The CTAP2 authenticatorMakeCredential command takes an excludeList parameter that is used to prevent the user from storing multiple credentials for the same account on one authenticator. When a token finds that it already stores a credential from excludeList, it returns CTAP2_ERR_CREDENTIAL_EXCLUDED.
In Firefox, we need to show a prompt that guides the user towards retrying with another authenticator when we see CTAP2_ERR_CREDENTIAL_EXCLUDED (Bug 1831392). This patch exposes a top-level error code which we can catch in authrs_bridge.
The CTAP2
authenticatorMakeCredentialcommand takes anexcludeListparameter that is used to prevent the user from storing multiple credentials for the same account on one authenticator. When a token finds that it already stores a credential fromexcludeList, it returnsCTAP2_ERR_CREDENTIAL_EXCLUDED.In Firefox, we need to show a prompt that guides the user towards retrying with another authenticator when we see
CTAP2_ERR_CREDENTIAL_EXCLUDED(Bug 1831392). This patch exposes a top-level error code which we can catch inauthrs_bridge.