Re: [webauthn] Clarify browser behavior when an authenticators return equivalent of "InvalidStateError" (#1888) from Matthew Miller via GitHub on 2023-05-17 (public-webauthn@w3.org from May 2023)

From: Matthew Miller via GitHub <sysbot+gh@w3.org>
Date: Wed, 17 May 2023 20:05:10 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-1551977549-1684353908-sysbot+gh@w3.org>

However this thing goes I'd like to emphasize how useful it is as an RP to get ISE on an `excludeCredentials` collision, and hope that if the browser and/or platform continue to own the WebAuthn experience that an ISE continues to get returned even if a user clicks Cancel on a, "sorry, you already registered that" message that the browser/platform displays. Otherwise all that RP's would be left with is the signal indicating the user canceled out of the ceremony with no idea that it was because the authenticator was already registered.

-- 
GitHub Notification of comment by MasterKale
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1888#issuecomment-1551977549 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Wednesday, 17 May 2023 20:05:12 UTC