[webauthn] Merged Pull Request: Finish up hot-plugging algorithm language from Emil Lundberg via GitHub on 2018-06-06 (public-webauthn@w3.org from June 2018)

From: Emil Lundberg via GitHub <sysbot+gh@w3.org>
Date: Wed, 06 Jun 2018 17:14:27 +0000
To: public-webauthn@w3.org
Message-ID: <pull_request.closed-186979183-1528305266-sysbot+gh@w3.org>

emlun has just merged emlun's pull request 900 for https://github.com/w3c/webauthn:

== Finish up hot-plugging algorithm language ==
This fixes #613.

This makes changes to the client algorithms, so it could technically be construed as breaking, but in practice this should be more of an editorial re-wording that still agrees with what implementations actually do. At least, that is the intent.

- This merges the previous step 19 of [makeCredential][mc] in as a switch case of step 20, and the previous step 18 of [getAssertion][ga] in as a switch case of step 19. This way there is only one step in each algorithm that tries to express things to do asynchronously for the duration of the timer.

- The inline `Issue:`s mentioning underspecified behaviour are replaced with descriptions of an abstract "set of presently available authenticators" and `Note:`s indicating that this is intentionally underspecified and meant to represent different connection and discovery mechanisms all in one.

- This also swaps the order of the previous steps 17 ("Start _lifetimeTimer_.") and 18 ("Let _issuedRequests_ be a new ordered set") of [makeCredential][mc], for consistency with [getAssertion][ga] and so that the step "Start _lifetimeTimer_." immediately precedes the step "While _lifetimeTimer_ has not expired [...]".

- This also fixes the `Issue:` about the incorrect scope of _savedCredentialId_ in [getAssertion][ga]. This variable is replaced by a top-level _savedCredentialIds_ variable containing a map of <i>authenticator</i>s to credential IDs, to preserve the previous scoping of the _savedCredential_ variable to a specific _authenticator_.

[mc]: https://w3c.github.io/webauthn/#createCredential
[ga]: https://w3c.github.io/webauthn/#getAssertion


<!--
    This comment and the below content is programatically generated.
    You may add a comma-separated list of anchors you'd like a
    direct link to below (e.g. #idl-serializers, #idl-sequence):

    Don't remove this comment or modify anything below this line.
    If you don't want a preview generated for this pull request,
    just replace the whole of this comment's content by "no preview"
    and remove what's below.
-->
***
<a href="https://pr-preview.s3.amazonaws.com/w3c/webauthn/pull/900.html" title="Last updated on May 30, 2018, 6:23 PM GMT (c8f110d)">Preview</a> | <a href="https://pr-preview.s3.amazonaws.com/w3c/webauthn/900/2c6faa8...c8f110d.html" title="Last updated on May 30, 2018, 6:23 PM GMT (c8f110d)">Diff</a>

See https://github.com/w3c/webauthn/pull/900

Received on Wednesday, 6 June 2018 17:14:32 UTC