I'm honing an elevator pitch for a new side project. What do you think of the following?
[name] is an identity provider to securely authenticate end users and applications on behalf of online services using industry standard protocols. It provides an API for securely storing and managing data about and credentials for end users, applications, and other entities related to authentication.
That's 44 words. Given a normal speep of speech of 100 to 200 words per minute, should be sayable in 30 s.
Yuck is an identity provider that allows end users to securely authenticate themselves to web sites and applications. Yuck also allows users to authorize applications to act on their behalf. Yuck supports the OAuth2 and OpenID Connect protocols, and has an API to allow storing and managing data about end users, applications, and other entities related to authentication.
@lufthans The IDP keeps track of what each end user is allowed to do ("scopes" they're allowed to have), and embeds the scopes in the digitally signed access token. The RP implements access control checks based on scopes and other information in the token.
@liw so the IDP need to know or discover objects and capabilities for granting access?
for instance, know that the bank statement exists and read-only is one permission that can be granted for that type of object?
Server run by the main developers of the project It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!