57°F

Aaron Parecki

  • Articles
  • Notes
  • Photos
  • Announcing the IndieAuth Spec!

    December 5, 2017

    It's been a long time coming, but I've finally published a proper IndieAuth spec!

    IndieAuth has been around for years, and is even referenced by the Micropub spec. But until now, there wasn't a canonical version of the spec all in one place. Previously it existed as a series of how-to guides on the IndieWeb wiki. Arguably it's actually more useful that way, since the whole point of specs is to communicate a consistent way of implementing something. But it did make it awkward to refer to it formally.

    So I'm happy to say that there is finally a spec for IndieAuth, at https://indieauth.net/spec/

    This document captures the current state of what has been implemented, and incorporates much of the feedback we've gathered over the years. Most of the document is split up into authentication and authorization sections, for when you are trying to just identify users for sign-in in vs when a Micropub client is trying to get an access token to post to the user's site. Formally it's an extension to OAuth 2.0, and makes several decisions that were left un-specified in the OAuth 2.0 core spec.

    If you've implemented any part of this spec, or are thinking about it, I'd appreciate any feedback! Feel free to comment on this post, file an issue on GitHub, or drop a note in the IndieWeb chat!

    Portland, Oregon
    #indieweb #indiewebchallenge #indieauth #oauth2 #oauth
    Tue, Dec 5, 2017 12:30pm -08:00
    2 likes 1 reply 2 mentions
    • Ryan Barrett
    • Anonymous
    • Barry Frost barryfrost.com

      Nice! 🎉 Looking forward to going through this to see what I’ve missed in my implementations.

      Wed, Dec 6, 2017 1:31am -08:00

    Other Mentions

    • Aaron Parecki aaronparecki.com
      My 2017 Year in Review
      Thu, Jan 4, 2018 2:40pm -08:00
    • Percolator percolator.today
      Episode 15: The IndieWeb Wiki and IndieAuth
      Wed, Dec 6, 2017 4:00pm -08:00
Posted in /articles using quill.p3k.io

Hi, I'm Aaron Parecki, co-founder of IndieWebCamp. I maintain oauth.net, write and consult about OAuth, and am the editor of several W3C specifications. I help people learn about video production and livestreaming and dabble in product design.

I've been tracking my location since 2008 and I wrote 100 songs in 100 days. I've spoken at conferences around the world about owning your data, OAuth, quantified self, and explained why R is a vowel. Read more.

  • Security Architect at Okta
  • IndieWebCamp Founder
  • OAuth WG Member

  • ⭐️ Life Stack
  • ⚙️ Home Automation
  • 🎥 YouTube
  • All
  • Articles
  • Bookmarks
  • Notes
  • Photos
  • Replies
  • Reviews
  • Sleep
  • Trips
  • Videos
  • Contact
© 1999-2022 by Aaron Parecki. Powered by p3k. This site supports Webmention.
Except where otherwise noted, text content on this site is licensed under a Creative Commons Attribution 3.0 License.
IndieWebCamp Microformats Webmention W3C HTML5 Creative Commons
WeChat ID
aaronpk_tv