- From: Emil Lundberg <noreply@github.com>
- Date: Wed, 28 Jun 2023 03:11:14 -0700
- To: public-webauthn@w3.org
Branch: refs/heads/issue-1848-challenge-timeout
Home: https://github.com/w3c/webauthn
Commit: 3daf3be467fd0f58555194d3ce0c4faf2db6380e
https://github.com/w3c/webauthn/commit/3daf3be467fd0f58555194d3ce0c4faf2db6380e
Author: Emil Lundberg <emil@yubico.com>
Date: 2022-07-11 (Mon, 11 Jul 2022)
Changed paths:
M index.bs
Log Message:
-----------
Improve UV guidance using new Credential Record concept
Commit: 13b5fcc2e0e9132f83c84fda3e061193a33919d4
https://github.com/w3c/webauthn/commit/13b5fcc2e0e9132f83c84fda3e061193a33919d4
Author: Emil Lundberg <emil@yubico.com>
Date: 2022-07-11 (Mon, 11 Jul 2022)
Changed paths:
M index.bs
Log Message:
-----------
Add note that UV is not MFA the first time UV=1 is seen
Commit: dec92f16ef8661142a4e068002f32c555840c3a0
https://github.com/w3c/webauthn/commit/dec92f16ef8661142a4e068002f32c555840c3a0
Author: Shane Weeden <sbweeden@users.noreply.github.com>
Date: 2022-09-21 (Wed, 21 Sep 2022)
Changed paths:
A .github/ISSUE_TEMPLATE/config.yml
A .github/ISSUE_TEMPLATE/editorial-change--.md
A .github/ISSUE_TEMPLATE/technical-change--.md
A .github/ISSUE_TEMPLATE/use-case-feature--.md
A .github/ISSUE_TEMPLATE/wg-administrivia--.md
M images/fido-attestation-structures.svg
M images/fido-signature-formats-figure1.svg
M index.bs
Log Message:
-----------
Merge pull request #7 from w3c/main
bring fork up to date
Commit: 24359a14f2098d260f7b8529d38fe6346fed2326
https://github.com/w3c/webauthn/commit/24359a14f2098d260f7b8529d38fe6346fed2326
Author: Adam Langley <agl@imperialviolet.org>
Date: 2023-01-04 (Wed, 04 Jan 2023)
Changed paths:
M index.bs
Log Message:
-----------
Don't be so strict about uv with the PRF extension.
Authenticators may have different PRFs for the UV and non-UV case. Thus
setting uv=preferred during an assertion is fraught: it doesn't fully
specify which PRF to use.
However, while implementing this, I ended up feeling that the
prohibition on using uv=preferred was too strong. Sites may reasonably
want to use uv=preferred and to take advantage of available PRF results.
If the evaluation points are global then this isn't so silly as to
justify a prohibition, I suspect.
Commit: cac92424af0313f36b591089b331300850854e1d
https://github.com/w3c/webauthn/commit/cac92424af0313f36b591089b331300850854e1d
Author: Adam Langley <agl@imperialviolet.org>
Date: 2023-01-13 (Fri, 13 Jan 2023)
Changed paths:
M index.bs
Log Message:
-----------
Update wording to reflect discussions.
Commit: 8680f5861f410f9ba015cd8b4ba4b778071469a6
https://github.com/w3c/webauthn/commit/8680f5861f410f9ba015cd8b4ba4b778071469a6
Author: Adam Langley <agl@google.com>
Date: 2023-01-24 (Tue, 24 Jan 2023)
Changed paths:
M index.bs
Log Message:
-----------
Apply suggestion from emlun
Co-authored-by: Emil Lundberg <emil@yubico.com>
Commit: 414de68c8d3f3d458c1c600dab4f450615c2dad4
https://github.com/w3c/webauthn/commit/414de68c8d3f3d458c1c600dab4f450615c2dad4
Author: Adam Langley <agl@imperialviolet.org>
Date: 2023-01-24 (Tue, 24 Jan 2023)
Changed paths:
M index.bs
Log Message:
-----------
Switch to SyntaxError
Commit: 6bd4140b12d81b07e8cf7153cafdcc1fbfb000d6
https://github.com/w3c/webauthn/commit/6bd4140b12d81b07e8cf7153cafdcc1fbfb000d6
Author: Shane Weeden <sbweeden@users.noreply.github.com>
Date: 2023-01-27 (Fri, 27 Jan 2023)
Changed paths:
M index.bs
Log Message:
-----------
Merge branch 'w3c:main' into master
Commit: 910aac095ff791249ef7fbf60665ce5fa2a91979
https://github.com/w3c/webauthn/commit/910aac095ff791249ef7fbf60665ce5fa2a91979
Author: Shane Weeden <sweeden@au1.ibm.com>
Date: 2023-01-27 (Fri, 27 Jan 2023)
Changed paths:
M index.bs
Log Message:
-----------
Address issue 1817
Commit: 5ebc25721158cc45a985e171121911da87d64994
https://github.com/w3c/webauthn/commit/5ebc25721158cc45a985e171121911da87d64994
Author: Adam Langley <agl@imperialviolet.org>
Date: 2023-02-13 (Mon, 13 Feb 2023)
Changed paths:
M index.bs
Log Message:
-----------
Specify that there's only one PRF, and it's the UV one.
Fixes #1851
Commit: 6a2e2b436872d0a4702c07b1df486b6c7245f40c
https://github.com/w3c/webauthn/commit/6a2e2b436872d0a4702c07b1df486b6c7245f40c
Author: Adam Langley <agl@google.com>
Date: 2023-02-22 (Wed, 22 Feb 2023)
Changed paths:
M index.bs
Log Message:
-----------
Merge pull request #1845 from sbweeden/issue_1817
Issue 1817
Commit: b65d3394c55943fd129ce01a0139d5f0ccfffe27
https://github.com/w3c/webauthn/commit/b65d3394c55943fd129ce01a0139d5f0ccfffe27
Author: Adam Langley <agl@imperialviolet.org>
Date: 2023-02-22 (Wed, 22 Feb 2023)
Changed paths:
M index.bs
Log Message:
-----------
Remove redundant extra step in DPK processing.
This got left in during edits but is covered by the previous step.
Fixes #1853
Commit: 3b83189b8f30f6fff36d0bd4b1ef2bcf53e148c6
https://github.com/w3c/webauthn/commit/3b83189b8f30f6fff36d0bd4b1ef2bcf53e148c6
Author: Adam Langley <agl@imperialviolet.org>
Date: 2023-02-23 (Thu, 23 Feb 2023)
Changed paths:
M index.bs
Log Message:
-----------
Require that evalByCredential keys match a credential from the allowList, if any.
They are superfluous if they don't.
Commit: b8d23c69b155b5f97fc9ccae86d2623c8163688e
https://github.com/w3c/webauthn/commit/b8d23c69b155b5f97fc9ccae86d2623c8163688e
Author: Emil Lundberg <emil@yubico.com>
Date: 2023-02-27 (Mon, 27 Feb 2023)
Changed paths:
M index.bs
Log Message:
-----------
Fix outdated reference to fmt in devicePubKey error case
Commit: 3ff766eb5bf6f0f4dc40facc3d4aff60460f5057
https://github.com/w3c/webauthn/commit/3ff766eb5bf6f0f4dc40facc3d4aff60460f5057
Author: Stephen McGruer <stephen.mcgruer@gmail.com>
Date: 2023-03-01 (Wed, 01 Mar 2023)
Changed paths:
M index.bs
Log Message:
-----------
Allow for credential creation in a cross-origin iframe (#1801)
Commit: ccc5e2bbb1909a2657f14883eb2b71274f8c20d5
https://github.com/w3c/webauthn/commit/ccc5e2bbb1909a2657f14883eb2b71274f8c20d5
Author: Emil Lundberg <emil@yubico.com>
Date: 2023-03-06 (Mon, 06 Mar 2023)
Changed paths:
A .github/ISSUE_TEMPLATE/config.yml
A .github/ISSUE_TEMPLATE/editorial-change--.md
A .github/ISSUE_TEMPLATE/technical-change--.md
A .github/ISSUE_TEMPLATE/use-case-feature--.md
A .github/ISSUE_TEMPLATE/wg-administrivia--.md
M images/fido-attestation-structures.svg
M images/fido-signature-formats-figure1.svg
M index.bs
Log Message:
-----------
Merge branch 'main' into issue-1510-uv-guidance
Commit: af07d1598c70431d36ee1ad53e042582b72f7379
https://github.com/w3c/webauthn/commit/af07d1598c70431d36ee1ad53e042582b72f7379
Author: Emil Lundberg <emil@yubico.com>
Date: 2023-03-06 (Mon, 06 Mar 2023)
Changed paths:
M index.bs
Log Message:
-----------
Clarify to ignore UV flag if not required
Commit: 7e541a0c9cedea58006f18a414c778d3c1e4f026
https://github.com/w3c/webauthn/commit/7e541a0c9cedea58006f18a414c778d3c1e4f026
Author: Emil Lundberg <emil@yubico.com>
Date: 2023-03-06 (Mon, 06 Mar 2023)
Changed paths:
M index.bs
Log Message:
-----------
Formalize definition of uvInitialized in credential record
Commit: fa65a36a18d89a53f8f0fca11e2e4ac48b3c1597
https://github.com/w3c/webauthn/commit/fa65a36a18d89a53f8f0fca11e2e4ac48b3c1597
Author: Adam Langley <agl@google.com>
Date: 2023-03-09 (Thu, 09 Mar 2023)
Changed paths:
M index.bs
Log Message:
-----------
Merge pull request #1858 from w3c/issue1853
Remove redundant extra step in DPK processing.
Commit: 285a9dd0191b07a88720be7ae68b24fca5297d49
https://github.com/w3c/webauthn/commit/285a9dd0191b07a88720be7ae68b24fca5297d49
Author: Emil Lundberg <emil@yubico.com>
Date: 2023-03-16 (Thu, 16 Mar 2023)
Changed paths:
M index.bs
Log Message:
-----------
Use i18n-glossary definition of [=grapheme cluster=]
Commit: 898d5df2f3ca24de33ecd44434cea9986f5a8b77
https://github.com/w3c/webauthn/commit/898d5df2f3ca24de33ecd44434cea9986f5a8b77
Author: Emil Lundberg <emil@yubico.com>
Date: 2023-03-16 (Thu, 16 Mar 2023)
Changed paths:
M index.bs
Log Message:
-----------
Rename biblio ref UTR29 to UAX29
To align with the terminology used in UAX29 itself as well as in the
W3C i18n-glossary spec.
Commit: f184600c74242c88c6f6451b2c7051942604a997
https://github.com/w3c/webauthn/commit/f184600c74242c88c6f6451b2c7051942604a997
Author: Emil Lundberg <emil@yubico.com>
Date: 2023-03-16 (Thu, 16 Mar 2023)
Changed paths:
M index.bs
Log Message:
-----------
Update out of date step references
Commit: e57e025b462ce9c2f418a9f4505eb60810778c39
https://github.com/w3c/webauthn/commit/e57e025b462ce9c2f418a9f4505eb60810778c39
Author: Emil Lundberg <emil@yubico.com>
Date: 2023-03-16 (Thu, 16 Mar 2023)
Changed paths:
M index.bs
Log Message:
-----------
Add links to all numbered step references
This will help update them correctly when they go out of sync, and also help
detect when they do.
Commit: 6478874bf740d1daf4f5fba5ddfab602ca5a8c2b
https://github.com/w3c/webauthn/commit/6478874bf740d1daf4f5fba5ddfab602ca5a8c2b
Author: Adam Langley <agl@google.com>
Date: 2023-03-16 (Thu, 16 Mar 2023)
Changed paths:
M index.bs
Log Message:
-----------
Apply emlun's suggestions from code review
Co-authored-by: Emil Lundberg <emil@yubico.com>
Commit: 75e67c48bd5f7ea6f6b9acce9e6aa613b2a123ce
https://github.com/w3c/webauthn/commit/75e67c48bd5f7ea6f6b9acce9e6aa613b2a123ce
Author: Emil Lundberg <emil@yubico.com>
Date: 2023-03-22 (Wed, 22 Mar 2023)
Changed paths:
M index.bs
Log Message:
-----------
Don't "promote" UV preferred to required, and make uvInitialized update more defensive
Commit: 38b01613d2ade84160ed9fa33e61d68fa279778d
https://github.com/w3c/webauthn/commit/38b01613d2ade84160ed9fa33e61d68fa279778d
Author: J Pascoe <pascoe@apple.com>
Date: 2023-03-22 (Wed, 22 Mar 2023)
Changed paths:
M index.bs
Log Message:
-----------
Add smart-card to transports enum
Commit: ee7ca71a47563bf4a35aa72ae110212ecfe0c7ff
https://github.com/w3c/webauthn/commit/ee7ca71a47563bf4a35aa72ae110212ecfe0c7ff
Author: Adam Langley <agl@google.com>
Date: 2023-03-22 (Wed, 22 Mar 2023)
Changed paths:
M index.bs
Log Message:
-----------
Merge pull request #1864 from w3c/issue-1861-update-step-references
Add links to and update all numbered step references
Commit: 545688df8993a884428c0b12820ff5cf02f1141f
https://github.com/w3c/webauthn/commit/545688df8993a884428c0b12820ff5cf02f1141f
Author: Shane Weeden <sbweeden@users.noreply.github.com>
Date: 2023-03-23 (Thu, 23 Mar 2023)
Changed paths:
M index.bs
Log Message:
-----------
Merge pull request #1863 from w3c/issue-1860-grapheme-cluster
Use i18n-glossary definition of [=grapheme cluster=]
Commit: 54e0962aef5fa353570700fe2dc8bac9c34db686
https://github.com/w3c/webauthn/commit/54e0962aef5fa353570700fe2dc8bac9c34db686
Author: Adam Langley <agl@google.com>
Date: 2023-03-22 (Wed, 22 Mar 2023)
Changed paths:
M index.bs
Log Message:
-----------
Merge pull request #1836 from w3c/prf2
Only expose the UV PRF
Commit: 858eb90a9f5faca0c8bd5bfdd1c0141544b2a7bd
https://github.com/w3c/webauthn/commit/858eb90a9f5faca0c8bd5bfdd1c0141544b2a7bd
Author: Tim Cappalli <tim@cloudauth.dev>
Date: 2023-04-20 (Thu, 20 Apr 2023)
Changed paths:
M index.bs
Log Message:
-----------
add topOrigin verification logicfor authentication
Commit: a41321a59dfaeacba6b79ee77f0259991e6bd576
https://github.com/w3c/webauthn/commit/a41321a59dfaeacba6b79ee77f0259991e6bd576
Author: J Pascoe <j_pascoe@apple.com>
Date: 2023-04-21 (Fri, 21 Apr 2023)
Changed paths:
M index.bs
Log Message:
-----------
Merge pull request #1865 from pascoej/issue-1835-add-smartcard-to-enum
Add smart-card to transports enum
Commit: 721f151ff807626687c10eb297c4f1494cdd250b
https://github.com/w3c/webauthn/commit/721f151ff807626687c10eb297c4f1494cdd250b
Author: Tim Cappalli <tim@cloudauth.dev>
Date: 2023-04-21 (Fri, 21 Apr 2023)
Changed paths:
M index.bs
Log Message:
-----------
Merge pull request #1879 from w3c/tc-1842-toporigin-get
add topOrigin verification logic for get
Commit: 748eea045a18a2ecad384df20c84f5c7ac33303a
https://github.com/w3c/webauthn/commit/748eea045a18a2ecad384df20c84f5c7ac33303a
Author: Emil Lundberg <emil@yubico.com>
Date: 2023-05-03 (Wed, 03 May 2023)
Changed paths:
M index.bs
Log Message:
-----------
Merge pull request #1774 from w3c/issue-1510-uv-guidance
Improve guidance around using UV
Commit: da7f7d442ec464c79dc78528d29c0051f39f2e7b
https://github.com/w3c/webauthn/commit/da7f7d442ec464c79dc78528d29c0051f39f2e7b
Author: Adam Langley <agl@imperialviolet.org>
Date: 2023-05-03 (Wed, 03 May 2023)
Changed paths:
M index.bs
Log Message:
-----------
Mark all JSON fields as required.
These fields should always be present (although some can be null) but
the default for a dictionary field is `optional`. Thus mark them all as
required.
Commit: dbd8df4cde6e8b27c2e801940cda4354ff680510
https://github.com/w3c/webauthn/commit/dbd8df4cde6e8b27c2e801940cda4354ff680510
Author: Adam Langley <agl@imperialviolet.org>
Date: 2023-05-03 (Wed, 03 May 2023)
Changed paths:
M index.bs
Log Message:
-----------
Fields are optional, not nullable, now.
Commit: ae71f1008443b7945b1b5d8378880adf55d8b811
https://github.com/w3c/webauthn/commit/ae71f1008443b7945b1b5d8378880adf55d8b811
Author: Adam Langley <agl@google.com>
Date: 2023-05-17 (Wed, 17 May 2023)
Changed paths:
M index.bs
Log Message:
-----------
Merge pull request #1878 from w3c/json
Mark all JSON fields as required.
Commit: ad61c6faa12e522f128d7e649bcca616110118be
https://github.com/w3c/webauthn/commit/ad61c6faa12e522f128d7e649bcca616110118be
Author: Akshay Kumar <akshayku@microsoft.com>
Date: 2023-05-18 (Thu, 18 May 2023)
Changed paths:
M index.bs
Log Message:
-----------
Adjust timeout for create and get operations (#1885)
* Adjust Timeout
* Change timeout recommendation to Bulleted List
Commit: e688b99e1788dd58fbf434cb3239f722fdac0a0c
https://github.com/w3c/webauthn/commit/e688b99e1788dd58fbf434cb3239f722fdac0a0c
Author: Michael Jones <michael_b_jones@hotmail.com>
Date: 2023-05-24 (Wed, 24 May 2023)
Changed paths:
M index.bs
Log Message:
-----------
Mike is independent
Commit: 61f08927c7dd0697981f46bd4028d8eb5a92a8da
https://github.com/w3c/webauthn/commit/61f08927c7dd0697981f46bd4028d8eb5a92a8da
Author: Nick Steele <nick.steele@gemini.com>
Date: 2023-05-24 (Wed, 24 May 2023)
Changed paths:
M index.bs
Log Message:
-----------
Update Nick contact
Commit: 50c8b9233965571d32da6a06febd3d75ecd366ef
https://github.com/w3c/webauthn/commit/50c8b9233965571d32da6a06febd3d75ecd366ef
Author: Nick Steele <nick.steele@gemini.com>
Date: 2023-06-14 (Wed, 14 Jun 2023)
Changed paths:
M index.bs
Log Message:
-----------
Merge pull request #1894 from w3c/ns1pw
Update Nick Contact info
Commit: 6dfbdbaad8425140030afacb7de27eb13e7872ce
https://github.com/w3c/webauthn/commit/6dfbdbaad8425140030afacb7de27eb13e7872ce
Author: Nick Steele <nick@nicksteele.net>
Date: 2023-06-14 (Wed, 14 Jun 2023)
Changed paths:
M index.bs
Log Message:
-----------
Merge pull request #1893 from selfissued/mbj-independent
Mike is independent
Commit: c36459fd16974023713443b7827a196daa1e6f34
https://github.com/w3c/webauthn/commit/c36459fd16974023713443b7827a196daa1e6f34
Author: Emil Lundberg <emil@yubico.com>
Date: 2023-06-28 (Wed, 28 Jun 2023)
Changed paths:
M index.bs
Log Message:
-----------
Merge branch 'main' into issue-1848-challenge-timeout
Compare: https://github.com/w3c/webauthn/compare/b6e3232386c7...c36459fd1697
Received on Wednesday, 28 June 2023 10:11:19 UTC