Comment by Anduia
1 day ago
We use OAuth2 for identity.
We use first-party cookies for session management.
We use APIs and signed tokens (JWT) to federate across domains without leaking user data.
The ones hurt by the death of third-party cookies are ad tech parasites who refused to innovate imho...
OpenAI uses all of these things and still had to move domains.
Also: tech should be easier, not harder.
Building this shouldn't take more than an hour, yet somehow we did this to ourselves.