Re: [webauthn] Help RP's understand actionable exceptions from `create()` and `get()` (#2047) from Matthew Miller via GitHub on 2024-05-01 (public-webauthn@w3.org from May 2024)

From: Matthew Miller via GitHub <sysbot+gh@w3.org>
Date: Wed, 01 May 2024 23:11:13 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-2089271706-1714605071-sysbot+gh@w3.org>

I've finally cobbled together reasons for all of the exceptions during both registration and authentication.

...Except I cop out a bit with `NotAllowedError` because it has many more possible reasons it gets raised, and in practice clients have overloaded this exception with causes not documented in the spec. I thought it prudent to present this error as one that RPs should prepare to handle as a general, "the user canceled the ceremony, or something went wrong" exception and handle it as such. This is as opposed to encouraging each RP to try and interpret all possible reasons the issue was raised. I'm open to feedback on this approach.

-- 
GitHub Notification of comment by MasterKale
Please view or discuss this issue at https://github.com/w3c/webauthn/pull/2047#issuecomment-2089271706 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Wednesday, 1 May 2024 23:11:14 UTC