Re: [webauthn] Emphasise that the CollectedClientData can be extended. from Emil Lundberg via GitHub on 2018-03-02 (public-webauthn@w3.org from March 2018)

From: Emil Lundberg via GitHub <sysbot+gh@w3.org>
Date: Fri, 02 Mar 2018 10:44:02 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-369887875-1519987441-sysbot+gh@w3.org>

Good idea. Should we add the same note to the other interfaces sent back to the RP (`PublicKeyCredential`, `AuthenticatorAttestationResponse` and `AuthenticatorAssertionResponse`)? Yubico's prototype server has so far gone with rejecting any response structure containing unknown keys anywhere (and yes, Chrome's `new_keys_may_be_added_here` caught that).

-- 
GitHub Notification of comment by emlun
Please view or discuss this issue at https://github.com/w3c/webauthn/pull/827#issuecomment-369887875 using your GitHub account

Received on Friday, 2 March 2018 10:44:13 UTC