Great initiative, hopefully this will result in some oAuth like message exchange pattern, so we do not have to bake a proprietary pattern between applications and authorization service(s). Hopefully it can also help shield us from vendor lock-in :)
The key objective is to build upon the existing cornerstones.
Note that this is not necessarily an effort to define yet another authorization architecture or runtime policy language. Instead, the WG will develop OpenID Foundation Final Specifications which leverage existing architectures and protocols as much as possible. Where appropriate, the WG intends to collaborate with international standards development organizations, such as ISO/IEC JTC 1, ITU-T, and IETF, for recognition of these OpenID Foundation specifications.
milo_hoffman|2 years ago
gertd|2 years ago
The key objective is to build upon the existing cornerstones.
Note that this is not necessarily an effort to define yet another authorization architecture or runtime policy language. Instead, the WG will develop OpenID Foundation Final Specifications which leverage existing architectures and protocols as much as possible. Where appropriate, the WG intends to collaborate with international standards development organizations, such as ISO/IEC JTC 1, ITU-T, and IETF, for recognition of these OpenID Foundation specifications.