Re: [webauthn] Clarify behaviour of rawId and id fields for resident key credentials from Emil Lundberg via GitHub on 2018-07-18 (public-webauthn@w3.org from July 2018)

From: Emil Lundberg via GitHub <sysbot+gh@w3.org>
Date: Wed, 18 Jul 2018 17:54:14 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-406019233-1531936453-sysbot+gh@w3.org>

>[for resident key] in this case rawId and id fields must be empty

No, the `id` and `rawId` are always returned from the client. It's not passed in by the RP in this case, but it's stored in the credential source and returned on use.

-- 
GitHub Notification of comment by emlun
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1000#issuecomment-406019233 using your GitHub account

Received on Wednesday, 18 July 2018 17:54:16 UTC