POC for session management spec integration into Auth0.js
Currently in draft 28, this spec provides a mechanism whereby state changes in end users' authentication can be detected without network traffic against the OP.
Makes use of two iFrames (one for OP, one for RP) with postMessage events for cross-iFrame communication.
Create a new API in the APIs section and provide an identifier for it.
Copy the 'auth0-variables.js.examplefile toauth0-variables.js` and provide the client ID and domain there.
In order to make checkSession work, you need to add the URL where the authorization request originates from, to the Allowed Web Origins list of your Auth0 client in the Dashboard under your client's Settings.
This project is licensed under the MIT license. See the LICENSE file for more info.