webauthn icon indicating copy to clipboard operation
webauthn copied to clipboard

Published 20 hours ago verified publisher icon w3c

Should enterprise attestation support be flagged explicitly?

Open nsatragno opened this issue 2 years ago • 2 comments

At the June F2F, the topic of how painful it can be to require enterprise attestation came up. Right now browsers throw a type error if not supported, but that would turn into a request with no attestation after updating browsers to ignore unknown enum values. This is undesirable: RPs might want to know in advance whether enterprise attestation can succeed or not.

nsatragno avatar Jun 09 '22 20:06 nsatragno

Is this a flag in WebAuthn that can be checked to see if the browser is going to throw a type error?

That would be helpful for RP.

You can't say if an enterprise attestation is available only if the browser supports the enum for enterprise attestation.

ve7jtb avatar Jul 06 '22 15:07 ve7jtb

2023-08-30 meeting: address this as a client capability in #1923

timcappalli avatar Aug 30 '23 18:08 timcappalli