A set of FedCM extensions to help agentic browsers safely log users in to websites using their federated accounts.
The web, along with computing, is going through one of the biggest foundational changes with the advent of machine learning and large language models. While there is still much to be seen, the trend in agentic browser experimentation points to more and more user journeys depending on the user being logged in to websites. Federation, one of the most common ways users log in to websites, is largely implemented on top of the browser using low level primitives, so it requires the agentic browser to use what is called “actuation”: computer vision over the DOM to understand what’s going on. The problem with “actuation” is that it is an unstructured tool that is by definition statistical, so works within a range of precision and recall. For federated login, specifically, we struggled to tolerate that range because it would lead to a known percentage of accidental security incidents. How can we give agentic browsers a structured tool to login to websites safely with the user’s federated accounts?
Explainers: https://github.com/fedidcg/idp-initiated https://github.com/samuelgoto/proposal-potentially-approved-sites https://github.com/fedidcg/login-element