this post was submitted on 29 Sep 2021
16 points (100.0% liked)
Fediverse
18153 readers
14 users here now
A community dedicated to fediverse news and discussion.
Fediverse is a portmanteau of "federation" and "universe".
Getting started on Fediverse;
- What is the fediverse?
- Fediverse Platforms
- How to run your own community
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Isn't this exactly what OpenID Connect is/was all about? Afaik this is still the protocol behind the "log in with facebook/google/github" options you find on many websites, but it can be a fully decentralised authentication scheme if they'd only let users type in their own identity url.
IMHO while often called federated authentification, OIDC is more delegated authentication especially when a few central services are used.
The older OpenID standard let people put their own url, but it never got much traction and is pretty much abandoned by now.
Actual federated authentication like Hubzilla's Magicauth or Webauthn is seamless. You just open a link and the website will recognize you as a remote user and let you do stuff based on your permission level.
I don't disagree with that, but there's nothing preventing anybody from setting up their own OIDC service, and for sites to accept any OIDC provider rather than just a couple of giant ones.
And yeah, the Hubzilla Magicauth is really nice! Not sure how easy it is to apply it to other uses than Hubzilla/zot though. Could be worth exploring.