- From: David Waite via GitHub <sysbot+gh@w3.org>
- Date: Sat, 07 Mar 2020 22:04:43 +0000
- To: public-webauthn@w3.org
The authenticator itself can have a policy of one credential per rpid, or one per user handle at a rpid. However, I don't think this distinction matters - you still would pass existing credential handles into a make credential while registering a credential against a user, and you can't identify for a different user account that making a credential could have destructive side effects. -- GitHub Notification of comment by dwaite Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1385#issuecomment-596142135 using your GitHub account
Received on Saturday, 7 March 2020 22:04:45 UTC