Intent to Prototype: WebAuthn remoteClientDataJSON Extension

16 views

Skip to first unread message

Chromestatus

unread,

1:06 PM (4 hours ago) 1:06 PM

to blin...@chromium.org, Zachar...@microsoft.com, jam...@microsoft.com, ti...@micrsosoft.com

Contact emails

jam...@microsoft.com, Zachar...@microsoft.com, ti...@micrsosoft.com

Explainer

https://github.com/bobomb/MSEdgeExplainers/blob/9838480febdc51033b46e2d9d7a9d1813df890f1/WebAuthnRemoteClientDataJSON/explainer.md

Specification

https://github.com/w3c/webauthn/pull/2375

Summary

Allows a caller to provide a complete clientDataJSON string for a WebAuthn ceremony, which the browser passes through to the authenticator without modification. This enables remote desktop web clients to forward WebAuthn requests with the exact clientDataJSON from the remote host, preventing signature verification failures caused by differences between the browser-constructed and host-provided clientDataJSON.

Blink component

Blink>WebAuthentication

Web Feature ID

webauthn

Motivation

The remoteClientDataJSON extension for the Web Authentication API allows a caller to provide a complete clientDataJSON string for a WebAuthn ceremony, which the browser passes through to the authenticator without modification. This enables remote desktop web clients to forward WebAuthn requests with the exact clientDataJSON from the remote host, preventing signature verification failures caused by differences between the browser-constructed and host-provided clientDataJSON.

Initial public proposal

https://github.com/w3c/webauthn/pull/2375

Goals for experimentation

None

Requires code in //chrome?

True

Tracking bug

https://issues.chromium.org/issues/506062130

Estimated milestones

No milestones specified

Link to entry on the Chrome Platform Status

https://chromestatus.com/feature/5127601250238464?gate=6194074211188736

This intent message was generated by Chrome Platform Status.

Reply all

Reply to author

Forward

0 new messages