66°F

Aaron Parecki

  • Articles
  • Notes
  • Photos
  • Announcing the IndieAuth Spec!

    December 5, 2017

    It's been a long time coming, but I've finally published a proper IndieAuth spec!

    IndieAuth has been around for years, and is even referenced by the Micropub spec. But until now, there wasn't a canonical version of the spec all in one place. Previously it existed as a series of how-to guides on the IndieWeb wiki. Arguably it's actually more useful that way, since the whole point of specs is to communicate a consistent way of implementing something. But it did make it awkward to refer to it formally.

    So I'm happy to say that there is finally a spec for IndieAuth, at https://indieauth.net/spec/

    This document captures the current state of what has been implemented, and incorporates much of the feedback we've gathered over the years. Most of the document is split up into authentication and authorization sections, for when you are trying to just identify users for sign-in in vs when a Micropub client is trying to get an access token to post to the user's site. Formally it's an extension to OAuth 2.0, and makes several decisions that were left un-specified in the OAuth 2.0 core spec.

    If you've implemented any part of this spec, or are thinking about it, I'd appreciate any feedback! Feel free to comment on this post, file an issue on GitHub, or drop a note in the IndieWeb chat!

    Portland, Oregon
    Tue, Dec 5, 2017 12:30pm -08:00 #indieweb #indiewebchallenge #indieauth #oauth2 #oauth
    2 likes 1 reply 3 mentions
    • Ryan Barrett
    • Anonymous
    • Barry Frost barryfrost.com

      Nice! 🎉 Looking forward to going through this to see what I’ve missed in my implementations.

      Wed, Dec 6, 2017 1:31am -08:00

    Other Mentions

    • Aaron Parecki aaronparecki.com
      My 2017 Year in Review
      Thu, Jan 4, 2018 2:40pm -08:00
    • Percolator percolator.today
      Episode 15: The IndieWeb Wiki and IndieAuth
      Wed, Dec 6, 2017 4:00pm -08:00
    • Aaron Parecki aaronparecki.com
      Episode 15: The IndieWeb Wiki and IndieAuth
      Thu, Dec 7, 2017 12:00am +00:00
Posted in /articles using quill.p3k.io

Hi, I'm Aaron Parecki, Director of Identity Standards at Okta, and co-founder of IndieWebCamp. I maintain oauth.net, write and consult about OAuth, and participate in the OAuth Working Group at the IETF. I also help people learn about video production and livestreaming. (detailed bio)

I've been tracking my location since 2008 and I wrote 100 songs in 100 days. I've spoken at conferences around the world about owning your data, OAuth, quantified self, and explained why R is a vowel. Read more.

  • Director of Identity Standards at Okta
  • IndieWebCamp Founder
  • OAuth WG Editor
  • OpenID Board Member

  • 🎥 YouTube Tutorials and Reviews
  • 🏠 We're building a triplex!
  • ⭐️ Life Stack
  • ⚙️ Home Automation
  • All
  • Articles
  • Bookmarks
  • Notes
  • Photos
  • Replies
  • Reviews
  • Trips
  • Videos
  • Contact
© 1999-2025 by Aaron Parecki. Powered by p3k. This site supports Webmention.
Except where otherwise noted, text content on this site is licensed under a Creative Commons Attribution 3.0 License.
IndieWebCamp Microformats Webmention W3C HTML5 Creative Commons
WeChat ID
aaronpk_tv