Currently, WebAuthn.io requires the user to select an authentictor type. However, as I understand from the spec, authenticatorSelection is an optional field when creating the credentials.
Wouldn't it make sense to also provide a third "either" Authenticator Type option on WebAuthn.io? I guess this would also be useful in real-world applications, where I don't really care if the user has a platform authenticator or a roaming authenticator. In the end the user is always responsible for keeping their private key secure, whether it is on device or on an external.
It would also be useful to demonstrate how browsers present the choice between platform and roaming authenticators in case the user has both.
@slockhorst created issue 17 in the webauthn repo but it belongs here: