Re: [webauthn] What does store() do? from Jeffrey Yasskin via GitHub on 2017-04-20 (public-webauthn@w3.org from April 2017)

From: Jeffrey Yasskin via GitHub <sysbot+gh@w3.org>
Date: Thu, 20 Apr 2017 23:49:00 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-295973308-1492732139-sysbot+gh@w3.org>

`store()` is intended to tell the browser that a particular Credential "worked" to authenticate with the current site. https://github.com/w3c/webappsec-credential-management/pull/77 starts to explain this in the Credential Management spec, but I think there's more to do over there, to say that the credential store actually holds information used to find credential sources to offer to the user in the [chooser](https://w3c.github.io/webappsec-credential-management/#user-mediated-selection), and then [[Store()]] here will be able to say that it records some metadata from the ScopedCredential into the credential store.

None of this behavior is visible to Javascript—it just describes how the browser can create some UI—so I don't think it's urgent to nail it down.

-- 
GitHub Notification of comment by jyasskin
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/415#issuecomment-295973308 using your GitHub account

Received on Thursday, 20 April 2017 23:49:07 UTC