Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Provide passwordless example, or update 1.3.2. to be a passwordless example #1735

Open
GregBrimble opened this issue May 27, 2022 · 2 comments
Open

Provide passwordless example, or update 1.3.2. to be a passwordless example #1735

GregBrimble opened this issue May 27, 2022 · 2 comments
Assignees
@timcappalli
Labels
@Risk Items that are at risk for L3 type:editorial
Milestone
L4(First Publishe...

Comments

@GregBrimble
Copy link

Hi, just a suggestion to help clarify the passwordless registration flow for people.

1.3.2. Registration Specifically with User-Verifying Platform Authenticator walks through a process of registering where a user provides a username, password, and uses a user-verifying platform authenticator.

6.2. Authenticator Taxonomy states:

User-verifying platform authenticators and first-factor roaming authenticators enable passwordless multi-factor authentication. In addition to the proof of possession of the credential private key, these authenticators support user verification as a second authentication factor, typically a PIN or biometric recognition. The authenticator can thus act as two kinds of authentication factor, which enables multi-factor authentication while eliminating the need to share a password with the Relying Party.

To me, 1.3.2's example could be improved by not also providing a password, or instead, a new example was created to specifically walk through a passwordless flow.

More than happy to put up a PR to make these changes if you're interested in either. Just let me know!
@timcappalli
Copy link
Member

This can be addressed as part of #1720

@nadalin nadalin added this to the L3-WD-01 milestone Jun 1, 2022
@timcappalli timcappalli mentioned this issue Jun 1, 2022
Open
@nadalin nadalin added the @Risk Items that are at risk for L3 label Jun 27, 2023
@plehegar plehegar modified the milestones: L3-WD-01, L3-WD-02 Oct 4, 2023
@timcappalli timcappalli mentioned this issue Mar 14, 2024
Merged
@timcappalli timcappalli mentioned this issue Sep 6, 2024
Draft
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@timcappalli timcappalli

Labels
@Risk Items that are at risk for L3 type:editorial
Projects
None yet
Milestone
L4(First Published Working Draft)
Development

No branches or pull requests
6 participants
@emlun @plehegar @timcappalli @nadalin @GregBrimble and others