09/06/2023 W3C Web Authentication Meeting
09/20/2023 W3C Web Authentication Meeting
09/27/2023 W3C Web Authentication Meeting
[w3c/webauthn]
[w3c/webauthn] 04dd9e: Remove `devicePubKey` extension.
[w3c/webauthn] 0b011e: Update capitalisation as requested.
[w3c/webauthn] 1fe917: add SecureContext to result
[w3c/webauthn] 21ae2d: any attestation type in spec
[w3c/webauthn] 244b54: missing quote
[w3c/webauthn] 254d00: Highlight that filtering all pubKeyCredParams is a...
[w3c/webauthn] 36951f: rouge word
[w3c/webauthn] 3d2a59: Add myself to the contributors
[w3c/webauthn] 3f576e: add validation failure text
[w3c/webauthn] 405b7d: Merge pull request #1973 from Kieun/add-myself-as-...
[w3c/webauthn] 4207bd: When installing the newest version of bikeshed, th...
- Pascoe (Wednesday, 27 September)
[w3c/webauthn] 431fd4: devicePubKey → supplementalPubKeys
[w3c/webauthn] 480013: Fix inconsistent usage of options variable
[w3c/webauthn] 49e91d: Merge pull request #1948 from Kieun/kieun-1947
[w3c/webauthn] 53e8d8: Incorporate Emil's changes
[w3c/webauthn] 5c39e1: spelling
[w3c/webauthn] 633a2d: first stab at new approach for getClientCapabilities
[w3c/webauthn] 699e9d: add conditional-create
[w3c/webauthn] 7ad822: Merge pull request #1944 from w3c/prf-always-uv
[w3c/webauthn] 7b877b: Delete outdated note about checking registration U...
[w3c/webauthn] 8af038: Swap out union type for object w/comment
[w3c/webauthn] 952de8: Merge pull request #1975 from pascoej/fix-bikeshed...
- Pascoe (Wednesday, 27 September)
[w3c/webauthn] 9bd2a6: add must have two or more
[w3c/webauthn] a4b8cd: Merge pull request #1932 from w3c/1852-emphasize-u...
[w3c/webauthn] aefe8f: Tweak examples based on feedback
[w3c/webauthn] b5a7fc: add for
[w3c/webauthn] b88e3f: Merge pull request #1961 from selfissued/mbj-refer...
[w3c/webauthn] c22e09: Merge pull request #1955 from w3c/issue-1794-broke...
[w3c/webauthn] c7de61: update and link to working AAGUID definition
[w3c/webauthn] d3325e: Singularize "implementation of each of [methods]"
[w3c/webauthn] ec9dd1: Emphasize user.name as primary identifier
[w3c/webauthn] ed80f7: address Mike's comment about IANA reference
[w3c/webauthn] efe2c2: Reference CTAP 2.1 Proposed Standard
[w3c/webauthn] f5ea86: Remove the requirement that SPK be used only with ...
[w3c/webauthn] f6bbe7: Remove outdated spec reference anchors
[w3c/webauthn] fa2889: Tweaks for bikeshed
[w3c/webauthn] ff7634: Revert "Delete outdated note about checking regist...
[webauthn] [Meta] Hard-code HKDF in PRF importCryptoKey (#1946)
[webauthn] [Superset] Updating credential metadata and requesting deletion of stale credentials (#1967)
[webauthn] Add `compound` attestation format (#1950)
[webauthn] Add a way to use webauthn without Javascript (#1255)
[webauthn] add feature detection blurb... (#1208)
[webauthn] Add importCryptoKey input to PRF extension (#1945)
[webauthn] Add myself to the contributors (#1973)
[webauthn] Add new getClientCapabilities method (#1923)
[webauthn] Add packed attestation optional firmware version attribute (#1953)
[webauthn] Add support for SRP (or some other PAKE) in WebAuthn (#1960)
[webauthn] Are notes in webauthn normative or informative? (#1979)
[webauthn] Cleanup when creating discoverable credentials with attestations (#1560)
[webauthn] Closed Pull Request: [Meta] Hard-code HKDF in PRF importCryptoKey
[webauthn] Closed Pull Request: Specify what an unknown type credential descriptor being ignored means
[webauthn] Code Injection vulnerability from client side (#1965)
- Emil Lundberg via GitHub (Thursday, 28 September)
- Emil Lundberg via GitHub (Thursday, 28 September)
- Arian van Putten via GitHub (Tuesday, 26 September)
- Rew Islam via GitHub (Tuesday, 26 September)
- micolous via GitHub (Tuesday, 26 September)
- Firstyear via GitHub (Monday, 25 September)
- BagelTap via GitHub (Saturday, 23 September)
- Arian van Putten via GitHub (Monday, 18 September)
- Emil Lundberg via GitHub (Monday, 18 September)
- John Bradley via GitHub (Sunday, 17 September)
- Aditya Mitra via GitHub (Sunday, 17 September)
- John Bradley via GitHub (Sunday, 17 September)
- Aditya Mitra via GitHub (Sunday, 17 September)
- Thomas Duboucher via GitHub (Saturday, 16 September)
- Aditya Mitra via GitHub (Saturday, 16 September)
- John Bradley via GitHub (Saturday, 16 September)
- Aditya Mitra via GitHub (Saturday, 16 September)
- Arian van Putten via GitHub (Saturday, 16 September)
- Aditya Mitra via GitHub (Saturday, 16 September)
[webauthn] Could not use Webauthn `PublicKeyCredential.create` when the RP ID is a Host string(ip). (#1358)
[webauthn] devicePubKey → supplementalPubKeys (#1957)
- Adam Langley via GitHub (Monday, 11 September)
- David Waite via GitHub (Monday, 11 September)
- Rolf Lindemann via GitHub (Monday, 11 September)
- John Bradley via GitHub (Monday, 11 September)
- Shane Weeden via GitHub (Monday, 11 September)
- Adam Langley via GitHub (Wednesday, 6 September)
- Adam Langley via GitHub (Wednesday, 6 September)
- Arian van Putten via GitHub (Wednesday, 6 September)
- Arian van Putten via GitHub (Tuesday, 5 September)
- John Bradley via GitHub (Tuesday, 5 September)
- Adam Langley via GitHub (Tuesday, 5 September)
- Arian van Putten via GitHub (Tuesday, 5 September)
- Max Hata via GitHub (Tuesday, 5 September)
- Adam Langley via GitHub (Monday, 4 September)
- Max Hata via GitHub (Monday, 4 September)
[webauthn] Extend WebAuthn spec to support interoperability in WebExtensions (#1766)
[webauthn] Extensions should specify partial dictionaries that modify AuthenticationExtensionsClient{Inputs, Outputs}JSON (#1968)
[webauthn] Facility for an RP to indicate a change of displayName to a discoverable credential (#1779)
[webauthn] FIDO credential decommissioning (#1696)
[webauthn] Fix broken PublicKeyCredentialJSON WebIDL definition (#1969)
[webauthn] Further clarification of Unsigned Extension Outputs (#1964)
[webauthn] Initial text for conditional create (#1951)
[webauthn] Make the default value for the attestation member in assertion options be null (#1972)
[webauthn] Making PublicKeyCredentialDescriptor.transports mandatory (#1522)
[webauthn] Merged Pull Request: Add myself to the contributors
[webauthn] Merged Pull Request: Clarify distinction between PublicKeyCredentialUserEntity name and displayName
[webauthn] Merged Pull Request: Delete outdated note about checking registration UV with PRF extension
[webauthn] Merged Pull Request: Fix broken spec references
[webauthn] Merged Pull Request: Fix inconsistent usage of options variable
[webauthn] Merged Pull Request: Fix the bikeshed build
[webauthn] Merged Pull Request: Reference CTAP 2.1 Proposed Standard
[webauthn] new commits pushed by agl
[webauthn] new commits pushed by emlun
[webauthn] new commits pushed by github-actions[bot]
[webauthn] new commits pushed by MasterKale
[webauthn] new commits pushed by nicksteele
[webauthn] new commits pushed by pascoej
[webauthn] new commits pushed by plehegar
[webauthn] new commits pushed by timcappalli
- Tim Cappalli via GitHub (Friday, 29 September)
- Tim Cappalli via GitHub (Wednesday, 20 September)
- Tim Cappalli via GitHub (Wednesday, 20 September)
- Tim Cappalli via GitHub (Tuesday, 19 September)
- Tim Cappalli via GitHub (Tuesday, 19 September)
- Tim Cappalli via GitHub (Monday, 18 September)
- Tim Cappalli via GitHub (Tuesday, 12 September)
- Tim Cappalli via GitHub (Thursday, 7 September)
- Tim Cappalli via GitHub (Thursday, 7 September)
- Tim Cappalli via GitHub (Wednesday, 6 September)
- Tim Cappalli via GitHub (Wednesday, 6 September)
- Tim Cappalli via GitHub (Wednesday, 6 September)
- Tim Cappalli via GitHub (Wednesday, 6 September)
[webauthn] Personal information updates & webauthn (#1456)
[webauthn] Prevent browsers from deleting credentials that the RP wanted to be server-side (#1569)
[webauthn] Proposal/discussion: non-extractable CryptoKey output from the prf extension (#1895)
[webauthn] Provide a way for Web Extensions to hook into browser's Passkey autofill UI (#1976)
[webauthn] PublicKeyCredentialJSON is an invalid WebIDL construct (#1958)
[webauthn] PublicKeyCredentialParameters can't select curve (E.g. ed448) (#1446)
[webauthn] Pull Request: Add myself to the contributors
[webauthn] Pull Request: devicePubKey → supplementalPubKeys
[webauthn] Pull Request: Fix broken PublicKeyCredentialJSON WebIDL definition
[webauthn] Pull Request: Fix the bikeshed build
[webauthn] Pull Request: Highlight that filtering all pubKeyCredParams is an error.
[webauthn] Pull Request: Make the default value for the attestation member in assertion options be null
[webauthn] Pull Request: Reference CTAP 2.1 Proposed Standard
[webauthn] Pull Request: Specify what an unknown type credential descriptor being ignored means
[webauthn] Pull Request: Tweaks for bikeshed
[webauthn] Pull Request: update and link to working AAGUID definition
[webauthn] Recovering from Device Loss (#931)
[webauthn] reference CTAP2.1 PS spec and fix broken link (#1635)
[webauthn] Remove the [SameObject] attribute from PublicKeyCredential::authenticatorAttachment (#1977)
[webauthn] Should credentials requested with attestation=none include an AAGUID (#1962)
[webauthn] Should credentials requested with attestation=none include an AAGUID? (#1962)
[webauthn] Specify authenticator attachment for authentication operation (#1267)
[webauthn] Specify what an unknown type credential descriptor being ignored means (#1966)
[webauthn] The bike shed build is broken with the newest version (#1974)
[webauthn] think about adding note wrt how client platform might obtain authenticator capabilities (#1207)
[webauthn] update and link to working AAGUID definition (#1970)
Closed: [webauthn] add feature detection blurb... (#1208)
Closed: [webauthn] Add support for SRP (or some other PAKE) in WebAuthn (#1960)
Closed: [webauthn] Broken references in Web Authentication: An API for accessing Public Key Credentials - Level (#1794)
Closed: [webauthn] Cleanup when creating discoverable credentials with attestations (#1560)
Closed: [webauthn] Emphasize use of `user.name` for RP's to help users distinguish credentials (#1852)
Closed: [webauthn] Facility for an RP to indicate a change of displayName to a discoverable credential (#1779)
Closed: [webauthn] FIDO credential decommissioning (#1696)
Closed: [webauthn] Inconsistent variable reference of attestation and attestationFormats in the steps (#1947)
Closed: [webauthn] Making PublicKeyCredentialDescriptor.transports mandatory (#1522)
Closed: [webauthn] Personal information updates & webauthn (#1456)
Closed: [webauthn] Recovering from Device Loss (#931)
Closed: [webauthn] Specify authenticator attachment for authentication operation (#1267)
Closed: [webauthn] The bike shed build is broken with the newest version (#1974)
Closed: [webauthn] think about adding note wrt how client platform might obtain authenticator capabilities (#1207)
Event Invitation: Web Authentication weekly
Event Invitation: Web Authentication WG
Event Invitation: Web Payments WG
Event Updated: Web Authentication WG
Question regarding PRF extension
Weekly github digest (WebAuthn)
Last message date: Saturday, 30 September 2023 00:49:23 UTC