Can someone please explain little bit more how FIDO metadata statement isFreshUserVerificationRequired attribute should be used during assertion?Suppose, (isFreshUserVerificationRequired=true) in the metadata and (UV=false) in assertion authData. Should RP reject the assertion? Or do I misunderstand the purpose of isFreshUserVerificationRequired?
This message (including any attachments) may contain confidential, proprietary, privileged and/or private information. The information is intended to be for the use of the individual or entity designated above. If you are not the intended recipient of this message, please notify the sender immediately, and delete the message and any attachments. Any disclosure, reproduction, distribution or other use of this message or any attachments by an individual or entity other than the intended recipient is prohibited. --
You received this message because you are subscribed to the Google Groups "FIDO Dev (fido-dev)" group.
To unsubscribe from this group and stop receiving emails from it, send an email to fido-dev+u...@fidoalliance.org.
To view this discussion on the web visit https://groups.google.com/a/fidoalliance.org/d/msgid/fido-dev/26ea54df-f913-4fb4-9a70-1df37302253fn%40fidoalliance.org.