Re: [webauthn] Propose extension: Delegation of Authentication (#1125) from Emil Lundberg via GitHub on 2019-01-28 (public-webauthn@w3.org from January 2019)

From: Emil Lundberg via GitHub <sysbot+gh@w3.org>
Date: Mon, 28 Jan 2019 10:47:39 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-458081936-1548672457-sysbot+gh@w3.org>

Still, isn't all of that constraint logic internal to the server? How is it different from, say, an OAuth token (which, like a password, is also a shared secret)?

-- 
GitHub Notification of comment by emlun
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1125#issuecomment-458081936 using your GitHub account

Received on Monday, 28 January 2019 10:47:40 UTC