Re: [webauthn] [PR 384] Does requireUserMediation() make sense after merge

Developers won't use `requireUserMediation()` to interact with their public-key credential-sources since #384 doesn't define `[[CollectFromCredentialStore]]`, which is the only way https://w3c.github.io/webappsec-credential-management/#algorithm-request takes advantage of the [`requires user mediation flag`](https://w3c.github.io/webappsec-credential-management/#origin-requires-user-mediation-flag) to skip user mediation.

If a touchless WebAuthn device is ever added, this group would have to decide how it interacts with the `requires user mediation flag`, but that's an issue for a future version of this spec.

-- 
GitHub Notification of comment by jyasskin
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/402#issuecomment-294187294 using your GitHub account

Received on Friday, 14 April 2017 16:38:34 UTC