FedCM: disconnect

Category: Miscellaneous
Type: New or changed feature
Status: Enabled by default (Chrome 122)
Intent stage: None

Summary

Allows disconnecting a federated login account via the relying party website. With the disconnect API, a relying party may notify the identity provider that a previously used account is now disconnected, and hence using that account again via federated login would require treating it as a new account.

Motivation

An RP may choose to disconnect a federated account, which requires the first-party IDP cookies. With the disconnect API, the RP can revoke federated logins that have happened via the FedCM API.

Standards & signals

Specification: https://github.com/fedidcg/FedCM/pull/515
Firefox: Positive — Firefox asked us to not send standards positions requests for small FedCM additions, and to instead rely on pull requests.
Safari: Closed Without a Position
Web developers: Positive — This is a feature requested by developers.
Tracking bug: https://bugs.chromium.org/p/chromium/issues/detail?id=1473135

Explainers: https://github.com/fedidcg/FedCM/issues/496

View on chromestatus.com