Re: [webauthn] Can we document protections (if any) around userHandle (with user-verification)? (#2266) from Kyle Simpson via GitHub on 2025-02-23 (public-webauthn@w3.org from February 2025)

From: Kyle Simpson via GitHub <sysbot+gh@w3.org>
Date: Sun, 23 Feb 2025 14:11:05 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-2676883281-1740319863-sysbot+gh@w3.org>

I'm a bit confused, perhaps you could help clarify... I thought that any time I was invoking auth that opened the modals *was* user-verification, and that the non-user-verification auth would basically be "silent", such as if I had a hardware key in the usb slot.

Is it "modals" as in "any UI the browser presents during auth", or more specifically as in "any UI that the user must affirmatively interact with, like clicking a button, etc"? 

-- 
GitHub Notification of comment by getify
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/2266#issuecomment-2676883281 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Sunday, 23 February 2025 14:11:06 UTC