- From: Adam Langley via GitHub <sysbot+gh@w3.org>
- Date: Fri, 02 Jul 2021 17:16:53 +0000
- To: public-webauthn@w3.org
There are two issues here that lead to problems. On macOS, Safari and Chrome have different credential stores. This will hopefully be fixed in time when Chrome is able to integrate with the macOS system platform authenticator. This is not a problem on Windows, Chrome OS, Android, nor iOS. There are unified credential stores on those platforms. Second, in cases where the platform only creates discoverable credentials (Windows is such a platform) then creating a credential can cause unintended credential overwrites since there can only be a single credential with a given (RP ID, user ID) pair. This can be addressed on Windows today by following the practices from “Preventing unintended credential overwrites” in #1637. It's not a cross-platform solution but, if the WG agrees that it's a good one, I hope that all platforms will align on it. -- GitHub Notification of comment by agl Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1638#issuecomment-873145259 using your GitHub account -- Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Friday, 2 July 2021 17:16:55 UTC