User Interactions, Features

From OSIS Open Source Identity Systems

Jump to: navigation, search
  • Identity Selectors should be usable from any installed browser (not be browser specific)
  • Ability to choose subsets of optional claims to send to an RP. The user may want to disclose some, but not all, of the optional claims requested by an RP (e.g. zipcode, but not birth date). For some selectors the choices are currently "all or none".
  • Selector UIs need a "remember this decision" checkbox option to remember which card was used at a specific URL and not have to bother the user again.
    • (NI) I think users should be bothered, and definitely by default. I think it's best that users approve continuation of the login process by performing at least one click after they'be been given an opportunity to review the claims that will be supplied. I also think it would be nice to limit it to just one click on subsequent visits.
  • Selector UIs that are connected to "hosted" identity agents where the user has already authenticated to the agent (as in the Higgins H1 config) need a "remember this" checkbox option on the password for managed cards that use password auth.
  • (NI ?) I've seen at least one identity selector that told the user they were logging into *.name.domain. I wouldn't blame my sister at all if she cancelled the login processs since she didn't ask to log into anything with an asterisk in its name.

Different user experience for EV certified sites: I'm not sure what this covers, as it could be the generation and/or consumption, which could mean that the IA would have to support the generation of master key and also behave correctly with EV and NON EV certificates. Is this what you had in mind? (Tony)

Retrieved from "http://osis.idcommons.net/wiki/User_Interactions%2C_Features"