The following commits were just pushed by equalsJeffH to https://github.com/w3c/webauthn: * Prohibit Create Credential from cross-origin iframes (#1394) * Prohibit Create Credential from cross-origin iframes This reverts part of PR #1276, again prohibiting the use of the Create method when `sameOriginWithAncestors` is `false`. The `Note` is simplified, since the integration between Credential Management and Feature Policy is now complete. * Split the feature-policy definition, per review comments * Apply suggestions from code review Co-Authored-By: =JeffH <jdhodges@google.com> Co-authored-by: =JeffH <jdhodges@google.com> by J.C. Jones https://github.com/w3c/webauthn/commit/6626671ac60b4731943a1d024b892a16ae47c6b5Received on Thursday, 9 April 2020 15:23:35 UTC
This archive was generated by hypermail 2.4.0 : Tuesday, 5 July 2022 07:26:40 UTC