Thursday, 31 August 2023
- Re: [webauthn] [[preventSilentAccess]] seems incorrect (#1956)
- [webauthn] [[preventSilentAccess]] seems incorrect (#1956)
- [w3c/webauthn] 235ab6: Pluralize implementations
- [webauthn] new commits pushed by emlun
- Re: [webauthn] Broken references in Web Authentication: An API for accessing Public Key Credentials - Level (#1794)
- [webauthn] Pull Request: Fix broken spec references
- [w3c/webauthn] f6bbe7: Remove outdated spec reference anchors
- [webauthn] new commits pushed by emlun
Wednesday, 30 August 2023
- [webauthn] Pull Request: Enterprise packed attestation guidance
- Re: [webauthn] Allow conditional and modal flows to run simultaneously (#1854)
- Re: [webauthn] Clarify how to differentiate between exceptions (#1859)
- Re: [webauthn] Should enterprise attestation support be flagged explicitly? (#1742)
- Closed: [webauthn] Enforce backup eligibility during assertion (#1791)
- Re: [webauthn] Dependencies section is out of date and duplicates terms index (#1797)
- Re: [webauthn] Spec abstract is out of date on the eve of multi-device credentials and cross-device auth (#1743)
- [webauthn] Pull Request: Add packed attestation optional firmware version attribute
- Re: [webauthn] Broken references in Web Authentication: An API for accessing Public Key Credentials - Level (#1794)
- Re: [webauthn] Clarify the need for truly randomly generated challenges (aka challenge callback issue) (#1856)
- Re: [webauthn] Add packed attestation optional firmware version attribute (#1953)
- [webauthn] Describe `firmware` OID usage in packed attestation (#1952)
- Re: [webauthn] How to know if a user has already registered a device? (#1749)
- 08/30/2023 W3C Web Authentication Meeting
Tuesday, 29 August 2023
- [webauthn] Pull Request: Initial text for conditional create
- Event Canceled: Web Authentication weekly
- Re: [webauthn] Add `compound` attestation format (#1950)
- Re: [webauthn] Add `compound` attestation format (#1950)
- [webauthn] Pull Request: Add `compound` attestation format
- [w3c/webauthn] ae0786: rogue text change
- [webauthn] new commits pushed by timcappalli
- [webauthn] new commits pushed by timcappalli
- [w3c/webauthn] 11429c: initial text for compound attestation format
- Weekly github digest (WebAuthn)
Saturday, 26 August 2023
Friday, 25 August 2023
- [w3c/webauthn] 4b017b: Merge pull request #1884 from w3c/hints
- [webauthn] new commits pushed by github-actions[bot]
- [w3c/webauthn]
- [w3c/webauthn] ef8630: Add a `hints` element for both `create` and `get`.
- [webauthn] new commits pushed by agl
- [webauthn] Merged Pull Request: Add a `hints` element for both `create` and `get`.
- [w3c/webauthn] bda342: Merge pull request #1 from w3c/master
- [webauthn] new commits pushed by agl
Thursday, 24 August 2023
- [w3c/webauthn] 7068cf: Streamline user.name definition and add examples
- [webauthn] new commits pushed by MasterKale
- [w3c/webauthn] 6b9a84: Suggest empty string for displayName when needed
- [webauthn] new commits pushed by MasterKale
- Re: [webauthn] The default value of `attestation` member in `PublicKeyCredentialRequestOptions` should be null or must not have default value (#1941)
- Re: [webauthn] WebAuthn available to Workers? aka "silent authentication" (#199)
- Re: [webauthn] WebAuthn available to Workers? aka "silent authentication" (#199)
- Re: [webauthn] The default value of `attestation` member in `PublicKeyCredentialRequestOptions` should be null or must not have default value (#1941)
- Re: [webauthn] Proposal/discussion: non-extractable CryptoKey output from the prf extension (#1895)
- [webauthn] Pull Request: Fix inconsistent usage of options variable
Wednesday, 23 August 2023
- Re: [webauthn] Inconsistent variable reference of attestation and attestationFormats in the steps (#1947)
- [webauthn] Inconsistent variable reference of attestation and attestationFormats in the steps (#1947)
- Re: [webauthn] The default value of `attestation` member in `PublicKeyCredentialRequestOptions` should be null or must not have default value (#1941)
- Re: [webauthn] Add authenticatorDisplayName to credProps (#1880)
- [w3c/webauthn] b72ecc: Use {{KeyFormat/raw}}
- [webauthn] new commits pushed by emlun
- Re: [webauthn] Allow desired attestation format to be an ordered list (#1917)
- [webauthn] Pull Request: [Meta] Hard-code HKDF in PRF importCryptoKey
- [webauthn] Pull Request: Add importCryptoKey input to PRF extension
- [w3c/webauthn] c45533: Hard-code HKDF in PRF importCryptoKey
- [w3c/webauthn]
- [webauthn] new commits pushed by emlun
- [webauthn] new commits pushed by emlun
- [webauthn] Pull Request: Delete outdated note about checking registration UV with PRF extension
- [w3c/webauthn] 7b877b: Delete outdated note about checking registration U...
- [webauthn] new commits pushed by emlun
Tuesday, 22 August 2023
Monday, 21 August 2023
Saturday, 19 August 2023
- Re: [webauthn] make username fields optional (do not delete them, but do not force their usage, either, which is hostile against usernameless services) (#1942)
- Re: [webauthn] username and display name should not be mandatory (rp, challange either) and OS UX should be simplified if not present (#1915)
- [webauthn] make username fields optional (do not delete them, but do not force their usage, either, which is hostile against usernameless services) (#1942)
- Re: [webauthn] username and display name should not be mandatory (rp, challange either) and OS UX should be simplified if not present (#1915)
- Re: [webauthn] username and display name should not be mandatory (rp, challange either) and OS UX should be simplified if not present (#1915)
Friday, 18 August 2023
- Closed: [webauthn] Add Changed Flag to UVM Entry (#1890)
- Re: [webauthn] Add Changed Flag to UVM Entry (#1890)
- Re: [webauthn] username and display name should not be mandatory (rp, challange either) and OS UX should be simplified if not present (#1915)
- Re: [webauthn] username and display name should not be mandatory (rp, challange either) and OS UX should be simplified if not present (#1915)
- Re: [webauthn] username and display name should not be mandatory (rp, challange either) and OS UX should be simplified if not present (#1915)
- [webauthn] The default value of `attestation` member in `PublicKeyCredentialRequestOptions` should be null (#1941)
- Re: [webauthn] Add authenticatorDisplayName to credProps (#1880)
Thursday, 17 August 2023
- Re: [webauthn] Adding some sentences to describe credential sharing between multiple users (#1921)
- Re: [webauthn] Adding some sentences to describe credential sharing between multiple users (#1921)
- Re: [webauthn] Adding some sentences to describe credential sharing between multiple users (#1921)
Wednesday, 16 August 2023
- Re: [webauthn] Adding some sentences to describe credential sharing between multiple users (#1921)
- Re: [webauthn] Signaling when user credentials are shared between users to the `relying party` (#1922)
- Closed: [webauthn] username and display name should not be mandatory (rp, challange either) and OS UX should be simplified if not present (#1915)
- Re: [webauthn] username and display name should not be mandatory (rp, challange either) and OS UX should be simplified if not present (#1915)
- Closed: [webauthn] Return public key in attestedCredentialData on authenticatorGetAssertion (#1928)
- Re: [webauthn] Return public key in attestedCredentialData on authenticatorGetAssertion (#1928)
- Closed: [webauthn] Signaling when user credentials are shared between users to the `relying party` (#1922)
- Re: [webauthn] Signaling when user credentials are shared between users to the `relying party` (#1922)
- Re: [webauthn] Proposal/discussion: non-extractable CryptoKey output from the prf extension (#1895)
- Re: [webauthn] Non-modal registration during conditional assertion (#1929)
- Re: [webauthn] Address description of uses, and requirements for supplying userHandle (#1914)
- [w3c/webauthn] 3cc3a8: Merge pull request #1914 from sbweeden/sbweeden_18...
- [webauthn] new commits pushed by github-actions[bot]
- Re: [webauthn] Add a `hints` element for both `create` and `get`. (#1884)
- [w3c/webauthn] 0553e3: Explicitly require userHandle to be supplied durin...
- Closed: [webauthn] Require non-null userHandle when allowCredentials is empty? (#1892)
- Closed: [webauthn] Revisit description of userHandle (#1909)
- [webauthn] new commits pushed by nicksteele
- [webauthn] Merged Pull Request: Address description of uses, and requirements for supplying userHandle
- [w3c/webauthn] 8f0e23: Merge pull request #1920 from Kieun/kieun-1918
- [webauthn] new commits pushed by github-actions[bot]
- [w3c/webauthn] bda342: Merge pull request #1 from w3c/master
- [webauthn] new commits pushed by agl
- Closed: [webauthn] `attestation` and `attestationObject` is missing some of interfaces for assertions (#1918)
- [webauthn] Merged Pull Request: Add missing fields in dictionaries for JSON representation
- [w3c/webauthn] 86dbab: Merge pull request #1930 from w3c/issue-1889-clari...
- [webauthn] new commits pushed by github-actions[bot]
- [w3c/webauthn] 783d71: Merge pull request #1931 from w3c/nsteele-authntct...
- [webauthn] new commits pushed by github-actions[bot]
- [w3c/webauthn]
- [w3c/webauthn] 913576: Add security consideration section "Validating the...
- Closed: [webauthn] Clarify how the given origin in the ClientDataJSON matches to the expected one (#1889)
- [webauthn] new commits pushed by emlun
- [webauthn] Merged Pull Request: Add security consideration section "Validating the origin of a credential"
- [w3c/webauthn] 104733: Update Authenticator definition
- [webauthn] new commits pushed by nicksteele
- [webauthn] Merged Pull Request: Update Authenticator Definition
- [w3c/webauthn] eaa922: Apply emlun's suggestion.
- [webauthn] new commits pushed by agl
- Re: [webauthn] Adding some sentences to describe credential sharing between multiple users (#1921)
- 08/16/2023 W3C Web Authentication Meeting
- Event Invitation: Web Authentication weekly
Tuesday, 15 August 2023
- [webauthn] new commits pushed by MasterKale
- [w3c/webauthn] 03937f: Try to tweak wording to emphasize name
- Weekly github digest (WebAuthn)
Monday, 14 August 2023
- Re: [webauthn] Non-modal registration during conditional assertion (#1929)
- Re: [webauthn] Adding some sentences to describe credential sharing between multiple users (#1921)
Wednesday, 9 August 2023
- [w3c/webauthn]
- [w3c/webauthn] 730716: remove isPasskeyPlatformAuthenticatorAvailable
- [webauthn] new commits pushed by timcappalli
- [webauthn] Merged Pull Request: remove isPasskeyPlatformAuthenticatorAvailable()
- Re: [webauthn] remove isPasskeyPlatformAuthenticatorAvailable() (#1936)
- [w3c/webauthn] 4cc067: add getClientCapabilites method and enum
- [webauthn] new commits pushed by MasterKale
- [w3c/webauthn]
- [w3c/webauthn] 7b1099: Disambiguate [=Window=] links as {{Window}}
- Closed: [webauthn] Ambiguous reference to [=Window=] (#1910)
- [webauthn] new commits pushed by emlun
- [webauthn] Merged Pull Request: Disambiguate [=Window=] links as {{Window}}
- Closed: [webauthn] Should we keep the word “passkey” in the spec or not (#1939)
- Re: [webauthn] Should we keep the word “passkey” in the spec or not (#1939)
- Re: [webauthn] remove isPasskeyPlatformAuthenticatorAvailable() (#1936)
- Re: [webauthn] Should we keep the word “passkey” in the spec or not (#1939)
- [w3c/webauthn] 7dce3c: Merge pull request #1907 from w3c/1791-enforce-be-...
- [webauthn] new commits pushed by github-actions[bot]
- [w3c/webauthn]
- [w3c/webauthn] 615e8e: Assert that be:0+bs:1 is bad during create()
- [webauthn] new commits pushed by MasterKale
- [webauthn] Merged Pull Request: Define RP processing of be and bs flags during `.create()` and `.get()`
- Event Updated: Web Authentication bi-weekly
- Re: [webauthn] Should we keep the word “passkey” in the spec or not (#1939)
- Re: [webauthn] Should we keep the word “passkey” in the spec or not (#1939)
- [webauthn] Closed Pull Request: remove passkey word
- Re: [webauthn] remove passkey word (#1938)
- Closed: [webauthn] Should we keep the word “passkey” in the spec or not (#1939)
- Re: [webauthn] Should we keep the word “passkey” in the spec or not (#1939)
- Re: [webauthn] Should we keep the word “passkey” in the spec or not (#1939)
- Closed: [webauthn] Extension's data security on assertion (#1940)
- Re: [webauthn] Extension's data security on assertion (#1940)
- Re: [webauthn] Should we keep the word “passkey” in the spec or not (#1939)
- Re: [webauthn] Should we keep the word “passkey” in the spec or not (#1939)
- Re: [webauthn] Should we keep the word “passkey” in the spec or not (#1939)
- Re: [webauthn] Should we keep the word “passkey” in the spec or not (#1939)
- [webauthn] Extension's data security on assertion (#1940)
- 08/09/2023 W3C Web Authentication Meeting
Tuesday, 8 August 2023
- Weekly github digest (WebAuthn)
- Re: [webauthn] Should we keep the word “passkey” in the spec or not (#1939)
- Re: [webauthn] Should we keep the word “passkey” in the spec or not (#1939)
- Re: [webauthn] Should we keep the word “passkey” in the spec or not (#1939)
- [webauthn] Should we keep the word “passkey” in the spec or not (#1939)
Monday, 7 August 2023
- Re: [webauthn] Adding some sentences to describe credential sharing between multiple users (#1921)
- Re: [webauthn] remove passkey word (#1938)
Sunday, 6 August 2023
Saturday, 5 August 2023
- Re: [webauthn] remove passkey word (#1938)
- Re: [webauthn] remove passkey word (#1938)
- Re: [webauthn] remove passkey word (#1938)
- Re: [webauthn] remove passkey word (#1938)
Friday, 4 August 2023
- Re: [webauthn] remove passkey word (#1938)
- Re: [webauthn] remove passkey word (#1938)
- [webauthn] Pull Request: remove passkey word
Wednesday, 2 August 2023
- [w3c/webauthn] ea2241: Fix line length for `name`
- [webauthn] new commits pushed by MasterKale
- Re: [webauthn] Add new getClientCapabilities method (#1923)
- [w3c/webauthn] baa930: s/ClientCapability/ClientCapabilities
- [webauthn] new commits pushed by timcappalli
- Re: [webauthn] remove isPasskeyPlatformAuthenticatorAvailable() (#1936)
- Re: [webauthn] remove isPasskeyPlatformAuthenticatorAvailable() (#1936)
- Re: [webauthn] remove isPasskeyPlatformAuthenticatorAvailable() (#1936)
- Re: [webauthn] remove isPasskeyPlatformAuthenticatorAvailable() (#1936)
- Re: [webauthn] remove isPasskeyPlatformAuthenticatorAvailable() (#1936)
- Re: [webauthn] remove isPasskeyPlatformAuthenticatorAvailable() (#1936)
Tuesday, 1 August 2023
- Re: [webauthn] Remove isPPAA() and expand getClientCapabilities() (#1937)
- Re: [webauthn] Add new getClientCapabilities method (#1923)
- [webauthn] Remove isPPAA() and expand getClientCapabilities() (#1937)
- [webauthn] Pull Request: remove isPasskeyPlatformAuthenticatorAvailable()
- [w3c/webauthn] 730716: remove isPasskeyPlatformAuthenticatorAvailable
- [webauthn] new commits pushed by timcappalli
- [w3c/webauthn] 6931da: change to dict and add new values
- [webauthn] new commits pushed by timcappalli
- [w3c/webauthn] c24ac1: Trim line length
- [webauthn] new commits pushed by MasterKale
- [w3c/webauthn] f09e3d: Clarify that displayName can be the same as name
- [webauthn] new commits pushed by MasterKale
- Weekly github digest (WebAuthn)
- Re: [webauthn] Add new getClientCapabilities method (#1923)