- From: Vijay Bharadwaj via GitHub <sysbot+gh@w3.org>
- Date: Wed, 28 Sep 2016 07:48:25 +0000
- To: public-webauthn@w3.org
Requiring allowList is equivalent to saying that getAssertion can only provide supplementary authentication, i.e. give you more assurance about a user whose identity you already sort-of-know. However I believe we do want to support scenarios where the user can authenticate with their WebAuthn authenticator and nothing else. -- GitHub Notification of comment by vijaybh Please view or discuss this issue at https://github.com/w3c/webauthn/issues/221#issuecomment-250096184 using your GitHub account
Received on Wednesday, 28 September 2016 07:48:35 UTC