W3C home > Mailing lists > Public > public-webauthn@w3.org > September 2017

Re: [webauthn] PublicKeyCredentialDescriptor.id and PublicKeyCredentialEntity.id type differ

From: Angelo Liao via GitHub <sysbot+gh@w3.org>
Date: Fri, 08 Sep 2017 16:20:50 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-328149392-1504887641-sysbot+gh@w3.org>
@herrjemand The developer will not be aware of the id from assertion before they receive the assertion.

The key to keep in mind here is there are two ids: the account id and the credential id. Multiple credentials can be registered for one account. Multiple account cannot register the same credential. When the developer requests registration, they are required to supply the account id. 

In addition, when developer requests registration, they can also optionally provide an excludeList. The excludeList contains a list of credentials (identified by credential id). Developers find out about the list of credentials they want to include by querying the database to find out the credential they don't like from previous registrations. 

-- 
GitHub Notification of comment by AngeloKai
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/504#issuecomment-328149392 using your GitHub account
Received on Friday, 8 September 2017 16:20:44 UTC

This archive was generated by hypermail 2.4.0 : Tuesday, 5 July 2022 07:26:27 UTC