Re: [webauthn] Provide request deserialization, response serialization (#1683)

From an RP consumability perspective I think this is an excellent idea. Minor nits:
 - In the createOpts example, should be shown as a B64URL input example data rather than 'internalUserId' since it is really bytes (same as challenge).
 - The assertion response can optionally include **userHandle** (not shown in your example)
Another concern is how extensions which use ArrayBuffer for input need to be documented. For example the [credBlob extension input]( is ArrayBuffer rather than JSON. This means that the optionsFromJSON method would need to be "extension aware", which is new behaviour. Not sure if there are any other extensions with this characteristic.

I expect also the JSON/B64URL encodings will eventually need a schema-like specification.

GitHub Notification of comment by sbweeden
Please view or discuss this issue at using your GitHub account

Sent via github-notify-ml as configured in

Received on Tuesday, 11 January 2022 20:44:52 UTC