Closed Bug 1510782 Opened 6 years ago Closed 1 year ago

Web Authentication - Interactive cancellation should return NotAllowedError

Tracking

()

Status:

RESOLVED DUPLICATE of bug 1621377

Tracking Flags:

Tracking

Status

firefox65

---

affected

People

(Reporter: jcj, Unassigned)

References

(
URL
)

Details

(Whiteboard: [webauthn][webauthn-interop])

J.C. Jones [:jcj] (he/him)

Reporter

Description

•

6 years ago

Per the Create Credential algorithm, [1] bullet 20 (and bullet 18 of the Get Assertion algorithm), if the user agent cancels the flow, we should return NotAllowedError instead of AbortError.

(Thanks to Kim Paulhamus for this catch)

[1] https://w3c.github.io/webauthn/#CreateCred-DetermineRpId

J.C. Jones [:jcj] (he/him)

Reporter

Updated

•

5 years ago

Component: DOM: Device Interfaces → DOM: Web Authentication

BMO Automation

Updated

•

2 years ago

Severity: normal → S3

John Schanck [:jschanck]

Updated

•

1 year ago

Status: NEW → RESOLVED

Closed: 1 year ago

Duplicate of bug: 1621377

Resolution: --- → DUPLICATE

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Quick Search

Web Authentication - Interactive cancellation should return NotAllowedError

Categories

(Core :: DOM: Web Authentication, enhancement, P3)

Tracking

()

People

(Reporter: jcj, Unassigned)

References

(
URL
)

Details

(Whiteboard: [webauthn][webauthn-interop])

Crash Data

Security

(public)

User Story

Description

Updated

Updated

Updated