- From: Nick Steele via GitHub <sysbot+gh@w3.org>
- Date: Wed, 11 May 2022 16:20:21 +0000
- To: public-webauthn@w3.org
@Kieun has it, and additionally in most cases the biometric on authenticators is just a way to mask the PIN/Password underneath, as you mentioned @Firstyear. Multi-tenancy devices, i.e. devices with you and others enrolled through the same account, is not a flow I think we necessarily want to handle, and would rather support a more correct flow, with distinct accounts for each user. Outside of using the `uvm` extension, I would recommend using attestation if you, the RP, is trying to determine the capabilities of the user's authenticator. -- GitHub Notification of comment by nicksteele Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1728#issuecomment-1123984899 using your GitHub account -- Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Wednesday, 11 May 2022 16:20:22 UTC