issues
search
WICG
/
web-otp
phone number verification
https://wicg.github.io/web-otp/
Other
94
stars
36
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
This API makes it much easier to have MITM attacks over OTP token used, turning genuine token submission into a replay "attack"
#61
Voltra
opened
4 months ago
0
Register the `otp-credentials` in the Permissions Policy Registry
#60
samuelgoto
opened
4 months ago
0
Broken references in WebOTP API
#59
dontcallmedom-bot
opened
1 year ago
0
Message access pop-up appears even after aborting.
#58
Amith-B
closed
2 years ago
2
Update with DOM's abort reason
#57
nidhijaju
closed
2 years ago
1
Add AbortSignal's abort reason to WebOTP
#56
nsatragno
closed
2 years ago
0
Software-based OTP Applications
#55
jaredhanson
opened
3 years ago
0
web opt API not working in react.js
#54
pralhad88
opened
3 years ago
1
Support for web push notification as a transport mechanism
#53
numatay
opened
3 years ago
0
Supported browser for WebOTP
#52
keikoit
opened
3 years ago
0
Update usage in iframe && remove outdated files
#51
yi-gu
closed
3 years ago
1
Support WebOTP in cross-origin iframe
#50
yi-gu
closed
3 years ago
0
Email OTP
#49
samuelgoto
closed
3 years ago
2
Why stop working if I add sender to my contacts?
#48
craigfrancis
opened
4 years ago
1
[web-otp] Change transport type to be a DOMString
#47
majido
opened
4 years ago
1
Repo is fork
#46
marcoscaceres
opened
4 years ago
0
Repo got renamed
#45
marcoscaceres
opened
4 years ago
2
Fix misnamed abort/signal vars
#44
samthor
closed
4 years ago
1
The specification draft link in the README is a dead link
#43
rmondello
opened
4 years ago
0
Inaccuracies in framing of "comparable APIs" in explainer
#42
rmondello
opened
4 years ago
0
Define SMS format by reference to WICG/sms-one-time-codes.
#41
hober
closed
4 years ago
0
Update link to spec draft
#40
tomayac
closed
4 years ago
0
Explanation for not using "trustworthy urls" is confusing
#39
mkruisselbrink
opened
4 years ago
0
security checks in [[DiscoverFromExternalSource]] don't match those described in the security section
#38
mkruisselbrink
opened
4 years ago
0
Requirements for OTPCredentialRequestOptions.transport are incompatible with WebIDL
#37
mkruisselbrink
closed
4 years ago
2
Editorial: [[DiscoverFromExternalSource]] uses same |options| name for two different variables
#36
mkruisselbrink
opened
4 years ago
0
Fixes #33
#35
iahmed5
closed
4 years ago
2
Ordering of transports in OTPCredentialRequestOptions not clear
#34
rtoy
opened
4 years ago
0
Typos and other editorial issues
#33
rtoy
closed
4 years ago
0
Unclear connection between "Availability" section and normative requirements
#32
domenic
opened
4 years ago
0
OTPCredentialRequestOptions's transport definition is weird
#31
domenic
opened
4 years ago
7
Editorial: returning already terminates this algorithm
#30
domenic
opened
4 years ago
0
Editorial: no need to alias origin to callerOrigin in [[DiscoverFromExternalSource]]
#29
domenic
opened
4 years ago
0
Why is options["otp"] guaranteed to exist in [[DiscoverFromExternalSource]]?
#28
domenic
opened
4 years ago
1
[[DiscoverFromExternalSource]] introduction duplicates credential management spec?
#27
domenic
opened
4 years ago
0
Editorial: dictionary members are done via options["otp"], not options.otp
#26
domenic
opened
4 years ago
1
Improving attribute definitions
#25
domenic
opened
4 years ago
0
Example uses "abort" property name, but it's "signal"
#24
domenic
opened
4 years ago
0
security issues
#23
dark4ng3l
opened
4 years ago
1
Why is the JavaScript API tightly bound to SMS?
#22
hober
closed
4 years ago
1
The polyfill example wont work in safari
#21
kenchris
closed
4 years ago
1
Permissioning, user consent, and the Imperative API
#20
hadleybeeman
closed
4 years ago
1
privacy differences between declarative and imperative forms of API
#19
dbaron
closed
4 years ago
3
JavaScript API can't be used for polyfilling autocomplete=one-time-code in practice
#18
hober
closed
4 years ago
2
Update OTPCredentials to have `code` field
#17
ayuishii
closed
4 years ago
1
Should OTPCredential have `transport`?
#16
samuelgoto
opened
4 years ago
0
Space handling
#15
madHEYsiaOYO
closed
4 years ago
2
How to abort the SMS Receiver API
#14
manishbisht
closed
4 years ago
1
Update explainer to reflect new API shape
#13
ayuishii
closed
4 years ago
0
Extensibility of navigator.credentials.get({otp: true})
#12
ayuishii
closed
4 years ago
3
Next