- From: Emil Lundberg via GitHub <sysbot+gh@w3.org>
- Date: Wed, 02 May 2018 10:59:55 +0000
- To: public-webauthn@w3.org
The following commits were just pushed by emlun to https://github.com/w3c/webauthn: * UVI modification with CDDL by gmandyam https://github.com/w3c/webauthn/commit/241a56b30893a0d5997f7235315e76579bb3654b * Update index.bs by gmandyam https://github.com/w3c/webauthn/commit/b75b4d23a946945d64bf96851c9c4a21769b27bc * Update index.bs by gmandyam https://github.com/w3c/webauthn/commit/9beac26df7def6e8622d591934160cada1a12c12 * Merge branch 'master' into master2 by JeffH https://github.com/w3c/webauthn/commit/48389cc2ff4debae9f008c72191d95ef82eea9f9 * Emphasise that the CollectedClientData can be extended. (#827) * Emphasise that the CollectedClientData can be extended. There is a risk that RPs will implement overly simplistic parsing of the CollectedClientData and end up intolerant of any future additions. This change emphasises the need to parse it properly and will be coupled with a behaviour in Chrome that inserts a key (`new_keys_may_be_added_here`) in a random 20% of cases. * Make the note a "Note:" by Adam Langley https://github.com/w3c/webauthn/commit/b84d9cb9dd1fb80ac000de0bf3e92e92338eb357 * Address review comments by @kieun (#832) * Address review comments by @kieun * Revert CTAP2 URL fragment change See comment by @equalsJeffH at https://github.com/w3c/webauthn/pull/832#discussion_r173599006 * <dfn> AppID in FIDO AppID Extension section heading As suggested by @equalsJeffH at https://github.com/w3c/webauthn/pull/832#discussion_r173599568 by Emil Lundberg https://github.com/w3c/webauthn/commit/6d5aa3e58d23a710b8756289c63bc00f69190baa * Merge branch 'master' into master2 by JeffH https://github.com/w3c/webauthn/commit/3bae3c068d201725a2456603de3346b9e5fc3680 * Obfuscate Safetynet nonce Closes #868 by Alexei Czeskis https://github.com/w3c/webauthn/commit/7c94792da69919fb1e7bef88954a6831f660bcc8 * Revert "Obfuscate Safetynet nonce" Accidentally commited to master -- OR -- just showing you all how to undo a commit to master in case you accidentally make this mistake on accident and not on purpose like me... This reverts commit 7c94792da69919fb1e7bef88954a6831f660bcc8. by Alexei Czeskis https://github.com/w3c/webauthn/commit/2a23a11ceb500b594324085338a0fea67b66dabf * Obfuscate Safetynet nonce (#869) Closes #868 by Alexei Czeskis https://github.com/w3c/webauthn/commit/f14f12499b7cc191453bc4c1d02b94ace0f1c320 * Merge pull request #821 from gmandyam/master2 UVI modification with CDDL by gmandyam https://github.com/w3c/webauthn/commit/263fe9357f6c335b4d491605dc67d0db3bc6c712 * Add recommendation of challenge length (#858) LGTM, merging per 11-Apr-2018 concall. * Add recommendation of minimum challenge length * Add link to security consideration from makeCredential challenge parameter by Emil Lundberg https://github.com/w3c/webauthn/commit/b9af923897efecaf2f85558748ee3fe3385fddd2 * Clarify that authentication use case example requires pairing the phone first by Emil Lundberg https://github.com/w3c/webauthn/commit/e36ee7c6959fd2623ff146fb1dbb77a909469e85 * non- -> non-null (#890) by =JeffH https://github.com/w3c/webauthn/commit/c880ab937f69bc5cad48d3dd784068f760e959b8 * Address @equalsJeffH's review comment by Emil Lundberg https://github.com/w3c/webauthn/commit/f4575a0a6001e4e58da692d91ca289c94a8cc109 * Merge pull request #881 from w3c/issue-874-clarify-use-case Clarify that authentication use case example requires pairing the phone first by Emil Lundberg https://github.com/w3c/webauthn/commit/aabeeaf52debdad98bbedc8ff9efed4e96d37451 * Merge branch 'master' into issue-857-u2f-attestation-verification by Emil Lundberg https://github.com/w3c/webauthn/commit/3afbcf955b357e7f0e5208b0b01436ee36ae35fd
Received on Wednesday, 2 May 2018 10:59:58 UTC