Because browser extensions can leverage page content, should that constrain support for generic clients?

[darrelmiller]

From SECDIR Review https://datatracker.ietf.org/doc/review-ietf-httpapi-authentication-link-01-secdir-early-schwartz-2024-06-28/

It imagines
a world where the "login state" of users on websites is presented explicitly in
the browser chrome, rather than within the page content, and provides some
affordances to that effect. However, it does not mention any review from the
W3C or related web groups to confirm that this is something desired by the web
community.

There definitely are some members of the web community that wishes it were easier to find the login button on a web page https://ux.stackexchange.com/questions/142394/what-is-a-better-way-to-present-sign-up-login-form