nsat...@chromium.org, ke...@chromium.org, a...@chromium.org
https://github.com/w3c/webauthn/wiki/Explainer:-WebAuthn-Conditional-UI
https://w3c.github.io/webauthn/#GetAssn-ConditionalMediation-Interact-FormControl
https://docs.google.com/document/d/1KzEWP0aoLMZ0asfw6d3-7UHJ6csTtxLA478EgptCvkk
A new mode for WebAuthn that displays a credential selection UI only if the user has a discoverable credential registered with the Relying Party on their platform authenticator. The credential is displayed in autofill UI alongside username and password suggestions for sign-in fields. This solves the bootstrapping problem when replacing traditional username and password flows with WebAuthn: websites can fire a WebAuthn call while showing a regular password prompt without worrying about showing a modal dialog error if the device lacks appropriate credentials.
Websites must opt-in to the feature by triggering a conditional mediation WebAuthn request on a sign-in page.
Blink>WebAuthentication
webauthn, conditional ui, conditional mediation, web authentication
https://github.com/w3ctag/design-reviews/issues/692
Approved
Very low: this is a new feature that's already implemented by Safari on their Technology Preview.
Gecko: No signal
WebKit: Shipped/Shipping in beta (https://developer.apple.com/videos/play/wwdc2022/10092) See around 16:20
Web developers: No signals
Other signals:
WebAuthn is not supported on WebViews, so this feature does not change anything for WebView.
This feature is supported by the WebAuthn Devtools panel
https://developer.chrome.com/docs/devtools/webauthn/
Create a new authenticator with transport = "internal", resident key and user verification support to test it.
WebAuthn debugging in general is not supported on Android.
No
The feature requires support from the underlying OS. It will be supported on Win11+, Mac, and Android; with ChromeOS support coming later.
Support will be surfaced via PublicKeyCredential.isConditionalMediationAvailable().
Debugging support will be available on all desktop platforms from the start (including linux).
Yes.
https://wpt.fyi/results/webauthn/conditional-mediation.https.html
https://wpt.fyi/results/html/semantics/forms/the-form-element/form-autocomplete.html
https://webauthn-conditional-ui-demo.glitch.me
--enable-features=WebAuthenticationConditionalUI
Yes
Windows WebAuthn API version 4 (Win11+). Android P+
https://webauthn-conditional-ui-demo.glitch.me
We got feedback to relax the restriction on empty allow lists, and will do this before shipping: https://github.com/w3c/webauthn/issues/1793 crbug.com/1365669
No other issues present at the time (see https://github.com/w3c/webauthn/issues)
https://chromestatus.com/feature/5144633101778944
Ready for Trial: https://groups.google.com/a/chromium.org/g/blink-dev/c/laxVRNSzMVo
This intent message was generated by Chrome Platform Status.
| ||||||||||
...
Interoperability and Compatibility
Very low: this is a new feature that's already implemented by Safari on their Technology Preview.
Gecko: No signal
--
You received this message because you are subscribed to the Google Groups "blink-dev" group.
To unsubscribe from this group and stop receiving emails from it, send an email to blink-dev+...@chromium.org.
To view this discussion on the web visit https://groups.google.com/a/chromium.org/d/msgid/blink-dev/2391dbcc-4153-43e4-8354-a4cf6987f1edn%40chromium.org.
To view this discussion on the web visit https://groups.google.com/a/chromium.org/d/msgid/blink-dev/CAL5BFfXVJ3ALRcCoZqcoeXThku0cymZOQZ1k-j8UQxszLmbn4g%40mail.gmail.com.