Re: [webauthn] Inconsistencies in backup state flags (#1740) from Emil Lundberg via GitHub on 2022-07-11 (public-webauthn@w3.org from July 2022)

From: Emil Lundberg via GitHub <sysbot+gh@w3.org>
Date: Mon, 11 Jul 2022 13:18:46 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-1180400166-1657545524-sysbot+gh@w3.org>

> Do we also have guidance around what happens when these flags change, and what are valid transitions? IE if BE is false, and BS changes from false to true?.

There is some guidance in [§6.1.3. Credential Backup State](https://w3c.github.io/webauthn/#sctn-credential-backup), but it is not exhaustive and does not currently include guidance on how RPs should handle `BE=0; BS=1` or a change in `BE`. @timcappalli should we add guidance for those cases? If not, there'll likely be wide differences in how implementations handle them.

-- 
GitHub Notification of comment by emlun
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1740#issuecomment-1180400166 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Monday, 11 July 2022 13:18:49 UTC