Alternative identity server models (SPEC-23) #46

matrixbot · 2014-09-26T21:51:51Z

Our identity server model has some shortcomings:

The trusted clique could be seen to act as an oligarchic point of control
The clique replicates all state over itself; unlike DNS root servers which partition the dataset
We don't have a way to map tokens to arbitrary 3rd party credentials unless one of our trusted clique validates said 3rd party credentials. So otherwise you're stuck using @myapp-$uid:myapp.com style IDs, which is rather foul.

Could something like bitauth help us on this?

(Reported by @ara4n)

matrixbot · 2014-09-26T21:51:51Z

Jira watchers: @ara4n

uhoreg · 2018-07-12T01:56:42Z

related to #203 ?

richvdh · 2023-04-27T08:28:35Z

Duplicate of #203

matrixbot changed the title ~~Alternative identity server models~~ Alternative identity server models (SPEC-23) Oct 31, 2016

matrixbot added the feature Suggestion for a significant extension which needs considerable consideration label Nov 7, 2016

uhoreg added the A-Identity-Service label Jul 12, 2018

richvdh transferred this issue from matrix-org/matrix-spec-proposals Mar 1, 2022

richvdh marked this as a duplicate of #203 Apr 27, 2023

richvdh closed this as completed Apr 27, 2023

Provide feedback