- From: =JeffH via GitHub <sysbot+gh@w3.org>
- Date: Wed, 09 Feb 2022 20:53:31 +0000
- To: public-webauthn@w3.org
on 9-Feb-2022 call: i.e., there's a platform authnr that gets this arguably wrong, ie it does not return cred if other than "none" is requested (it errors if you ask for "direct" (rather than giving a response with none)). Is the spec not clear enough? possibly relevant: WebKit issue @ https://bugs.webkit.org/show_bug.cgi?id=224042 @agl: adding wording to the spec that clarifies this seems fine. (if authnrs can get away with providing no attestation even tho RP is asking for it begs question of whether non-enterprise attestation is overall usefull...) @ve7jtb: having some attestation to what they sync fabric is, would be useful for RPs (he is assuming?) (also, those RPs requesting devciePubKey will care about the dpk attestation (but not nec. the user cred attestation?)) -- GitHub Notification of comment by equalsJeffH Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1697#issuecomment-1034181981 using your GitHub account -- Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Wednesday, 9 February 2022 20:53:32 UTC