Guest Blog: Implementing App-to-App Authorisation in OAuth2/OpenID Connect
What is app2app? App2app is a mechanism that allows mobile apps performing OAuth2 or OpenID Connect based authentication to offer a much simpler faster flow if the user already has an app provided by the authorization server owner installed on their mobile device. Here’s how it actually looks when I grant the moneyhub app on […]
OpenID Certification Program Expands with the Release of Financial-grade API Client Initiated Backchannel Authentication Profile (FAPI-CIBA) Certification
The OpenID Foundation announced today its expansion of the OpenID Certification program with conformance testing and self-certification of Financial-grade API Client Initiated Backchannel Authentication Profile (FAPI-CIBA) OpenID Providers. The ability to self-certify FAPI-CIBA implementations builds on the availability and success of Financial-grade API (FAPI) certifications whereby a number of vendors including banks have certified their […]
Implementer’s Draft of FAPI Client Initiated Backchannel Authentication (CIBA) Profile Approved
The OpenID Foundation membership has approved the following specification as an OpenID Implementer’s Draft: Financial-grade API: Client Initiated Backchannel Authentication Profile An Implementer’s Draft is a stable version of a specification providing intellectual property protections to implementers of the specification. This is the first Implementer’s Draft of this specification. This specification is a product of […]
Implementer’s Draft of OpenID Connect Client Initiated Backchannel Authentication (CIBA) Core Approved
The OpenID Foundation membership has approved the following specification as an OpenID Implementer’s Draft: OpenID Connect Client Initiated Backchannel Authentication Flow – Core 1.0 An Implementer’s Draft is a stable version of a specification providing intellectual property protections to implementers of the specification. This is the first Implementer’s Draft of this specification. This specification is […]