Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Filter makeCredential() by acceptable trust anchors #396

Closed
jyasskin opened this issue Apr 12, 2017 · 1 comment
Closed

Filter makeCredential() by acceptable trust anchors #396

jyasskin opened this issue Apr 12, 2017 · 1 comment
Assignees
@gmandyam
Labels
stat:pr-open subtype:algorithms/WebIDL type:technical
Milestone
Last Working Draft

Comments

@jyasskin
Copy link
Member

https://w3c.github.io/webauthn/#registering-a-new-credential says that a relying party has "a list of acceptable trust anchors", and it only accepts attestations rooted at those anchors. However, I don't see any way to tell the UA to only show the user a choice of authenticators that can produce such acceptable attestations. If I haven't just missed that option, it seems like this is going to produce frustrated users who select an authenticator that it turns out the site won't accept.
@equalsJeffH equalsJeffH added this to the CR milestone Apr 12, 2017
@gmandyam gmandyam mentioned this issue Nov 9, 2017
Closed
@equalsJeffH
Copy link
Contributor

on 29-Nov-2017 webauthn call: we have consensus that we do not wish to add RP-driven attstn stmt format ident selection as a part of authnr selection, and so are closing this issue and PR #683.

@emlun emlun mentioned this issue Mar 31, 2022
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@gmandyam gmandyam

Labels
stat:pr-open subtype:algorithms/WebIDL type:technical
Projects
None yet
Milestone
Last Working Draft
Development

No branches or pull requests
4 participants
@jyasskin @equalsJeffH @emlun @gmandyam