W3C home > Mailing lists > Public > public-webauthn@w3.org > January 2018

[webauthn] `CredentialRequestOptions` make otherwise valid values invalid in an undesirable way

From: Boris Zbarsky via GitHub <sysbot+gh@w3.org>
Date: Wed, 17 Jan 2018 17:07:27 +0000
To: public-webauthn@w3.org
Message-ID: <issues.opened-289342778-1516208846-sysbot+gh@w3.org>
bzbarsky has just created a new issue for https://github.com/w3c/webauthn:

== `CredentialRequestOptions` make otherwise valid values invalid in an undesirable way ==
https://w3c.github.io/webauthn/#credentialrequestoptions-extension has:

    partial dictionary CredentialRequestOptions {
        PublicKeyCredentialRequestOptions      publicKey;
    };

and `PublicKeyCredentialRequestOptions` has:

    required BufferSource                challenge;

What this means in practice is that if this part of the spec is implemented and https://github.com/heycam/webidl/issues/76 is fixed then `{}` stops being a valid value for a `CredentialRequestOptions`.

Assuming that `CredentialsContainer.prototype.get` should be usable to request non-public-key credentials, and that https://github.com/heycam/webidl/issues/76 will be fixed at some point, this is not ideal.

Please view or discuss this issue at https://github.com/w3c/webauthn/issues/750 using your GitHub account
Received on Wednesday, 17 January 2018 17:07:29 UTC

This archive was generated by hypermail 2.4.0 : Tuesday, 5 July 2022 07:26:30 UTC