Re: [webauthn] Considerations on using WebAuthn in cross-origin iframes and Storage Access API (#1347) from =JeffH via GitHub on 2020-02-26 (public-webauthn@w3.org from February 2020)

From: =JeffH via GitHub <sysbot+gh@w3.org>
Date: Wed, 26 Feb 2020 21:23:01 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-591650811-1582752179-sysbot+gh@w3.org>

in 2020-02-26 meeting we agreed that given the way things are moving that webapps using 3p iframes  ought to assume that there's no state maintenance for them, they are going to start stateless, and the embedding frame needs to postMessage() state into the embedded iframe.  exposition of implementer considerations ought to go into external webdev documentation such as MDN.

-- 
GitHub Notification of comment by equalsJeffH
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1347#issuecomment-591650811 using your GitHub account

Received on Wednesday, 26 February 2020 21:23:02 UTC