So, at [#createCredential](https://w3c.github.io/webauthn/#createCredential) (aka `navigator.credentials.create()` aka `[[Create]]`) time, the RP will need to set both `options.authenticatorSelection.requireResidentKey` and `options.authenticatorSelection.requireUserVerification` to `true` in order to stipulate use of a first-factor (aka "passwordless") authenticator, yes? this is because by definition a first-factor authenticator is one that is capable of [user verification](https://w3c.github.io/webauthn/#user-verification). It will be helpful to address issue #422 and get the authenticator taxonomy formally defined. -- GitHub Notification of comment by equalsJeffH Please view or discuss this issue at https://github.com/w3c/webauthn/issues/640#issuecomment-337055962 using your GitHub accountReceived on Monday, 16 October 2017 21:58:11 UTC
This archive was generated by hypermail 2.4.0 : Tuesday, 5 July 2022 07:26:28 UTC