From f6358cf71495e8e2a388dc86d3b465683a5317ad Mon Sep 17 00:00:00 2001 From: Emil Lundberg Date: Wed, 15 Nov 2017 15:33:51 +0100 Subject: [PATCH] Use Infra list terms in authenticatorGetAssertion --- index.bs | 20 ++++++++++---------- 1 file changed, 10 insertions(+), 10 deletions(-) diff --git a/index.bs b/index.bs index 5aa2ebc0f..75df68dad 100644 --- a/index.bs +++ b/index.bs @@ -2138,7 +2138,7 @@ input parameters: : |hash| :: The [=hash of the serialized client data=], provided by the client. : |allowCredentialDescriptorList| -:: An optional list of {{PublicKeyCredentialDescriptor}}s describing credentials acceptable to the [=[RP]=] (possibly filtered +:: An optional [=list=] of {{PublicKeyCredentialDescriptor}}s describing credentials acceptable to the [=[RP]=] (possibly filtered by the client), if any. : |requireUserPresence| :: A Boolean value provided by the client, which in invocations from a [=[WAC]=]'s @@ -2155,13 +2155,13 @@ When this method is invoked, the [=authenticator=] must perform the following pr equivalent to "{{UnknownError}}" and terminate the operation. 1. If |requireUserVerification| is `true` and the authenticator cannot perform [=user verification=], return an error code equivalent to "{{ConstraintError}}" and terminate the operation. -1. If |allowCredentialDescriptorList| was not supplied, set it to a list of all credentials stored for |rpId| (as determined by - an exact match of |rpId|). -1. Remove any items from |allowCredentialDescriptorList| that do not match a credential bound to this authenticator. A match - occurs if a credential matches |rpId| and an |allowCredentialDescriptorList| item's +1. If |allowCredentialDescriptorList| was not supplied, set it to a [=list=] of all credentials stored for |rpId| (as determined + by an exact match of |rpId|). +1. Remove any [=list/items=] from |allowCredentialDescriptorList| that do not match a credential bound to this authenticator. A + match occurs if a credential matches |rpId| and an |allowCredentialDescriptorList| item's {{PublicKeyCredentialDescriptor/id}} and {{PublicKeyCredentialDescriptor/type}} members. -1. If |allowCredentialDescriptorList| is now empty, return an error code equivalent to "{{NotAllowedError}}" and terminate the - operation. +1. If |allowCredentialDescriptorList| is now [=list/empty=], return an error code equivalent to "{{NotAllowedError}}" and + terminate the operation. 1. Let |selectedCredential| be a [=public key credential|credential=] as follows. If the [=list/size=] of |allowCredentialDescriptorList| @@ -2211,10 +2211,10 @@ When this method is invoked, the [=authenticator=] must perform the following pr
  • Return to the user agent: - - |selectedCredential|'s [=credential ID=], if either a list of credentials of length 2 or greater was supplied by the - client, or no such list was supplied. Otherwise, return only the below values. + - |selectedCredential|'s [=credential ID=], if either a [=list=] of credentials of [=list/size=] 2 or greater was supplied + by the client, or no such [=list=] was supplied. Otherwise, return only the below values. - Note: If the client supplies a list of exactly one credential and it was successfully employed, then its + Note: If the client supplies a [=list=] of exactly one credential and it was successfully employed, then its [=credential ID=] is not returned since the client already knows it. This saves transmitting these bytes over what may be a constrained connection in what is likely a common case.