[webauthn] Pull Request: Update obsolete privacy concerns about throwing errors early from Emil Lundberg via GitHub on 2024-09-04 (public-webauthn@w3.org from September 2024)

From: Emil Lundberg via GitHub <sysbot+gh@w3.org>
Date: Wed, 04 Sep 2024 12:08:46 +0000
To: public-webauthn@w3.org
Message-ID: <pull_request.opened-2053298498-1725451724-sysbot+gh@w3.org>

emlun has just submitted a new pull request for https://github.com/w3c/webauthn:

== Update obsolete privacy concerns about throwing errors early ==
Given the conclusions in https://github.com/w3c/webauthn/issues/2132#issuecomment-2328586778 and https://github.com/w3c/webauthn/issues/2132#issuecomment-2328645419, update the respective privacy concerns and remove the obsolete restrictions against returning "NotAllowedError" before the timeout expires. This simplifies some aspects of #2095 and #2096 (see: https://github.com/w3c/webauthn/pull/2095#discussion_r1697291190).

Closes #2132.

<!-- Remove the following for non-normative changes -->

The following tasks have been completed:

- ~~[ ] Modified Web platform tests~~ (No applicable tests)

Implementation commitment:

- (This change only removes restrictions, but does not require action from implementers.)

Documentation and checks

- [x] Affects privacy: see analysis in https://github.com/w3c/webauthn/issues/2132#issuecomment-2328586778
- ~~[ ] Affects security~~
- ~~[ ] Updated explainer~~


See https://github.com/w3c/webauthn/pull/2134


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Wednesday, 4 September 2024 12:08:47 UTC