[Bug 520265] OAuth login page should show requesting application details
Bugzilla Link | 520265 |
Status | NEW |
Importance | P3 normal |
Reported | Jul 27, 2017 10:08 EDT |
Modified | Jul 22, 2021 19:52 EDT |
Reporter | Brian de Alwis |
Description
I had a USS-triggered login page opened with as a result of a seemingly-unrelated action. The login browser dialog shows no indication as to what client made the request. In the case of an OAuth request, it would be great if we could highlight client details here and the implications of signing in. For example, text like: Oomph is requesting permissions to access your user data; the following screen will detail the permissions".
Even better: could we first show the OAuth permissions screen and then, if accepted, the login screen?
I've opened bug 520263 against the USS SDK to put more useful information in the title bar. But the actual login content would benefit too.