- From: jychab via GitHub <noreply@w3.org>
- Date: Mon, 29 Sep 2025 18:12:59 +0000
- To: public-webauthn@w3.org
> > RPs, in contrast, have insight into their users and the types of authenticators they register. This allows them to optimize the experience—for example, by not prioritizing platform keys if most of their users rely on security keys. > > And that's why we added [Client Hints](https://passkeys.dev/docs/advanced/client-hints/). Client Hints are definitely a step forward in giving RPs some influence over the UX. The limitation, though, is that they’re currently treated as advisory rather than binding. An improvement would be to make them enforceable in the spec—at least in the case where allowCredentials is empty, since that’s when discoverable credentials and authenticator choice matter most. -- GitHub Notification of comment by jychab Please view or discuss this issue at https://github.com/w3c/webauthn/issues/2335#issuecomment-3348353798 using your GitHub account -- Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Monday, 29 September 2025 18:13:00 UTC