Re: [webauthn] CollectedClientData.crossOrigin default value and whether it is required (#1631) from Emil Lundberg via GitHub on 2024-08-07 (public-webauthn@w3.org from August 2024)

From: Emil Lundberg via GitHub <sysbot+gh@w3.org>
Date: Wed, 07 Aug 2024 14:21:27 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-2273598077-1723040486-sysbot+gh@w3.org>

It doesn't appear to be explicitly documented in #1276, but I think it seems likely that backwards compatibility is the reason we made it not `required` - RPs cannot rely on it being present in case the client is an L1 implementation.

-- 
GitHub Notification of comment by emlun
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1631#issuecomment-2273598077 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Wednesday, 7 August 2024 14:21:28 UTC