- From: Adam Langley <noreply@github.com>
- Date: Wed, 22 Mar 2023 12:37:10 -0700
- To: public-webauthn@w3.org
Branch: refs/heads/main
Home: https://github.com/w3c/webauthn
Commit: 24359a14f2098d260f7b8529d38fe6346fed2326
https://github.com/w3c/webauthn/commit/24359a14f2098d260f7b8529d38fe6346fed2326
Author: Adam Langley <agl@imperialviolet.org>
Date: 2023-01-04 (Wed, 04 Jan 2023)
Changed paths:
M index.bs
Log Message:
-----------
Don't be so strict about uv with the PRF extension.
Authenticators may have different PRFs for the UV and non-UV case. Thus
setting uv=preferred during an assertion is fraught: it doesn't fully
specify which PRF to use.
However, while implementing this, I ended up feeling that the
prohibition on using uv=preferred was too strong. Sites may reasonably
want to use uv=preferred and to take advantage of available PRF results.
If the evaluation points are global then this isn't so silly as to
justify a prohibition, I suspect.
Commit: cac92424af0313f36b591089b331300850854e1d
https://github.com/w3c/webauthn/commit/cac92424af0313f36b591089b331300850854e1d
Author: Adam Langley <agl@imperialviolet.org>
Date: 2023-01-13 (Fri, 13 Jan 2023)
Changed paths:
M index.bs
Log Message:
-----------
Update wording to reflect discussions.
Commit: 8680f5861f410f9ba015cd8b4ba4b778071469a6
https://github.com/w3c/webauthn/commit/8680f5861f410f9ba015cd8b4ba4b778071469a6
Author: Adam Langley <agl@google.com>
Date: 2023-01-24 (Tue, 24 Jan 2023)
Changed paths:
M index.bs
Log Message:
-----------
Apply suggestion from emlun
Co-authored-by: Emil Lundberg <emil@yubico.com>
Commit: 414de68c8d3f3d458c1c600dab4f450615c2dad4
https://github.com/w3c/webauthn/commit/414de68c8d3f3d458c1c600dab4f450615c2dad4
Author: Adam Langley <agl@imperialviolet.org>
Date: 2023-01-24 (Tue, 24 Jan 2023)
Changed paths:
M index.bs
Log Message:
-----------
Switch to SyntaxError
Commit: 5ebc25721158cc45a985e171121911da87d64994
https://github.com/w3c/webauthn/commit/5ebc25721158cc45a985e171121911da87d64994
Author: Adam Langley <agl@imperialviolet.org>
Date: 2023-02-13 (Mon, 13 Feb 2023)
Changed paths:
M index.bs
Log Message:
-----------
Specify that there's only one PRF, and it's the UV one.
Fixes #1851
Commit: 3b83189b8f30f6fff36d0bd4b1ef2bcf53e148c6
https://github.com/w3c/webauthn/commit/3b83189b8f30f6fff36d0bd4b1ef2bcf53e148c6
Author: Adam Langley <agl@imperialviolet.org>
Date: 2023-02-23 (Thu, 23 Feb 2023)
Changed paths:
M index.bs
Log Message:
-----------
Require that evalByCredential keys match a credential from the allowList, if any.
They are superfluous if they don't.
Commit: 6478874bf740d1daf4f5fba5ddfab602ca5a8c2b
https://github.com/w3c/webauthn/commit/6478874bf740d1daf4f5fba5ddfab602ca5a8c2b
Author: Adam Langley <agl@google.com>
Date: 2023-03-16 (Thu, 16 Mar 2023)
Changed paths:
M index.bs
Log Message:
-----------
Apply emlun's suggestions from code review
Co-authored-by: Emil Lundberg <emil@yubico.com>
Commit: 54e0962aef5fa353570700fe2dc8bac9c34db686
https://github.com/w3c/webauthn/commit/54e0962aef5fa353570700fe2dc8bac9c34db686
Author: Adam Langley <agl@google.com>
Date: 2023-03-22 (Wed, 22 Mar 2023)
Changed paths:
M index.bs
Log Message:
-----------
Merge pull request #1836 from w3c/prf2
Only expose the UV PRF
Compare: https://github.com/w3c/webauthn/compare/545688df8993...54e0962aef5f
Received on Wednesday, 22 March 2023 19:37:22 UTC