Re: [webauthn] How to know if a user has already registered a device? (#1749) from Firstyear via GitHub on 2023-11-24 (public-webauthn@w3.org from November 2023)

From: Firstyear via GitHub <sysbot+gh@w3.org>
Date: Fri, 24 Nov 2023 07:58:40 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-1825276813-1700812718-sysbot+gh@w3.org>

And how does your "sign in or sign up" that just trusts everything, plan to verify the public key that signed the challenge? 

I think you need to step back, re-read the specification, and understand the various types of authenticators and how webauthn works. 

-- 
GitHub Notification of comment by Firstyear
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1749#issuecomment-1825276813 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Friday, 24 November 2023 07:58:41 UTC