Re: [webauthn] Enforce backup eligibility during assertion (#1791)

So reading these points, I think it sounds like we *should* have an explicit step in the spec stating that if BE changes during a credential lifecycle the RP can choose to reject or take other action then? 

GitHub Notification of comment by Firstyear
Please view or discuss this issue at using your GitHub account

Sent via github-notify-ml as configured in

Received on Wednesday, 31 August 2022 00:10:15 UTC