[webauthn] Merged Pull Request: Prohibit Create Credential from cross-origin iframes from =JeffH via GitHub on 2020-04-09 (public-webauthn@w3.org from April 2020)

From: =JeffH via GitHub <sysbot+gh@w3.org>
Date: Thu, 09 Apr 2020 15:23:32 +0000
To: public-webauthn@w3.org
Message-ID: <pull_request.closed-393306227-1586445810-sysbot+gh@w3.org>

equalsJeffH has just merged jcjones's pull request 1394 for https://github.com/w3c/webauthn:

== Prohibit Create Credential from cross-origin iframes ==
This reverts part of PR #1276, again prohibiting the use of the Create method when `sameOriginWithAncestors` is `false`. The `Note` is simplified, since the integration between Credential Management and Feature Policy is now complete.


<!--
    This comment and the below content is programatically generated.
    You may add a comma-separated list of anchors you'd like a
    direct link to below (e.g. #idl-serializers, #idl-sequence):

    Don't remove this comment or modify anything below this line.
    If you don't want a preview generated for this pull request,
    just replace the whole of this comment's content by "no preview"
    and remove what's below.
-->
***
<a href="https://pr-preview.s3.amazonaws.com/jcjones/webauthn/pull/1394.html" title="Last updated on Apr 8, 2020, 7:02 PM UTC (1c16985)">Preview</a> | <a href="https://pr-preview.s3.amazonaws.com/w3c/webauthn/1394/a636817...jcjones:1c16985.html" title="Last updated on Apr 8, 2020, 7:02 PM UTC (1c16985)">Diff</a>

See https://github.com/w3c/webauthn/pull/1394

Received on Thursday, 9 April 2020 15:23:34 UTC