Skip to content

Commit

Permalink
Merge pull request #2015 from w3c/fix-lint
Browse files Browse the repository at this point in the history
Fix Bikeshed lint
  • Loading branch information
emlun authored Jan 10, 2024
2 parents 830e6c0 + 3aa0247 commit 82db709
Showing 1 changed file with 2 additions and 3 deletions.
5 changes: 2 additions & 3 deletions index.bs
Original file line number Diff line number Diff line change
Expand Up @@ -6740,8 +6740,7 @@ This [=client extension|client=] [=registration extension=] and [=authentication

<div dfn-type="dict-member" dfn-for="CredentialPropertiesOutput">
: <dfn>rk</dfn>
:: This OPTIONAL property, known abstractly as the <dfn dfn-type="dfn">resident key credential property</dfn>
(i.e., <dfn dfn-type="dfn">client-side discoverable credential property</dfn>),
:: This OPTIONAL property, known abstractly as the <dfn dfn-type="dfn">resident key credential property</dfn>,
is a Boolean value indicating whether the {{PublicKeyCredential}} returned as a result of a [=registration ceremony=]
is a [=client-side discoverable credential=].
If {{rk}} is [TRUE], the credential is a [=discoverable credential=].
Expand Down Expand Up @@ -8593,7 +8592,7 @@ the [=[RP]=] MUST validate the {{CollectedClientData/origin}} member of the [=cl

The [=[RP]=] MUST NOT accept unexpected values of {{CollectedClientData/origin}},
as doing so could allow a malicious website to obtain valid [=credentials=].
Although the [=scope=] of [=WebAuthn credentials=] prevents their use on domains
Although the [=scope=] of WebAuthn credentials prevents their use on domains
outside the [=RP ID=] they were registered for,
the [=[RP]=]'s origin validation serves as an additional layer of protection
in case a faulty [=authenticator=] fails to enforce credential [=scope=].
Expand Down

0 comments on commit 82db709

Please sign in to comment.