You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Currently, if no IdPs registered in the past, the browser reveals to the RP that fact, which could potentially be a breach of the user's privacy.
constcredential=awaitnavigator.credentials.get({identity: {providers: [{configURL: "any"// throws if no IdP has called IdentityProvider.register() ahead of time. Should it? }]}});
I'm not sure what the answer is, but I ran into this while testing this, so should be easily reproducible:
I checked and we do delay the rejection, as expected. Thus it is not the case that the browser reveals this information to the RP, as it is indistinguisable from the user closing the dialog once it shows up. Closing
Currently, if no IdPs registered in the past, the browser reveals to the RP that fact, which could potentially be a breach of the user's privacy.
I'm not sure what the answer is, but I ran into this while testing this, so should be easily reproducible:
https://x.com/samuelgoto/status/1793776387356340357
The text was updated successfully, but these errors were encountered: