Re: [webauthn] Please coordinate with the HTML spec to extract the relevant bits of the document.domain setter so you can call them

>> nominally steps 4 - 7 (inclusive) of the domain attribute setter 
defined hereabouts

> OK.  So if a page is loaded from "" and then sets
 document.domain to "", should it be able to use "" 
as its rpId?  Sounds to me like you're saying it shouldn't be able 

Our present intent (if it is correct) is that even if 
"" is loaded and then sets document.domain to 
"", it *would* still be able to assert "" as its 

GitHub Notification of comment by equalsJeffH
Please view or discuss this issue at 
using your GitHub account

Received on Thursday, 22 December 2016 22:39:40 UTC