Brief description of the scenario. This is the template source.
- Name: TODO
- Organization: TODO
- Email: TODO
- Name: TODO SAML|OIDC|OAUTH2|Other(specify)
- Grant/flow (if applicable): TODO eg. Implicit|Hybrid|AuthCode|SAMLArtifact|etc
- Reference: TODO aa https://linktospecandsection
todo: delete all the ones that don't apply, add anything not listed
- 1st party Cookie
- 3rd party cookies
- Redirect with link decoration
- Form post
- Local Storage
- IFrames
- JavaScript
todo: delete all the ones that don't apply, add anything not listed
- B2C
- B2E
- B2B
- G2C
TODO Enumeration of products, industries, vendors that rely on this scenario as described.
TODO long form description of the flow, including start state, end state, and sequence diagram when possible
TODO long form description of the intended user experience, with particular attention on the desired outcomes (eg no visible prompt in SSO scenarios)
TODO long form description of privacy characteristics of the scenario, with particular attention to aspects affecting the browser (eg presence of browser-readable artifacts carrying user info, use of global|pairwise|no identifiers, etc).
TODO anything not fitting any of the sections above that is relevant for understanding how the scenario might be affected by browser changes.