IndieAuth 1.1 Identity Protocol Standards Session 2

August 22, 2020
Sat

IndieAuth is the most implemented decentralized identity protocol, built on top of OAuth 2.0.

This popup IndieWebCamp session will focus on discussions to iterate and evolve the IndieAuth protocol.

Who Should Attend?

Anyone interested in IndieAuth is welcome! Specifically if you've built any IndieAuth clients or servers, we want your input!

Suggested Reading

This is a followup from the previous session, so you should review the notes and previous issues discussed.

If you're not already familiar with the IndieAuth spec, please give it a read. We will be starting this session with the assumption that people are familiar with the basics of the IndieAuth protocol.

Since IndieAuth is built on top of OAuth 2.0, it may be helpful to have some knowledge of OAuth 2.0 and its extensions, although this is not required reading.

One of the things driving this session is the recent adoption of the OAuth 2.1 draft by the OAuth Working Group. OAuth 2.1 incorporates the best practices of OAuth 2.0 and extensions into a new draft. We would like to consider upgrading IndieAuth to follow these best practices as well. You can find a summary of the changes in OAuth 2.1 in this blog post and in this video.

Rough Agenda

We've collected topics to discuss in the IndieAuth 1.1 Milestone on GitHub.

Session notes will be taken on Etherpad

Comments