- From: bigradish via GitHub <sysbot+gh@w3.org>
- Date: Fri, 27 Dec 2024 00:30:02 +0000
- To: public-webauthn@w3.org
bigradish has just created a new issue for https://github.com/w3c/webauthn: == Add a method to get all the credentials for a rely party on the client device to support the rely party (website) to limit the number of accounts a user can register == It is very easy for a user to register many accounts on a website which using webauthn, but it seems that there is no an easy way to limit this capability of the user, for it is not easy to identify the user or the authenticator (many platform does not return its AAGUID even if the "enterprise" conveyance option is used.) when the user is registering. If there is a method that can get all the credentials for a rely party on the client device, the rely party (website) can easily limit the number of accounts a user can register using the client device. Thank you very much. Please view or discuss this issue at https://github.com/w3c/webauthn/issues/2222 using your GitHub account -- Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Friday, 27 December 2024 00:30:03 UTC