nsat...@chromium.org updated this feature:
Web Authentication Conditional UI
Components: Blink
Implementation status: In developer trial (Behind a flag)
Estimated milestones:
Shipping on desktop |
108 |
DevTrial on desktop |
107 |
Shipping on Android |
108 |
DevTrial on Android |
107 |
Changes:
- accurate_as_of:
old: None
new: 2022-08-22 09:56:41.219879
- all_platforms_descr:
old: None
new: The feature requires support from the underlying OS. Support will be surfaced via PublicKeyCredential.isConditionalMediationAvailable(). Debugging support will be available on all desktop platforms.
- anticipated_spec_changes:
old: None
new: We got feedback to relax the restriction on empty allow lists, and will do this before shipping: https://github.com/w3c/webauthn/issues/1793
No other issues present at the time (see https://github.com/w3c/webauthn/issues)
- api_spec:
old: None
new: True
- blink_components:
old: None
new: ['Blink']
- bug_url:
old: None
new: https://crbug.com/1171985
- category:
old: None
new: Miscellaneous
- creator:
old: None
new: nsat...@chromium.org
- debuggability:
old: None
new: This feature is supported by the WebAuthn Devtools panel
https://developer.chrome.com/docs/devtools/webauthn/
Create a new authenticator with transport = "internal", resident key and user verification support to test it.
WebAuthn debugging in general is not supported on Android.
- devrel:
old: None
new: ['age...@chromium.org']
- devtrial_instructions:
old: None
new: https://webauthn-conditional-ui-demo.glitch.me
- doc_links:
old: None
new: ['https://docs.google.com/document/d/1KzEWP0aoLMZ0asfw6d3-7UHJ6csTtxLA478EgptCvkk']
- dt_milestone_android_start:
old: None
new: 107
- dt_milestone_desktop_start:
old: None
new: 107
- editors:
old: None
new: []
- explainer_links:
old: None
new: ['https://github.com/w3c/webauthn/wiki/Explainer:-WebAuthn-Conditional-UI']
- feature_type:
old: None
new: 1
- ff_views:
old: None
new: No signal
- flag_name:
old: None
new: --enable-features=WebAuthenticationConditionalUI
- i2e_lgtms:
old: None
new: []
- i2s_lgtms:
old: None
new: []
- ie_views:
old: None
new: No signal
- impl_status_chrome:
old: None
new: In developer trial (Behind a flag)
- intent_stage:
old: None
new: Prepare to ship
- intent_to_ship_subject_line:
old: None
new: [blink-dev] Intent to Ship: Web Authentication Conditional UI
- intent_to_ship_url:
old: None
new: https://groups.google.com/a/chromium.org/d/msgid/blink-dev/CAB0jionVQ5iy8p7q3_G1%2BRo_SrZEtS%3D%3Dq1Ckgz3p4CeeR%3DRCJg%40mail.gmail.com
- interop_compat_risks:
old: None
new: Very low: this is a new feature that's already implemented by Safari on their Technology Preview.
- launch_bug_url:
old: None
new: https://crbug.com/1349891
- motivation:
old: None
new: WebAuthn is designed to make it impossible to query for credential availability without going through a complete, modal dialog heavy, authentication flow. If a website doesn't know whether a registered authenticator is available on the device the user is attempting to log-in, it can't risk showing the modal dialog since it can fail right away and disrupt the user.
Conditional UI solves this by showing UI only if we know in advance that the user has appropriate credentials available on their current device. The credentials are shown alongside autofilled passwords to aid in the transition from passwords to WebAuthn credentials ("passkeys").
- name:
old: None
new: Web Authentication Conditional UI
- non_oss_deps:
old: None
new: Windows WebAuthn API version 4 (Win11+).
Android P+
- owner:
old: None
new: ['nsat...@chromium.org', 'ke...@chromium.org', 'a...@chromium.org']
- privacy_review_status:
old: None
new: Pending
- ready_for_trial_url:
old: None
new: https://groups.google.com/a/chromium.org/g/blink-dev/c/laxVRNSzMVo
- safari_views:
old: None
new: Shipped/Shipping
- safari_views_link:
old: None
new: https://developer.apple.com/videos/play/wwdc2022/10092
- safari_views_notes:
old: None
new: See around 16:20
- sample_links:
old: None
new: ['https://webauthn-conditional-ui-demo.glitch.me']
- search_tags:
old: None
new: ['webauthn', 'conditional ui', 'conditional mediation', 'web authentication']
- security_review_status:
old: None
new: Pending
- shipped_android_milestone:
old: None
new: 108
- shipped_milestone:
old: None
new: 108
- spec_link:
old: None
new: https://w3c.github.io/webauthn/#GetAssn-ConditionalMediation-Interact-FormControl
- spec_mentors:
old: None
new: []
- standard_maturity:
old: None
new: Specification currently under development in a Working Group
- standardization:
old: None
new: Editor's draft
- star_count:
old: None
new: 10
- summary:
old: None
new: A new mode for WebAuthn that displays a credential selection UI only if the user has a discoverable credential registered with the Relying Party on their authenticator. The credential is displayed alongside autofilled passwords. This solves the bootstrapping problem when replacing traditional username and password with WebAuthn: websites can fire a WebAuthn call while showing a regular password prompt without worrying about showing a modal dialog error if the device lacks appropriate credentials.
- tag_review:
old: None
new: https://github.com/w3ctag/design-reviews/issues/692
- tag_review_status:
old: None
new: 3
- web_dev_views:
old: None
new: No signals
- webview_risks:
old: None
new: WebAuthn is not supported on WebViews, so this feature does not change anything for WebView.
- wpt:
old: None
new: True
- wpt_descr:
old: None
new: https://wpt.fyi/results/html/semantics/forms/the-form-element/form-autocomplete.html for the autocomplete="webauthn" tag.
https://wpt.fyi/results/webauthn/conditional-mediation.https.html for conditional mediation functions.
Next steps:
You are receiving this email because:
Unsubscribe