Re: [webauthn] Specify what an unknown type credential descriptor being ignored means (#1966) from Adam Langley via GitHub on 2023-09-21 (public-webauthn@w3.org from September 2023)

From: Adam Langley via GitHub <sysbot+gh@w3.org>
Date: Thu, 21 Sep 2023 19:33:27 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-1730182600-1695324805-sysbot+gh@w3.org>

The chair of the WG wasn't happy with treating this as non-substantive w.r.t IPR, so we'll treat this as an issue rather than a pull request and, if we make a change, it'll be in a different issue.

> However, there is no further specification about the case when this results in an empty allowCredentials.

The [algorithm for making a credential](https://w3c.github.io/webauthn/#ref-for-dom-publickeycredentialdescriptor-type%E2%91%A0) does say that if you filter a list to the point that it becomes empty, then that's an error.

But it's perhaps worth noting here too. I've drawn up #1971 to do that.


-- 
GitHub Notification of comment by agl
Please view or discuss this issue at https://github.com/w3c/webauthn/pull/1966#issuecomment-1730182600 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Thursday, 21 September 2023 19:33:30 UTC