…ensionResults() come from?

fix #657: where does return value of PublicKeyCredential.getClientExtensionResults() come from?

This resolves #622. This also changes some display name examples to
include non-ASCII characters.

Also added a reference to the list item back in the correct place.

This also redefines "Public Key Credential" to cover private keys, public keys, and assertions, as a willful violation of RFC4949.

Credential ID is defined to explicitly include the possibility that it's the encrypted Credential Source.

… IDL

This resolves #587.

Summary:

- Make member `PublicKeyCredentialEntity.name` required
- Make member `PublicKeyCredentialUserEntity.id` required
- Make member `PublicKeyCredentialUserEntity.displayName` required
- Remove algorithm step from _§5.1.3 Create a new credential_ that
  instructed to throw an exception if any of the above members were
  missing

Only exclude CredIDs matching the RPID

…r standalone

It's just confusing to send the whole `AuthenticatorSelectionCriteria`
structure but ignore of forbid 2 of the 3 members. If those additional
parameters should be added in the future, that will probably be a
breaking change anyway.

…tion

Fix #587: Make PublicKeyCredentialEntity members required in IDL

* do not call authenticatorMakeCredential() with separate |rpId| fixes #466

* credID returned by authnrGetAssn() is optional if allowCreds has exactly 1 member fixes #472

* fixup global object reference per domenic, improves #472

* indent 4.1.4 step 18et al to clarify relation to prior step

* fix line indent

* do not call authenticatorMakeCredential() with separate |rpId| fixes #466

* credID returned by authnrGetAssn() is optional if allowCreds has exactly 1 member fixes #472

* fixup global object reference per domenic, improves #472

* indent 4.1.4 step 18et al to clarify relation to prior step

* fix line indent

* post rebase-on-master, fix dangling MakeCredentialOptions

* fix error in resolving rebase conflicts

* further rebase conflict resolution error fixups

* convert switch steps to colon-denotation

* tag 'while'

* primary changes for improving #472 mostly complete

* further issue #472 cleanups

* del 'cancel the timer' from #creatCredential fixes #535

* polish constructResultantCredentialCallback method description

* marked authenticator model section as non-normative

* marked relying party operation section as non-normative

* fix proper subset tweak

* Added abort signal object and steps to webauthn

* fixed a minor issue with linking

* add minor edits to focus on the main things

* getting the blank line correct

* Added a example section to explain how abort should be used

* fix up example

* committing before computer dies

* updated grammars of the example based on feedback

* update example text

* Updated with the section on switching tab; complete the PR

* minor tweak

* finished polishing the spec

* whoops one leftover

* finally figured out how to remove last two linking errors

* take out abortsignal from extension; edit promise rejection

#665)

* actually improve #254, and fix #661

* DiscoFrmExtSource(options) -> (origin, options)

* make [[DiscoFrmExtSource]]'s exposition match [[Create]]'s

* deal with yet another fix #254 straggler in [[Create]]

* get rid of |global| in [[DiscoFrmExtSource]]

* remove 'in parallel' and 'global' stuff from #discover-from-external-source alg

* work on #discover-from-external-source alg to improve #254

* finish (one hopes) work on #discover-from-external-source alg to fix #254

* minor editorial

* repair #createCredential intro parag, improves issue #671

* complete fix #671

…serVerification

* Update index.bs

Biometric Selection Criteria extension

* Update index.bs

* Update index.bs

* Update index.bs

* Update index.bs

replaced authentication key by credential private key. Close #590

* updated the definition of authenticator

* updated according to comment

This closes #627.

changing name of method to isUserVerifyingPlatformAuthenticatorAvailable

Added references to the definition of user verification.

Clarify semantics of isPlatformAuthenticatorAvailable

…nticator session

use the registered ext ids in examples

* fix copy and paste error

* improve wording

...as to what this new field is for.

Adding a type field to CollectedClientData

Tiny nit: "pair of cryptographic keys" instead of "set of cryptographic keys"

This reverts commit b689825.

To avoid changing the number of all the other subsections...

The previous language would have the procedure terminate as soon as
there are no pending authenticator requests - including immediately at
the beginning unless at least one authenticator is available at that
time.

Fix #404 - Add a Security Consideration for Cryptographic Challenges

Resolve #292 - Clarify that only one operation is permitted per authenticator session

This requirement isn't compatible with the current CTAP2 draft.

Per review comment by @rlin1.

…gning/verification text (#690)

Fix #644: Add UV parameter to getAssertion

Fix issue #692

* remove comments from <pre> blocks

* add missing close div tag in #storeCredential

* fix warning wrt  var usage in authenticatorMakeCredential input params

* fix 'challenge' linking error