SIG Breakout Session: 2025-07-23

# SIG Breakout Session: 2025-07-23 - Date: Wed 23 July 2025 - Time: 11:00 - 12:00 UTC in 1 hour 07:00 - 08:00 EDT (UTC-4) 12:00 - 13:00 BST (UTC+1) 13:00 - 14:00 CEST (UTC+2) 14:00 - 15:00 EEST (UTC+3) 16:30 - 17:30 IST (UTC+5:30) 20:00 - 21:00 JST (UTC+9) 21:00 - 22:00 AEST (UTC+10) ## Agenda Agenda Items to discuss ## Attendees - Takashi Norimatsu - Ingrid Kamga - Pascal Knüppel - Bertrand Ogen - Francis Pouatcha - Rodrick Awambeng - Forkim Akwichek - Dmitry Telegin - Assah Bismark - Costas Georilakis ## Notes ## New Support ### 1. Workload Identity - Transaction Token, SPIFEE 23 July 2025: Link to the event: [IETF 123](https://events.oauth.net/2025/07/ietf-123-madrid-ASzyJKU1TnAV) ### 2. OAuth 2.0 for First-Party Applications (FiPA) 23 July 2025: https://github.com/keycloak/keycloak/discussions/38796#discussioncomment-13709180 ### 3. Shared Signals Framework (SSF) 23 July 2025: No updates ### 4. OpenID Federation 1.0 (OIDFED) 23 July 2025: https://github.com/keycloak/keycloak/discussions/31027#discussioncomment-13749859 Costas Branch - OpenId Federation OP back end - initial commit https://github.com/eosc-kc/keycloak/tree/40511_openid_federation_op Draft PR should be ready by August Epic Ticket: https://github.com/keycloak/keycloak/issues/40509 Costas: I have created the slack channel [#openid-federation-dev](https://cloud-native.slack.com/archives/C096PUDTC3U) for anyone interested in developing OpenId Federation ### 5. Client Attestation 23 July 2025: https://datatracker.ietf.org/doc/draft-ietf-oauth-attestation-based-client-auth/ Ticket: https://github.com/keycloak/keycloak/issues/39287 Costas: Might have some similarities with Open ID Federation. But not the same. ### 6. Model Context Protocol (MCP) 23 July 2025: - Takashi: no progress https://github.com/keycloak/keycloak/pull/35711 Pull request active https://github.com/keycloak/keycloak/pull/35711 ## Refinement ### 7. OpenID Verifiable Credentials Issuance (OID4VCI) 23 July 2025: Last Weeks Pull Requests https://github.com/keycloak/keycloak/pull/40751 https://github.com/keycloak/keycloak/pull/41001 Open Pull requests - all related to version 15: https://github.com/keycloak/keycloak/pulls?q=is%3Apr+is%3Aopen+OID4VCI ### 8. Token Exchange 23 July 2025: No Updates ### 9. Demonstrating Proof-of-Possession (DPoP) 23 July 2025: - Epic Issue: [#22311](https://github.com/keycloak/keycloak/issues/22311) - Takashi: 11 of 15 issues were resolved. (no progress, 73%) ### 10. Passkeys 23 July 2025: - Epic Issue: [#23656](https://github.com/keycloak/keycloak/issues/23656) - Takashi: 21 of 24 issues were resolved. (+2 resolved, +3 newly added, 88%) ### 11. FAPI 2.0 FINAL 23 July 2025: - Takashi: I splitted the original Epic Issue into two epic issues for FAPI 2.0 Security Profile Final and FAPI 2.0 Message Signing Final. - Takashi: FAPI 2.0 Security Profile Final was released on this Feburary. - Takashi: FAPI 2.0 Message Signing Final will be released on this August (not still fixed). #### FAPI 2.0 Security Profile Final - Epic Issue: [#38769](https://github.com/keycloak/keycloak/issues/38769) - Takashi: 1 of 3 issues were resolved. (+1 resolved, 2 PRs submitted, 33%) #### FAPI 2.0 Message Signing Final - Epic Issue: [#41311](https://github.com/keycloak/keycloak/issues/41311) - Takashi: 0 of 3 issues were resolved. (1 PR submitted, 0%) ### Others ## Recordings https://us06web.zoom.us/rec/share/8vjOi9zu7oiaaosalYELmLXDgY_pfeSdMhevGvUph3FwpkTqX5sgq29HnqIRL6gf.Z_abMMEPTu9l29y8