You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Privacy is the focus of how the system should be built on top of OAuth. Taking inspiration from Apple sign in, the framework should tell the client(application) whether the user is authorized to access a particular resource without revealing any user details. A specific example that would be developed is a news site where the framework tells the website whether the user is a paid subscriber or not. In this case no personal information of the user is given to the website. The core idea is to provide the anonymity feature that OAuth currently does not have but should have. This would allow users to choose for more privacy focused login methods and would be helpful for authentication/authorization methods that do not give away any private information. Some other use cases could also be formulated apart from the news site such as online courses sites.
