4E/ WEB Browsers + Identity Flows

From IIW

Web Browsers + Identity Flows

Session Convener: Heather Flanagan


Tags / links to resources / technology discussed, related to this session:


Discussion notes, key understandings, outstanding questions, observations, and, if appropriate to this discussion: action items, next steps:

Group discussed how to identify an identity flow to a browser given that identity flows and tracking flows use the same underlying primitives (e.g., cookies, link decoration, and redirects). One idea was to prevent two-way flows such that the user would go to the IdP, but that the return would be restricted in some manner.