From dcf0ddb03bece66e6b2618b7422238ed12193761 Mon Sep 17 00:00:00 2001 From: Emil Lundberg Date: Wed, 27 Nov 2024 11:43:15 +0100 Subject: [PATCH 1/2] Clarify behaviour of duplicate pubKeyCredParams and attestationFormats --- index.bs | 2 ++ 1 file changed, 2 insertions(+) diff --git a/index.bs b/index.bs index 7fff2d1e7..c248aec95 100644 --- a/index.bs +++ b/index.bs @@ -3512,6 +3512,7 @@ optionally evidence of [=user consent=] to a specific transaction. : pubKeyCredParams :: This member lists the key types and signature algorithms the [=[RP]=] supports, ordered from most preferred to least preferred. + Duplicates are allowed but effectively ignored. The [=client=] and [=authenticator=] make a best-effort to create a credential of the most preferred type possible. If none of the listed types can be created, the {{CredentialsContainer/create()}} operation fails. @@ -3554,6 +3555,7 @@ optionally evidence of [=user consent=] to a specific transaction. :: The [=[RP]=] MAY use this OPTIONAL member to specify a preference regarding the [=attestation=] statement format used by the [=authenticator=]. Values SHOULD be taken from the IANA "WebAuthn Attestation Statement Format Identifiers" registry [[!IANA-WebAuthn-Registries]] established by [[!RFC8809]]. Values are ordered from most preferable to least preferable. + Duplicates are allowed but effectively ignored. This parameter is advisory and the [=authenticator=] MAY use an attestation statement not enumerated in this parameter. The default value is the empty list, which indicates no preference. From eb13ee19cb4647991bbde2bb9da5685fe8fde0cd Mon Sep 17 00:00:00 2001 From: Emil Lundberg Date: Wed, 27 Nov 2024 11:44:05 +0100 Subject: [PATCH 2/2] Use same wording of preference order for attestationFormats as pubKeyCredParams --- index.bs | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/index.bs b/index.bs index c248aec95..3eccf77a1 100644 --- a/index.bs +++ b/index.bs @@ -3554,7 +3554,7 @@ optionally evidence of [=user consent=] to a specific transaction. : attestationFormats :: The [=[RP]=] MAY use this OPTIONAL member to specify a preference regarding the [=attestation=] statement format used by the [=authenticator=]. Values SHOULD be taken from the IANA "WebAuthn Attestation Statement Format Identifiers" registry [[!IANA-WebAuthn-Registries]] established by [[!RFC8809]]. - Values are ordered from most preferable to least preferable. + Values are ordered from most preferred to least preferred. Duplicates are allowed but effectively ignored. This parameter is advisory and the [=authenticator=] MAY use an attestation statement not enumerated in this parameter.