W3C home > Mailing lists > Public > public-webauthn@w3.org > March 2018

Re: [webauthn] AppID / origin

From: Adam Powers via GitHub <sysbot+gh@w3.org>
Date: Wed, 28 Mar 2018 21:09:03 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-377037430-1522271342-sysbot+gh@w3.org>
[Section 5.5 PublicKeyCredentialRequestOptions](https://w3c.github.io/webauthn/#dictdef-publickeycredentialrequestoptions) allows an application to pass in a claimed `rpId` parameter to a `.get()` call. My question was whether the AppID extension should be using the claimed (and validated) `rpId` as the facet or the `origin`. Although after thinking about this more, that doesn't really make sense...

-- 
GitHub Notification of comment by apowers313
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/853#issuecomment-377037430 using your GitHub account
Received on Wednesday, 28 March 2018 21:09:09 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 18:58:48 UTC