W3C home > Mailing lists > Public > public-webauthn@w3.org > March 2020

[webauthn] Pull Request: Prohibit Create Credential from cross-origin iframes

From: J.C. Jones via GitHub <sysbot+gh@w3.org>
Date: Tue, 24 Mar 2020 23:30:28 +0000
To: public-webauthn@w3.org
Message-ID: <pull_request.opened-393306227-1585092627-sysbot+gh@w3.org>
jcjones has just submitted a new pull request for https://github.com/w3c/webauthn:

== Prohibit Create Credential from cross-origin iframes ==
This reverts part of PR #1276, again prohibiting the use of the Create method when `sameOriginWithAncestors` is `false`. The `Note` is simplified, since the integration between Credential Management and Feature Policy is now complete.

See https://github.com/w3c/webauthn/pull/1394
Received on Tuesday, 24 March 2020 23:30:31 UTC

This archive was generated by hypermail 2.4.0 : Tuesday, 5 July 2022 07:26:40 UTC