Re: [webauthn] Add notion of forbidding resident credential creation (#1149)

 I can't see how the platform authenticator for Android would work in that case either. Any RP wanting users to register on any available authenticator (platform or portable) would therefore never use `forbidden`, even if such a thing was offered. It would destroy the UX and limit registration capabilities. 

GitHub Notification of comment by sbweeden
Please view or discuss this issue at using your GitHub account

Received on Wednesday, 12 June 2019 23:10:41 UTC