[webauthn] Specify authenticator attachment for authentication operation (#1267) from Ki-Eun Shin via GitHub on 2019-07-31 (public-webauthn@w3.org from July 2019)

From: Ki-Eun Shin via GitHub <sysbot+gh@w3.org>
Date: Wed, 31 Jul 2019 07:43:13 +0000
To: public-webauthn@w3.org
Message-ID: <issues.opened-474986945-1564558992-sysbot+gh@w3.org>

Kieun has just created a new issue for https://github.com/w3c/webauthn:

== Specify authenticator attachment for authentication operation ==
Let say RP decides to only support platform authenticator with RK.
If RP provides authentications based on the username/password-less, the authentication option includes `allowCredentials` as an empty list.
Then, with such options the client may check available authenticator first. If there is no credential bound to the calling RP, it will begin to search external authenticators which introduce some UIs.
RP who only cares platform authenticator would like to get an error right away if there is no registered credential on platform so that it tries to provide fallback authentication to users.

For doing so, RP needs a way to specify the authenticator attachment by specifying "platform authenticator" during get operation.

Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1267 using your GitHub account

Received on Wednesday, 31 July 2019 07:43:15 UTC