- From: Ki-Eun Shin via GitHub <sysbot+gh@w3.org>
- Date: Thu, 15 Apr 2021 01:07:43 +0000
- To: public-webauthn@w3.org
I can't follow the issue. Is this about the platform authenticator with a discoverable feature or the security keys? At least , RP should have a knowledge about the registered authenticator so that RP will refer that knowledge to decide user login flow. For re-registration issue, the registration is performed after the user account is identified with an authenticated session so that the RP would have the list of registered credentials for that account. So, you can safely exclude the such credentials by populating those credential Ids in the `excludeCredentials` if you ask for the user to register an authenticator. -- GitHub Notification of comment by Kieun Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1569#issuecomment-819946890 using your GitHub account -- Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Thursday, 15 April 2021 01:07:45 UTC