- From: Jeffrey Yasskin via GitHub <sysbot+gh@w3.org>
- Date: Wed, 05 Apr 2017 16:59:33 +0000
- To: public-webauthn@w3.org
There's an API effect here if you decide you want to hide some data from JS in order to defend against XSS, like PasswordCredential attempts. If you can expose all the data (as you're doing now), then there's no need for an API change here when you add Fetch support. -- GitHub Notification of comment by jyasskin Please view or discuss this issue at https://github.com/w3c/webauthn/issues/354#issuecomment-291927207 using your GitHub account
Received on Wednesday, 5 April 2017 16:59:45 UTC