Re: [webauthn] Better specify what an unknown type credential descriptor being ignored means (#1748)

> I also think that similar to, ignoring unknown values is needed for forward compatibility.

Yes, this came up when fixing that issue on chrome.

> Maybe we can change the requirement to be that "[client platforms]( MUST ignore any [PublicKeyCredentialDescriptor]( with an unknown [type](, treating the item as if it was not present" but if this results in an empty allowCredentials, then throw an error?


GitHub Notification of comment by nsatragno
Please view or discuss this issue at using your GitHub account

Sent via github-notify-ml as configured in

Received on Tuesday, 21 June 2022 15:15:58 UTC