Chrome 51 Beta Adds Credential Management API Support

Chrome 51 Beta  (the latest version of Chrome) supports the Credential Management API. The API is a standards-track API proposed by W3C and grants developers programmatic access to a browser's credential manager which streamlines the sign-in process. Through Chrome support for the API, Google aims to lower the need for creating, remembering and typing passwords as users engage with various websites.
 
In the Chrome implementation, Chrome's password manager stores user credentials. Once a user is singed into Chrome, the user can sync passwords across devices. Synced passwords can also be shared with Android apps that utilize the Smart Lock for Passwords API. While the API certainly increases ease of use, Google readily acknowledges using the API creates a security risk
 
At a high level, the Credential Management API allows developers to store and retrieve password credentials and federated credentials. The API provides three functions (i.e. get, store, requireUserMediation). After integration, the API allows users to sign in with a single tap, remember the federated account a user has previously signed in with, and sign users back in after session expiration. 
 
Additional features to note from the Chrome 51 release include the Intersection Observer API (allows sites to detect element intersections as an asynchronous event), passive event listener support (allows sites to run JavaScript in response to touch and wheel input), and much more. For a full list, visit the Chromium blog post. To learn more about the Credential Management API, check out sample use cases at GitHub.   

Be sure to read the next Browsers article: Chrome 58 Canary Turns On WebAssembly

 

Comments (0)