Re: [webauthn] What is the point of `allowCredentials`?

@subyraman allowCredentials is used to provide authenticator with exact credential you want assertion from, and it is essential as FIDO2 supports 2FA-only mode, as it requires exact credID to be presented. Same applies for U2F.

GitHub Notification of comment by herrjemand
Please view or discuss this issue at using your GitHub account

Received on Thursday, 12 April 2018 17:25:45 UTC