- From: Alexei Czeskis via GitHub <sysbot+gh@w3.org>
- Date: Mon, 24 Apr 2017 20:08:52 +0000
- To: public-webauthn@w3.org
@mikewest is correct, the initial idea was that we have: displayName: Alexei Czeskis userName: alexei.czeskis@example.com userId: 123456778 displayName: Alexei Czeskis userName: someting.else@example.com userId: 456491456 The first two fields would be used in the account chooser, the last field would be sent to the server. The reason being that displayName and userName could both in theory be malleable, while the userId would not. Then it all got refactored and 'user' got removed. -- GitHub Notification of comment by leshi Please view or discuss this issue at https://github.com/w3c/webauthn/issues/413#issuecomment-296807670 using your GitHub account
Received on Monday, 24 April 2017 20:08:58 UTC