[webauthn] Constrain the "reasonable range" of timeouts from Jeffrey Yasskin via GitHub on 2017-02-24 (public-webauthn@w3.org from February 2017)

From: Jeffrey Yasskin via GitHub <sysbot+gh@w3.org>
Date: Fri, 24 Feb 2017 23:34:58 +0000
To: public-webauthn@w3.org
Message-ID: <issues.opened-210186045-1487979297-sysbot+gh@w3.org>

jyasskin has just created a new issue for 
https://github.com/w3c/webauthn:

== Constrain the "reasonable range" of timeouts ==
https://w3c.github.io/webauthn/#makeCredential says:
> If the timeout member of options is present, check if its value lies
 within a reasonable range as defined by the platform

I believe the spec should constrain that range somewhat. For example, 
to say that the range must allow timeouts between 1s and 10s.

Please view or discuss this issue at 
https://github.com/w3c/webauthn/issues/364 using your GitHub account

Received on Friday, 24 February 2017 23:35:06 UTC