- From: Christiaan Brand via GitHub <sysbot+gh@w3.org>
- Date: Fri, 22 Sep 2017 19:22:17 +0000
- To: public-webauthn@w3.org
Just for completeness. I approve this merge, with the understanding that Jeffrey will write up some language which says authenticators should never return userid (or any account info for that matter) when a signature was requested using a CredentialID [this means it's being used as a second factor]. -- GitHub Notification of comment by christiaanbrand Please view or discuss this issue at https://github.com/w3c/webauthn/pull/558#issuecomment-331537953 using your GitHub account
Received on Friday, 22 September 2017 19:22:08 UTC