Re: [webauthn] Clarify how the given origin in the ClientDataJSON matches to the expected one (#1889) from Matthew Miller via GitHub on 2023-05-08 (public-webauthn@w3.org from May 2023)

From: Matthew Miller via GitHub <sysbot+gh@w3.org>
Date: Mon, 08 May 2023 15:55:39 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-1538638629-1683561338-sysbot+gh@w3.org>

> Some of implementations in OSS just maintain list of acceptable origins and simply compares the given origin with the list by simply text equality.

Is the issue that strings may not be normalized by the client? I guess I'm not understanding how this process needs to be defined more robustly.

-- 
GitHub Notification of comment by MasterKale
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1889#issuecomment-1538638629 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Monday, 8 May 2023 15:55:41 UTC