[webauthn] new commits pushed by equalsJeffH

The following commits were just pushed by equalsJeffH to https://github.com/w3c/webauthn:

* Fix lowercase start of a sentence
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/c3be90f86a36b88c4bc07702cac6b5e0c20b3fc5

* Link AttestationConveyancePreference values in switch cases

We already do this for UserVerificationRequirement values even though both types
are "non-exhaustive" enumerations for DOMString attributes.
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/91dde1637c99e444986405fa66b3b43e0d982073

* Explicitly point out that same user handle overwrites existing cred
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/6ad9a0c5dc8e14392c6820035dd6bb6083d85715

* Change a "behaviour" to "behavior" to align with majority in doc
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/a1b6df552d8782d41d8d42a9dda2fa39259ce85b

* Introduce terms "contains" and "created on" as synonyms of "bound to"
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/339cbee82bb7453507ff979b21b451aa31639fa3

* Clarify, simplify and unify parameter descriptions

These parameter descriptions are the primary API documentation for Relying
Parties, so this rewrites attempts to simplify the descriptions and clearer
explain how to use them from an RP perspective. Also removes some unnecessary
words and aligns some similar descriptions into more recognizable patterns.
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/a7af17acd9e4b6822502db2a5ee8553c597f5583

* Link to "User Handle Contents" section from User Handle definition
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/39b7cc3cf186a7f23746842aa3143fc1a500c416

* Address review comments
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/03becb655b41e96413164b55335cf61a2a422f9f

* Define "user account"

Co-authored-by: =JeffH <jdhodges@google.com>
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/8056f09e5b6db776a51003ff07265f425cb79a45

* Address review comments

Co-authored-by: =JeffH <jdhodges@google.com>
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/9d7bc35d317d24b313709a32ad1497d2d03f0b69

* Merge pull request #1649 from w3c/issue-1618-define-user-account

Define "user account"
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/d55d7338acb0f6c60945024deb6d5ec84e43aa6b

* Apply suggestions from code review

Co-authored-by: =JeffH <jdhodges@google.com>
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/07b26bc9227c9d2e4593efff893941e1547f7528

* Make challenge parameter descriptions more similar
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/5445e7e84dadbe239a230d48c74bd0153687350c

* Make description of PublicKeyCredentialDescriptor more focused
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/22f246e4878edf8eeac7d03a9195ea7d61cc3550

* Split allowCredentials description into opinionated use cases
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/3b6a836d58968872855ce04163406e43f3154871

* Address review comments by @sbweeden
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/756f964bc39f4cae4ee4ac93aa8cef31eb69bc7b

* Merge pull request #1669 from w3c/issue-1618-review-sbweeden

Address review comments by @sbweeden
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/54e1a922d09c1fb66cf62ef7d2a1fa9a7162ba31

* Merge branch 'main' into issue-1618-clarify-params
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/5ba355629d701bf7caa6ea78f9162fd13694db37

* Address review comments by @equalsJeffH
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/f175479cc4158b92e8808e731252b2d5b9d37f97

* Address one more review comment by @equalsJeffH
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/2f25a98213c37365010404d71d28004231ccb7ba

* Merge branch 'main' into issue-1618-clarify-params
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/940685738cebf24f0faf7bc634d314a7bb9be07d

* Rewrite authenticatorAttachment note about discovering attachment after a successful ceremony
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/05d05fc41b98cea4ba61b18f78e2bbfbd1c0d022

* Polish PR #1621

- Use terms "create()/get() operation" more instead of ceremony
- Align "extensions" description between create() and get() options
- Reference #sctn-credential-id-privacy-leak in allowCredentials description
- Tweak wordings a bit
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/9a508dacde4d6f26c41ef2370dba4766f6c9be74

* Reference #sctn-extensions in extensions parameter descriptions
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/d9d608e462be5a7e19274b4b9ca9c90632054ec4

* Apply part of commit f175479c to authentication ceremony definition too
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/3d852f2c16a36d112094679cff8804b3d9e1c16e

* Address review comments by @equalsJeffH
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/42db62ad9c42ccfe96d66c063a1f14f9c2d08606

* Tighten requirements for rejecting duplicate credential IDs.

The existing wording suggests rejecting registrations with duplicate
credential IDs, but says that sites may replace the record if they wish.
But accidential duplicate credential IDs aren't worth worrying about and
it's safer to always reject duplicates.

Include a note with the reasoning so that sites who don't want to do
this check can at least think about the implications.

Fixes #1679
  by Adam Langley
https://github.com/w3c/webauthn/commit/eafdd20b1ef30d09c2588df150b6db67bd925cb9

* Merge pull request #1674 from w3c/pr-1621-polish

Additional polish for PR #1621
  by Emil Lundberg
https://github.com/w3c/webauthn/commit/1651515c67813bcf9c783b0657a4a47aeced308e

* Apply Jeff's suggestion

Co-authored-by: Lucas Garron <code@garron.net>
  by Adam Langley
https://github.com/w3c/webauthn/commit/7038a5c9486c0341b810671433be6a1cc7ffab8a

* Address Lucas and Emil's comments
  by Adam Langley
https://github.com/w3c/webauthn/commit/acf471c691d6ddade93b718a7470a1805b9c6c11

* Apply Jeff's change

Co-authored-by: =JeffH <jdhodges@google.com>
  by Adam Langley
https://github.com/w3c/webauthn/commit/eae134f8596844b88f9804437441ee0a3de52ea0

* Apply Jeff's change

Co-authored-by: =JeffH <jdhodges@google.com>
  by Adam Langley
https://github.com/w3c/webauthn/commit/a15438be35a08f6fb7f4c797895aea23088a3e0d

* remove extraneous "create credential" permissions policy cruft (#1686)

fixes #1685
  by =JeffH
https://github.com/w3c/webauthn/commit/92a2295b08956939910303cc047170091153679d

* Merge pull request #1680 from agl/noselfsign

Tighten requirements for rejecting duplicate credential IDs.
  by Adam Langley
https://github.com/w3c/webauthn/commit/1ed258fc0f27efe39f0d548c60a9eb6dcf9fa374

* Merge pull request #1621 from w3c/issue-1618-clarify-params

Clarify, simplify and align parameter descriptions
  by John Fontana
https://github.com/w3c/webauthn/commit/bc872075b08183e4c9fc0d12b72ab5ee6eaa3489

* Merge branch 'main' into jeffh-fix-1658-device-bound-key-extension
  by JeffH
https://github.com/w3c/webauthn/commit/d652787631e3338876f456cf8ae1effcd7dd53f6



-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Tuesday, 18 January 2022 01:06:07 UTC