Re: [webauthn] Authenticator flag to indicate internal knowledge of rk (discoverable credential creation). (#1761) from Andrey Paramonov via GitHub on 2022-07-05 (public-webauthn@w3.org from July 2022)

From: Andrey Paramonov via GitHub <sysbot+gh@w3.org>
Date: Tue, 05 Jul 2022 18:44:13 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-1175377664-1657046651-sysbot+gh@w3.org>

This change would be beneficial for a RP from the debugging / troubleshooting / auditing perspective. Sometimes the client (JS) portion of the RP code is tweaked by the customer, so the server side has wrong assumptions about the discoverability of the credentials. Knowing that the credential was created as discoverable, or not, would simplify troubleshooting in some cases, and potentially raise alerts on the server side if the behaviour is inconsistent with the server side code.

-- 
GitHub Notification of comment by ndpar
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1761#issuecomment-1175377664 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Tuesday, 5 July 2022 18:44:15 UTC