Re: [webauthn] Cross origin authentication without iframes (#1667) from Anders Rundgren via GitHub on 2021-08-31 (public-webauthn@w3.org from August 2021)

From: Anders Rundgren via GitHub <sysbot+gh@w3.org>
Date: Tue, 31 Aug 2021 13:31:23 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-909240726-1630416681-sysbot+gh@w3.org>

@akshayku @sbweeden  There may be a terminology issue buried here. 

"Cross-origin" for authentication usually means that you have something that can be used for authentication to multiple and potentially independent RPs like an X.509 certificate. 

"Cross-origin" for SPC however, is not about multiple RPs, but to permit arbitrary domains launching authorization/authentication requests to the RP that once created the key in question.

These use cases do not appear to have much in common. 

-- 
GitHub Notification of comment by cyberphone
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1667#issuecomment-909240726 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Tuesday, 31 August 2021 13:31:24 UTC