Re: [webauthn] Enable web developers to migrate keys from one domain to another

Most seemed to feel that federation was the right way to solve this - where an organization uses a single IdP for the FIDO RP and then uses federation, such as OpenID Connect, from the IdP to other domains.  For instance, you log into youtube.com and gmail.com at login.google.com.

@equalsJeffH suggested on today's call that the right place to do this in DNS.

On the call we also mentioned that Chrome supports something called Digital Asset Links but it's not in any W3C spec.

-- 
GitHub Notification of comment by selfissued
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/458#issuecomment-321332862 using your GitHub account

Received on Wednesday, 9 August 2017 17:56:10 UTC