[Openid-specs-fapi] Issue #260: Add section in the "Implementation Advice" document about supporting Mobile Apps (openid/fapi)
dgtonge
issues-reply at bitbucket.org
Wed Jul 31 14:53:55 UTC 2019
New issue 260: Add section in the "Implementation Advice" document about supporting Mobile Apps
https://bitbucket.org/openid/fapi/issues/260/add-section-in-the-implementation-advice
Dave Tonge:
We discussed on the call adding a section around supporting mobile apps on auth journeys.
My suggestion would be that this section mentions:
* FAPI RW supports mobile apps using standard OAuth based redirects using claimed HTTPS scheme
* Some details on how claimed https works - with Apple / Android specific instructions
* Specific recommendations on how user agents for RPs can support both claimed https and normal https links with the best user experience \(this is not easy!!!\)
* Recommendations on how to support multiple brands \(e.g. multiple discovery docs…\)
* Explanation of the use-cases where FAPI-CIBA is applicable and any implementation considerations
More information about the Openid-specs-fapi
mailing list