- From: =JeffH via GitHub <sysbot+gh@w3.org>
- Date: Tue, 18 Jan 2022 01:06:05 +0000
- To: public-webauthn@w3.org
The following commits were just pushed by equalsJeffH to https://github.com/w3c/webauthn: * Fix lowercase start of a sentence by Emil Lundberg https://github.com/w3c/webauthn/commit/c3be90f86a36b88c4bc07702cac6b5e0c20b3fc5 * Link AttestationConveyancePreference values in switch cases We already do this for UserVerificationRequirement values even though both types are "non-exhaustive" enumerations for DOMString attributes. by Emil Lundberg https://github.com/w3c/webauthn/commit/91dde1637c99e444986405fa66b3b43e0d982073 * Explicitly point out that same user handle overwrites existing cred by Emil Lundberg https://github.com/w3c/webauthn/commit/6ad9a0c5dc8e14392c6820035dd6bb6083d85715 * Change a "behaviour" to "behavior" to align with majority in doc by Emil Lundberg https://github.com/w3c/webauthn/commit/a1b6df552d8782d41d8d42a9dda2fa39259ce85b * Introduce terms "contains" and "created on" as synonyms of "bound to" by Emil Lundberg https://github.com/w3c/webauthn/commit/339cbee82bb7453507ff979b21b451aa31639fa3 * Clarify, simplify and unify parameter descriptions These parameter descriptions are the primary API documentation for Relying Parties, so this rewrites attempts to simplify the descriptions and clearer explain how to use them from an RP perspective. Also removes some unnecessary words and aligns some similar descriptions into more recognizable patterns. by Emil Lundberg https://github.com/w3c/webauthn/commit/a7af17acd9e4b6822502db2a5ee8553c597f5583 * Link to "User Handle Contents" section from User Handle definition by Emil Lundberg https://github.com/w3c/webauthn/commit/39b7cc3cf186a7f23746842aa3143fc1a500c416 * Address review comments by Emil Lundberg https://github.com/w3c/webauthn/commit/03becb655b41e96413164b55335cf61a2a422f9f * Define "user account" Co-authored-by: =JeffH <jdhodges@google.com> by Emil Lundberg https://github.com/w3c/webauthn/commit/8056f09e5b6db776a51003ff07265f425cb79a45 * Address review comments Co-authored-by: =JeffH <jdhodges@google.com> by Emil Lundberg https://github.com/w3c/webauthn/commit/9d7bc35d317d24b313709a32ad1497d2d03f0b69 * Merge pull request #1649 from w3c/issue-1618-define-user-account Define "user account" by Emil Lundberg https://github.com/w3c/webauthn/commit/d55d7338acb0f6c60945024deb6d5ec84e43aa6b * Apply suggestions from code review Co-authored-by: =JeffH <jdhodges@google.com> by Emil Lundberg https://github.com/w3c/webauthn/commit/07b26bc9227c9d2e4593efff893941e1547f7528 * Make challenge parameter descriptions more similar by Emil Lundberg https://github.com/w3c/webauthn/commit/5445e7e84dadbe239a230d48c74bd0153687350c * Make description of PublicKeyCredentialDescriptor more focused by Emil Lundberg https://github.com/w3c/webauthn/commit/22f246e4878edf8eeac7d03a9195ea7d61cc3550 * Split allowCredentials description into opinionated use cases by Emil Lundberg https://github.com/w3c/webauthn/commit/3b6a836d58968872855ce04163406e43f3154871 * Address review comments by @sbweeden by Emil Lundberg https://github.com/w3c/webauthn/commit/756f964bc39f4cae4ee4ac93aa8cef31eb69bc7b * Merge pull request #1669 from w3c/issue-1618-review-sbweeden Address review comments by @sbweeden by Emil Lundberg https://github.com/w3c/webauthn/commit/54e1a922d09c1fb66cf62ef7d2a1fa9a7162ba31 * Merge branch 'main' into issue-1618-clarify-params by Emil Lundberg https://github.com/w3c/webauthn/commit/5ba355629d701bf7caa6ea78f9162fd13694db37 * Address review comments by @equalsJeffH by Emil Lundberg https://github.com/w3c/webauthn/commit/f175479cc4158b92e8808e731252b2d5b9d37f97 * Address one more review comment by @equalsJeffH by Emil Lundberg https://github.com/w3c/webauthn/commit/2f25a98213c37365010404d71d28004231ccb7ba * Merge branch 'main' into issue-1618-clarify-params by Emil Lundberg https://github.com/w3c/webauthn/commit/940685738cebf24f0faf7bc634d314a7bb9be07d * Rewrite authenticatorAttachment note about discovering attachment after a successful ceremony by Emil Lundberg https://github.com/w3c/webauthn/commit/05d05fc41b98cea4ba61b18f78e2bbfbd1c0d022 * Polish PR #1621 - Use terms "create()/get() operation" more instead of ceremony - Align "extensions" description between create() and get() options - Reference #sctn-credential-id-privacy-leak in allowCredentials description - Tweak wordings a bit by Emil Lundberg https://github.com/w3c/webauthn/commit/9a508dacde4d6f26c41ef2370dba4766f6c9be74 * Reference #sctn-extensions in extensions parameter descriptions by Emil Lundberg https://github.com/w3c/webauthn/commit/d9d608e462be5a7e19274b4b9ca9c90632054ec4 * Apply part of commit f175479c to authentication ceremony definition too by Emil Lundberg https://github.com/w3c/webauthn/commit/3d852f2c16a36d112094679cff8804b3d9e1c16e * Address review comments by @equalsJeffH by Emil Lundberg https://github.com/w3c/webauthn/commit/42db62ad9c42ccfe96d66c063a1f14f9c2d08606 * Tighten requirements for rejecting duplicate credential IDs. The existing wording suggests rejecting registrations with duplicate credential IDs, but says that sites may replace the record if they wish. But accidential duplicate credential IDs aren't worth worrying about and it's safer to always reject duplicates. Include a note with the reasoning so that sites who don't want to do this check can at least think about the implications. Fixes #1679 by Adam Langley https://github.com/w3c/webauthn/commit/eafdd20b1ef30d09c2588df150b6db67bd925cb9 * Merge pull request #1674 from w3c/pr-1621-polish Additional polish for PR #1621 by Emil Lundberg https://github.com/w3c/webauthn/commit/1651515c67813bcf9c783b0657a4a47aeced308e * Apply Jeff's suggestion Co-authored-by: Lucas Garron <code@garron.net> by Adam Langley https://github.com/w3c/webauthn/commit/7038a5c9486c0341b810671433be6a1cc7ffab8a * Address Lucas and Emil's comments by Adam Langley https://github.com/w3c/webauthn/commit/acf471c691d6ddade93b718a7470a1805b9c6c11 * Apply Jeff's change Co-authored-by: =JeffH <jdhodges@google.com> by Adam Langley https://github.com/w3c/webauthn/commit/eae134f8596844b88f9804437441ee0a3de52ea0 * Apply Jeff's change Co-authored-by: =JeffH <jdhodges@google.com> by Adam Langley https://github.com/w3c/webauthn/commit/a15438be35a08f6fb7f4c797895aea23088a3e0d * remove extraneous "create credential" permissions policy cruft (#1686) fixes #1685 by =JeffH https://github.com/w3c/webauthn/commit/92a2295b08956939910303cc047170091153679d * Merge pull request #1680 from agl/noselfsign Tighten requirements for rejecting duplicate credential IDs. by Adam Langley https://github.com/w3c/webauthn/commit/1ed258fc0f27efe39f0d548c60a9eb6dcf9fa374 * Merge pull request #1621 from w3c/issue-1618-clarify-params Clarify, simplify and align parameter descriptions by John Fontana https://github.com/w3c/webauthn/commit/bc872075b08183e4c9fc0d12b72ab5ee6eaa3489 * Merge branch 'main' into jeffh-fix-1658-device-bound-key-extension by JeffH https://github.com/w3c/webauthn/commit/d652787631e3338876f456cf8ae1effcd7dd53f6 -- Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Tuesday, 18 January 2022 01:06:07 UTC