Skip to content

Issues: WICG/dbsc

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

34 Open 27 Closed
34 Open 27 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

Intent to Migrate: Device Bound Session Credentials Has initial answer Has at least one answer from admins
#83 opened Dec 12, 2024 by drubery
1
CORS integration Has initial answer Has at least one answer from admins
#81 opened Nov 28, 2024 by annevk
@kmonsen
1
Support for Software Defined Authenticators and Credential Managers Has initial answer Has at least one answer from admins
#80 opened Oct 25, 2024 by nicksteele
2
HTTP 401 MUST return a WWW-Authenticate header Has initial answer Has at least one answer from admins
#65 opened Jul 26, 2024 by danmarg
17
Sec- prefix for a server header Has initial answer Has at least one answer from admins
#59 opened Jun 10, 2024 by yoavweiss
11
Where does the challenge value go in the Registration JWT? Has initial answer Has at least one answer from admins
#56 opened Apr 26, 2024 by tblachowicz
4
Details on Session Identifier are not clear in the Explainer Has initial answer Has at least one answer from admins
#55 opened Apr 26, 2024 by tblachowicz
2
A simpler flow proposal Has initial answer Has at least one answer from admins
#46 opened Apr 10, 2024 by el1s7
56
how are endpoints conveyed from server to browser? Has initial answer Has at least one answer from admins
#45 opened Apr 9, 2024 by bc-pi
@arnar
13
jti/nonce/challenge value? Has initial answer Has at least one answer from admins
#43 opened Apr 9, 2024 by bc-pi
@arnar
2
[Fetch] What's stopping us from using the Fetch API configuration to support this? Has initial answer Has at least one answer from admins
#39 opened Apr 9, 2024 by wparad
1
MVP Recommendation: TOTP
#36 opened Apr 8, 2024 by wparad
9
An attack vector for DBSC:
#35 opened Apr 8, 2024 by maxhata
9
Need for attestation?
#34 opened Apr 7, 2024 by jackevans43
5
timed refresh mechanism
#33 opened Apr 6, 2024 by dickhardt
1
Login Status API?
#32 opened Apr 6, 2024 by dickhardt
@arnar
1
alignment with OAuth 2 flows for 1P authorization servers
#31 opened Apr 6, 2024 by dickhardt
3
explain excluded scope
#30 opened Apr 6, 2024 by dickhardt
3
Reduce latency by including refresh challenge
#29 opened Apr 6, 2024 by dickhardt
1
JWT clarifications needed
#28 opened Apr 6, 2024 by dickhardt
Explicitly type the JWT
#27 opened Apr 6, 2024 by dickhardt
2
How do servers manage the public keys and the sessions?
#26 opened Apr 5, 2024 by hdfrk
4
IP binding with Cookies cant be enough ?
#25 opened Apr 5, 2024 by threatdecoder
2
Question RE: Tracking and Identity Providers
#24 opened Apr 4, 2024 by whitehatguy
1
Require request signing for proof-of-possession
#23 opened Apr 4, 2024 by joaopenteado
18
ProTip! Exclude everything labeled bug with -label:bug.