W3C home > Mailing lists > Public > public-webauthn@w3.org > December 2017

Re: [webauthn] Contradiction in whether user handle is required

From: Emil Lundberg via GitHub <sysbot+gh@w3.org>
Date: Tue, 12 Dec 2017 17:29:02 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-351124378-1513099741-sysbot+gh@w3.org>
In a way I think it does make some sense: the conceptual credential "has" a user handle, but since the authenticator will never return it it's fine if the authenticator as an implementation detail doesn't store the user handle. But yeah, that could be confusing.

@jyasskin @christiaanbrand @jeffh thoughts on this?

GitHub Notification of comment by emlun
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/720#issuecomment-351124378 using your GitHub account
Received on Tuesday, 12 December 2017 17:29:35 UTC

This archive was generated by hypermail 2.4.0 : Tuesday, 5 July 2022 07:26:30 UTC