Fwd: updated feature: Web Authentication Conditional UI

[Kba Marketing]

---------- Forwarded message ---------
From: Chromestatus <ad...@cr-status.appspotmail.com>
Date: Mon, 19 Sep 2022, 23:26
Subject: updated feature: Web Authentication Conditional UI
To: <kbamark...@gmail.com>

nsat...@chromium.org updated this feature:

Web Authentication Conditional UI

Components: Blink

Implementation status: In developer trial (Behind a flag)

Estimated milestones:

Shipping on desktop	108
DevTrial on desktop	107

Shipping on Android	108
DevTrial on Android	107

Changes:

• accurate_as_of:
  old: None
  new: 2022-08-22 09:56:41.219879
  


• all_platforms_descr:
  old: None
  new: The feature requires support from the underlying OS. Support will be surfaced via PublicKeyCredential.isConditionalMediationAvailable(). Debugging support will be available on all desktop platforms.
  


• anticipated_spec_changes:
  old: None
  new: We got feedback to relax the restriction on empty allow lists, and will do this before shipping: https://github.com/w3c/webauthn/issues/1793 No other issues present at the time (see https://github.com/w3c/webauthn/issues)
  


• api_spec:
  old: None
  new: True
  


• blink_components:
  old: None
  new: ['Blink']
  


• bug_url:
  old: None
  new: https://crbug.com/1171985
  


• category:
  old: None
  new: Miscellaneous
  


• creator:
  old: None
  new: nsat...@chromium.org
  


• debuggability:
  old: None
  new: This feature is supported by the WebAuthn Devtools panel https://developer.chrome.com/docs/devtools/webauthn/ Create a new authenticator with transport = "internal", resident key and user verification support to test it. WebAuthn debugging in general is not supported on Android.
  


• devrel:
  old: None
  new: ['age...@chromium.org']
  


• devtrial_instructions:
  old: None
  new: https://webauthn-conditional-ui-demo.glitch.me
  


• doc_links:
  old: None
  new: ['https://docs.google.com/document/d/1KzEWP0aoLMZ0asfw6d3-7UHJ6csTtxLA478EgptCvkk']
  


• dt_milestone_android_start:
  old: None
  new: 107
  


• dt_milestone_desktop_start:
  old: None
  new: 107
  


• editors:
  old: None
  new: []
  


• explainer_links:
  old: None
  new: ['https://github.com/w3c/webauthn/wiki/Explainer:-WebAuthn-Conditional-UI']
  


• feature_type:
  old: None
  new: 1
  


• ff_views:
  old: None
  new: No signal
  


• flag_name:
  old: None
  new: --enable-features=WebAuthenticationConditionalUI
  


• i2e_lgtms:
  old: None
  new: []
  


• i2s_lgtms:
  old: None
  new: []
  


• ie_views:
  old: None
  new: No signal
  


• impl_status_chrome:
  old: None
  new: In developer trial (Behind a flag)
  


• intent_stage:
  old: None
  new: Prepare to ship
  


• intent_to_ship_subject_line:
  old: None
  new: [blink-dev] Intent to Ship: Web Authentication Conditional UI
  


• intent_to_ship_url:
  old: None
  new: https://groups.google.com/a/chromium.org/d/msgid/blink-dev/CAB0jionVQ5iy8p7q3_G1%2BRo_SrZEtS%3D%3Dq1Ckgz3p4CeeR%3DRCJg%40mail.gmail.com
  


• interop_compat_risks:
  old: None
  new: Very low: this is a new feature that's already implemented by Safari on their Technology Preview.
  


• launch_bug_url:
  old: None
  new: https://crbug.com/1349891
  


• motivation:
  old: None
  new: WebAuthn is designed to make it impossible to query for credential availability without going through a complete, modal dialog heavy, authentication flow. If a website doesn't know whether a registered authenticator is available on the device the user is attempting to log-in, it can't risk showing the modal dialog since it can fail right away and disrupt the user. Conditional UI solves this by showing UI only if we know in advance that the user has appropriate credentials available on their current device. The credentials are shown alongside autofilled passwords to aid in the transition from passwords to WebAuthn credentials ("passkeys").
  


• name:
  old: None
  new: Web Authentication Conditional UI
  


• non_oss_deps:
  old: None
  new: Windows WebAuthn API version 4 (Win11+). Android P+
  


• owner:
  old: None
  new: ['nsat...@chromium.org', 'ke...@chromium.org', 'a...@chromium.org']
  


• privacy_review_status:
  old: None
  new: Pending
  


• ready_for_trial_url:
  old: None
  new: https://groups.google.com/a/chromium.org/g/blink-dev/c/laxVRNSzMVo
  


• safari_views:
  old: None
  new: Shipped/Shipping
  


• safari_views_link:
  old: None
  new: https://developer.apple.com/videos/play/wwdc2022/10092
  


• safari_views_notes:
  old: None
  new: See around 16:20
  


• sample_links:
  old: None
  new: ['https://webauthn-conditional-ui-demo.glitch.me']
  


• search_tags:
  old: None
  new: ['webauthn', 'conditional ui', 'conditional mediation', 'web authentication']
  


• security_review_status:
  old: None
  new: Pending
  


• shipped_android_milestone:
  old: None
  new: 108
  


• shipped_milestone:
  old: None
  new: 108
  


• spec_link:
  old: None
  new: https://w3c.github.io/webauthn/#GetAssn-ConditionalMediation-Interact-FormControl
  


• spec_mentors:
  old: None
  new: []
  


• standard_maturity:
  old: None
  new: Specification currently under development in a Working Group
  


• standardization:
  old: None
  new: Editor's draft
  


• star_count:
  old: None
  new: 10
  


• summary:
  old: None
  new: A new mode for WebAuthn that displays a credential selection UI only if the user has a discoverable credential registered with the Relying Party on their authenticator. The credential is displayed alongside autofilled passwords. This solves the bootstrapping problem when replacing traditional username and password with WebAuthn: websites can fire a WebAuthn call while showing a regular password prompt without worrying about showing a modal dialog error if the device lacks appropriate credentials.
  


• tag_review:
  old: None
  new: https://github.com/w3ctag/design-reviews/issues/692
  


• tag_review_status:
  old: None
  new: 3
  


• web_dev_views:
  old: None
  new: No signals
  


• webview_risks:
  old: None
  new: WebAuthn is not supported on WebViews, so this feature does not change anything for WebView.
  


• wpt:
  old: None
  new: True
  


• wpt_descr:
  old: None
  new: https://wpt.fyi/results/html/semantics/forms/the-form-element/form-autocomplete.html for the autocomplete="webauthn" tag. https://wpt.fyi/results/webauthn/conditional-mediation.https.html for conditional mediation functions.
  

---

Next steps:

• Check existing Lighthouse audits for correctness.

You are receiving this email because:

• You starred this feature

Unsubscribe