Auth Stnadard Requirements
To tackle the common application pattern for authenticating, registering, resetting credentials, verifying, and unregistering from an application, the common patterns exists but many implementations make it hard to use the best solutions of different frameworks. While almost each application has this requirement, no standard has been defined.
Possible reasons why it's difficult
- Too many backend solutions for storing and updating credentials (DB, LDAP/AD, API, SSO, SAML, …)
- Added complexity when authorisation is required
- Added complexity when MFA is required