Re: [webauthn] Should an RP be able to provide finer grained authenticator filtering in attestation options? (#1688) from James Elliott via GitHub on 2022-06-06 (public-webauthn@w3.org from June 2022)

From: James Elliott via GitHub <sysbot+gh@w3.org>
Date: Mon, 06 Jun 2022 22:50:20 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-1148009450-1654555818-sysbot+gh@w3.org>

> The spec doesn't currently have an `authenticatorSelection` option at all on a [PublicKeyCredentialRequestOptions](https://w3c.github.io/webauthn/#dictionary-assertion-options) object.
> 
> Unless I'm looking at an old spec.

This can already be technically achieved using the `allowCredentials` option. At the time of registration you record enough information to know this credential is of the particular criteria you want, and only populate `allowCredentials` with the ID's of credentials which match your selected criteria. 

-- 
GitHub Notification of comment by james-d-elliott
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1688#issuecomment-1148009450 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Monday, 6 June 2022 22:50:21 UTC