authenticatorMakeCredential operation credential filtering

[jovasco]

3. Check if a credential matching an item of excludeCredentialDescriptorList is present on this authenticator. If so, return an error code equivalent to "NotAllowedError" and terminate the operation.

This should explicitly mention that the the item must be checked to match the provided RP ID.

See PR #651

[equalsJeffH]

updated: I had written:

This seems like a correct update to that step to me -- others?
If so, I'll fix this in PR #498 and we can close PR #651.

have decided to not address this in PR #498.

[nadalin]

@jovasco This seems just like a editorial issue.

[equalsJeffH]

@nadalin, this is technical.

[equalsJeffH]

am assigning to @jovasco since he authored PR #651 intended to resolve this, and I ended up not addressing it in PR #498.