Comments (2)
martin-lindstrom
commented on June 26, 2024
There is really two different cases we are discussing here:
- A Service Provider that is a mobile app and uses the embedded browser for SAML-authentication.
- A "normal" web service SP that may be executed from within an app, for example Facebook. This actually happened when Pensionsmyndigheten launched a campaign on Facebook and users followed links from within the Facebook-app. The autostart function of the BankID app failed in those cases since the Facebook-app has not whitelisted the BankID app (obviously).
from technical-framework.
martin-lindstrom
commented on June 26, 2024
For (1) above we could argue that the app should make sure to whitelist the BankID-app so that autostart of the BankID-app works. But what about the BankID Redirect-parameter? How should the IdP know the URI for the SP app? Manual handling is the only generic way to go.
For (2) above we already have recommendations in section 3.2 talking about autostart when a non-default browser has been detected, and that should cover the case.
So. We will close this issue.
from technical-framework.
Related Issues (20)
- Change Sweden Connect logotype
- Change service entity categories to cover more AuthnContext URI:s
- Make RequesterID RECOMMENDED for Identity Providers HOT 3
- Add new DSS error code for failed user authentication HOT 1
- Setup structure for OpenID Connect specifications
- Re-draw picture in intro
- Signature Activation Protocol (SAP) sign message cleanup HOT 2
- The notBefore and notAfter in SignRequestExtension should be removed
- OAuth 2 Specifications for Sweden Connect HOT 3
- Re-structure main page
- Custom message during authentication HOT 2
- Define attribute to contain id-matching-level HOT 1
- Make changes for the identity matching project
- Write descriptive document about Identity Binding levels and processes
- Update "tekniska anslutningsregler" with new rules for who can sign "Förbetald e-legitimering".
- OIDC: Add claims and scopes specification for Sweden Connect
- Update requirements regarding LoA4
- Update of links in documents needed. HOT 1
- Update Identity Binding document
- Prevent @ from appearing in values used for scoped attributes. HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from technical-framework.