@FenTiger I updated MagicSignOn.org with use cases and added a brief comparison between OAuth and OpenWebAuth.
Use Cases: #^https://magicsignon.org/page/openwebauth/uses
New Home Page: #^https://magicsignon.org/page/openwebauth/home
Speaking of which, if OWA does not send profile information, such as display name and avatar, maybe it should. Because we can't assume that other platforms will use the same protocols for communication.
A "compare and contrast" with OAuth sounds great, too, but might give people the impression that they have to pick one or the other - which I don't think is necessarily true, though I haven't fully explored the implications of merging them.
When the OpenWebAuth flow succeeds, the owt= query parameter will identify the user who is logged in to the home instance. This will be a user from the domain in the original zid= parameter, but may not be the exact same user.
BUT CAN WE FOCUS ON EVERYONE?
I actually had some trouble reconciling this idea. Because the question immediately occurred to me—if we focus on men as well as all the traditionally vulnerable groups: minorities, women, the poor, children, the LGBTQ community, aren't we then just focusing on everyone? And therefore not actually focusing on anyone?