[webkit-dev] Request for position on FedCM (was WebID)

Sam Goto goto at google.com
Fri Mar 25 11:16:49 PDT 2022

That's great to hear, Alex!!

On FedCM, any suggestions / recommendations on where to go from here? We
typically conduct our work at the FedID CG (and sporadically attend the
Privacy CG, so both are good options for us to work together) and I hear
that Tess is going through the requirements for Apple to join the FedID CG,
so maybe we can start by agenda+-ing sometime to hear from you all where
you stand on FedCM and gather early guidance / requirements at the Privacy
CG? Thoughts on where to go from here?

On Passkeys, we are ourselves super excited about passkeys and would very
much like to see it coexist and succeed with FedCM! We've been working with
Ken Buchanan, Adam Langley and Dirk Balfanz through the process of
developing FedCM to make sure there is alignment between the two (and so
far we believe there is a lot of synergy), but we never met anyone
externally about the intersection.

Again, any suggestions/recommendations on where to go from here? Would it
be useful to come by sometime to the FIDO/WebAuthn meetings and say "hi"
and go from there?


On Wed, Mar 23, 2022 at 2:36 PM Alex Christensen <achristensen at apple.com>

> We are generally supportive and interested in working together to make
> this coexist well with passkeys.
> On Mar 10, 2022, at 3:42 PM, Sam Goto via webkit-dev <
> webkit-dev at lists.webkit.org> wrote:
> Hi WebKit-Dev,
> We've been working on a Web Platform API that allows users to login to
> websites with their federated accounts in a privacy preserving manner.
> We've been calling it FedCM (was WebID) and we would like to hear what you
> think!
> Here is our explainer, spec and a brief introduction:
>    - explainer <https://github.com/fedidcg/FedCM/blob/main/explainer.md>
>    - specification <https://fedidcg.github.io/FedCM/>
>    - TPAC2021
>    <https://watch.videodelivery.net/29bab61e04e8cabf1517e5885c9fe4cf> presentation
>    (video introduction)
> One specific area of coordination is its relationship to the Login Status
> API and the Storage Access API. We'd be happy to learn more from you about
> both of these APIs and how they relate to FedCM, but just as a starting
> point, here [1
> <https://github.com/fedidcg/FedCM/blob/main/explainer.md#the--login-status-api>,
> 2
> <https://github.com/fedidcg/FedCM/blob/main/explainer.md#the-storage-access-api>]
> is our interpretation of each.
> Looking forward to hearing from you,
> Sam
> Various other past reviews:
>    - WebID? <https://github.com/fedidcg/FedCM/issues/41>
>    - WICG thread
>    <https://discourse.wicg.io/t/proposal-webid-privacy-preserving-federated-sign-in-api/4661>
>    - Federation and Browsers Workshop
>    <https://github.com/fedidcg/FedCM/blob/main/meetings/2021/25-26_May_2021.md>
>    - Intent To Prototype
>    <https://groups.google.com/a/chromium.org/g/blink-dev/c/2B4TJ7j2U4M/m/1X5T3OszCAAJ>
>    - FedID CG <https://www.w3.org/community/fed-id/>
>    - early TAG review
>    <https://github.com/w3ctag/design-reviews/issues/622>
>    - Ready For Trial
>    <https://groups.google.com/a/chromium.org/g/blink-dev/c/jlV_1m7uUAg>
>    - spec TAG review <https://github.com/w3ctag/design-reviews/issues/718>
>    - Mozilla's Standards Position
>    <https://github.com/mozilla/standards-positions/issues/618>
> _______________________________________________
> webkit-dev mailing list
> webkit-dev at lists.webkit.org
> https://lists.webkit.org/mailman/listinfo/webkit-dev
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-dev/attachments/20220325/1d570cda/attachment.htm>

More information about the webkit-dev mailing list