| > Then you are answering the wrong question. I want a "web native" answer and proposed a simple modification of existing Web APIs. I don't see why this mechanism shouldn't be available both on the web and in native apps. The libraries would just implement the same protocol spec, use equivalent APIs. Just like with WebRTC, RSS, iCal, etc. And again, ideally with P2P capability. > [...] that works at the Firefox standardized level. What about a W3C standard? Chrome hijacked the process by implementing whatever-the-hell they like and forcing it upon Firefox & Safari through sheer market share. It would be good to reinforce the idea that vendor-specific "standards" are a no-no. It also just doesn't work the other way: Firefox tried the same thing with DNT, nobody respected it. > Piggybacking on Passkey roaming standards may be a possibility here [...] WebAuthn sounds good, that kinda covers the TPM/SEP requirement. Native apps already normalised using webviews for auth. I wonder if there's a reasonable way to cover headless devices as well, but self-hosted/P2P apps like Syncthing also usually have a web UI. > [...] again selfishly at least. No problem with being "selfish". Every solution should start with answering a need. |