W3C home > Mailing lists > Public > public-webapps@w3.org > July to September 2014

Re: Proposal for User Agent Augmented Authorization

From: Anne van Kesteren <annevk@annevk.nl>
Date: Wed, 6 Aug 2014 11:38:52 +0200
Message-ID: <CADnb78gu8SMvbNooSKc35zj37EkKzLJm8+_RSjyHsaxV_LKGaA@mail.gmail.com>
To: Sam Penrose <spenrose@mozilla.com>
Cc: WebApps WG <public-webapps@w3.org>
On Wed, Aug 6, 2014 at 5:25 AM, Sam Penrose <spenrose@mozilla.com> wrote:
> Web apps suffer particularly due to non-http URIs and cookie segregation. We would like feedback on the specific APIs suggested, as well as the overall problem framing. Thank you for your consideration.

One problem I have with OAuth or perhaps the implementation thereof by
services around the web is that it is typically all-or-nothing. E.g.
currently I can visit Google Maps and opt to not share my location.
But I cannot login to some services without giving them access to post
on my Facebook wall.

I guess there is not much that can be done about this other than
encouraging services to provide such granularity.

Received on Wednesday, 6 August 2014 09:39:19 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 18:14:26 UTC