The decentralization of Single Sign-on seems like a natural step in improving usability and accessability of the fediverse. It will require a lot less account and make it far easier to interact with content. Are there anybody working on this?
The decentralization of Single Sign-on seems like a natural step in improving usability and accessability of the fediverse. It will require a lot less account and make it far easier to interact with content. Are there anybody working on this?
IMHO while often called federated authentification, OIDC is more delegated authentication especially when a few central services are used.
The older OpenID standard let people put their own url, but it never got much traction and is pretty much abandoned by now.
Actual federated authentication like Hubzilla’s Magicauth or Webauthn is seamless. You just open a link and the website will recognize you as a remote user and let you do stuff based on your permission level.
I don’t disagree with that, but there’s nothing preventing anybody from setting up their own OIDC service, and for sites to accept any OIDC provider rather than just a couple of giant ones.
And yeah, the Hubzilla Magicauth is really nice! Not sure how easy it is to apply it to other uses than Hubzilla/zot though. Could be worth exploring.