summer, and reconvene at IIW in the fall. Hopefully somewhere along the way, the Chrome team and / or Firefox
team will have time to ship a pre-release version of an updated navigator.credentials.get() (or similar) that will enable this functionality. Then we can play with it and see if it actually does what we need it to do, and how much of a UX hit it is.
Nicole
From: security-services@lists.oasis-open.org <security-services@lists.oasis-open.org> on behalf of Hal Lockhart <harold.w.lochhart@gmail.com>
Sent: Thursday, March 30, 2023 3:25 PM To: Cantor, Scott <cantor.2@osu.edu> Cc: SAML <security-services@lists.oasis-open.org> Subject: Re: [security-services] Official statement to W3C WG about impact on SAML? I agree about a transition period being mandatory. This implies that there is a handshake to discover which mode is being used on a per user basis and that the Idp can simultaneously support connections of both types.
This doesn't mean all existing mechanisms (e.g. 3rd party cookies) have to work, but all user visible functionality has to still work.
Hal
On Thu, Mar 30, 2023 at 3:41âPM Cantor, Scott <cantor.2@osu.edu> wrote:
> My main goal is to understand the basic issues: What is the new architecture? |
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]