Re: [webauthn] Require non-null userHandle when allowCredentials is empty? (#1892) from Matthew Miller via GitHub on 2023-05-17 (public-webauthn@w3.org from May 2023)

From: Matthew Miller via GitHub <sysbot+gh@w3.org>
Date: Wed, 17 May 2023 18:49:04 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-1551893916-1684349343-sysbot+gh@w3.org>

What might the utility be of the client-side `userHandle` if the successful verification of an auth response for a given credential ID can be linked back on the backend to the user's ID?

-- 
GitHub Notification of comment by MasterKale
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1892#issuecomment-1551893916 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Wednesday, 17 May 2023 18:49:06 UTC