- From: Tim Cappalli via GitHub <sysbot+gh@w3.org>
- Date: Wed, 23 Oct 2024 17:43:04 +0000
- To: public-webauthn@w3.org
timcappalli has just submitted a new pull request for https://github.com/w3c/webauthn: == Mozilla feedback: Related Origins == https://github.com/mozilla/standards-positions/issues/1052#issuecomment-2412388864 Addresses Mozilla's feedback around Related Origins. - Requires well-known to be served via HTTPS by the RP - Requires `https:` scheme for all well-known calls by the client - Requires `https:` for all redirects - Requires calls by client to well-known endpoint to not be credentialed and not include referrer /ghcc @dveditz <!-- Remove the following for non-normative changes --> The following tasks have been completed: - [ ] Modified Web platform tests ([link](https://github.com/web-platform-tests/wpt/)) Implementation commitment: - [ ] WebKit ([link to issue](https://bugs.webkit.org/)) - [ ] Chromium ([link to issue](https://issues.chromium.org/issues/new?component=1456855&template=0)) - [ ] Gecko ([link to issue](https://bugzilla.mozilla.org/home)) Documentation and checks - [ ] Affects privacy - [ ] Affects security - [ ] Updated explainer ([link](https://github.com/w3c/webauthn/wiki) See https://github.com/w3c/webauthn/pull/2186 -- Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Wednesday, 23 October 2024 17:43:05 UTC