From b3852bc8c52aedfa4c8bc4a418ccd74f3881b829 Mon Sep 17 00:00:00 2001
From: Nina Satragno <nsatragno@gmail.com>
Date: Tue, 27 Feb 2024 18:52:24 -0500
Subject: [PATCH] [task] Remove build artifact

---
 index.bs.built.html | 5226 -------------------------------------------
 1 file changed, 5226 deletions(-)
 delete mode 100644 index.bs.built.html

diff --git a/index.bs.built.html b/index.bs.built.html
deleted file mode 100644
index f3725df..0000000
--- a/index.bs.built.html
+++ /dev/null
@@ -1,5226 +0,0 @@
-<!doctype html><html lang="en">
- <head>
-  <meta content="text/html; charset=utf-8" http-equiv="Content-Type">
-  <meta content="width=device-width, initial-scale=1, shrink-to-fit=no" name="viewport">
-  <title>Credential Management Level 1</title>
-  <meta content="w3c/WD" name="w3c-status">
-  <meta content="Bikeshed version d5d58a306, updated Fri Jan 26 16:12:28 2024 -0800" name="generator">
-  <link href="http://www.w3.org/TR/credential-management-1/" rel="canonical">
-  <meta content="b48e7a26bc7e2d8e1be81f737dc66a6da27f547c" name="revision">
-<style>/* Boilerplate: style-autolinks */
-.css.css, .property.property, .descriptor.descriptor {
-    color: var(--a-normal-text);
-    font-size: inherit;
-    font-family: inherit;
-}
-.css::before, .property::before, .descriptor::before {
-    content: "‘";
-}
-.css::after, .property::after, .descriptor::after {
-    content: "’";
-}
-.property, .descriptor {
-    /* Don't wrap property and descriptor names */
-    white-space: nowrap;
-}
-.type { /* CSS value <type> */
-    font-style: italic;
-}
-pre .property::before, pre .property::after {
-    content: "";
-}
-[data-link-type="property"]::before,
-[data-link-type="propdesc"]::before,
-[data-link-type="descriptor"]::before,
-[data-link-type="value"]::before,
-[data-link-type="function"]::before,
-[data-link-type="at-rule"]::before,
-[data-link-type="selector"]::before,
-[data-link-type="maybe"]::before {
-    content: "‘";
-}
-[data-link-type="property"]::after,
-[data-link-type="propdesc"]::after,
-[data-link-type="descriptor"]::after,
-[data-link-type="value"]::after,
-[data-link-type="function"]::after,
-[data-link-type="at-rule"]::after,
-[data-link-type="selector"]::after,
-[data-link-type="maybe"]::after {
-    content: "’";
-}
-
-[data-link-type].production::before,
-[data-link-type].production::after,
-.prod [data-link-type]::before,
-.prod [data-link-type]::after {
-    content: "";
-}
-
-[data-link-type=element],
-[data-link-type=element-attr] {
-    font-family: Menlo, Consolas, "DejaVu Sans Mono", monospace;
-    font-size: .9em;
-}
-[data-link-type=element]::before { content: "<" }
-[data-link-type=element]::after  { content: ">" }
-
-[data-link-type=biblio] {
-    white-space: pre;
-}
-
-@media (prefers-color-scheme: dark) {
-    :root {
-        --selflink-text: black;
-        --selflink-bg: silver;
-        --selflink-hover-text: white;
-    }
-}
-</style>
-<style>/* Boilerplate: style-colors */
-/* Any --*-text not paired with a --*-bg is assumed to have a transparent bg */
-:root {
-    color-scheme: light dark;
-
-    --text: black;
-    --bg: white;
-
-    --unofficial-watermark: url(https://www.w3.org/StyleSheets/TR/2016/logos/UD-watermark);
-
-    --logo-bg: #1a5e9a;
-    --logo-active-bg: #c00;
-    --logo-text: white;
-
-    --tocnav-normal-text: #707070;
-    --tocnav-normal-bg: var(--bg);
-    --tocnav-hover-text: var(--tocnav-normal-text);
-    --tocnav-hover-bg: #f8f8f8;
-    --tocnav-active-text: #c00;
-    --tocnav-active-bg: var(--tocnav-normal-bg);
-
-    --tocsidebar-text: var(--text);
-    --tocsidebar-bg: #f7f8f9;
-    --tocsidebar-shadow: rgba(0,0,0,.1);
-    --tocsidebar-heading-text: hsla(203,20%,40%,.7);
-
-    --toclink-text: var(--text);
-    --toclink-underline: #3980b5;
-    --toclink-visited-text: var(--toclink-text);
-    --toclink-visited-underline: #054572;
-
-    --heading-text: #005a9c;
-
-    --hr-text: var(--text);
-
-    --algo-border: #def;
-
-    --del-text: red;
-    --del-bg: transparent;
-    --ins-text: #080;
-    --ins-bg: transparent;
-
-    --a-normal-text: #034575;
-    --a-normal-underline: #bbb;
-    --a-visited-text: var(--a-normal-text);
-    --a-visited-underline: #707070;
-    --a-hover-bg: rgba(75%, 75%, 75%, .25);
-    --a-active-text: #c00;
-    --a-active-underline: #c00;
-
-    --blockquote-border: silver;
-    --blockquote-bg: transparent;
-    --blockquote-text: currentcolor;
-
-    --issue-border: #e05252;
-    --issue-bg: #fbe9e9;
-    --issue-text: var(--text);
-    --issueheading-text: #831616;
-
-    --example-border: #e0cb52;
-    --example-bg: #fcfaee;
-    --example-text: var(--text);
-    --exampleheading-text: #574b0f;
-
-    --note-border: #52e052;
-    --note-bg: #e9fbe9;
-    --note-text: var(--text);
-    --noteheading-text: hsl(120, 70%, 30%);
-    --notesummary-underline: silver;
-
-    --assertion-border: #aaa;
-    --assertion-bg: #eee;
-    --assertion-text: black;
-
-    --advisement-border: orange;
-    --advisement-bg: #fec;
-    --advisement-text: var(--text);
-    --advisementheading-text: #b35f00;
-
-    --warning-border: red;
-    --warning-bg: hsla(40,100%,50%,0.95);
-    --warning-text: var(--text);
-
-    --amendment-border: #330099;
-    --amendment-bg: #F5F0FF;
-    --amendment-text: var(--text);
-    --amendmentheading-text: #220066;
-
-    --def-border: #8ccbf2;
-    --def-bg: #def;
-    --def-text: var(--text);
-    --defrow-border: #bbd7e9;
-
-    --datacell-border: silver;
-
-    --indexinfo-text: #707070;
-
-    --indextable-hover-text: black;
-    --indextable-hover-bg: #f7f8f9;
-
-    --outdatedspec-bg: rgba(0, 0, 0, .5);
-    --outdatedspec-text: black;
-    --outdated-bg: maroon;
-    --outdated-text: white;
-    --outdated-shadow: red;
-
-    --editedrec-bg: darkorange;
-}
-
-@media (prefers-color-scheme: dark) {
-    :root {
-        --text: #ddd;
-        --bg: black;
-
-        --unofficial-watermark: url("data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' width='400' height='400'%3E%3Cg fill='%23100808' transform='translate(200 200) rotate(-45) translate(-200 -200)' stroke='%23100808' stroke-width='3'%3E%3Ctext x='50%25' y='220' style='font: bold 70px sans-serif; text-anchor: middle; letter-spacing: 6px;'%3EUNOFFICIAL%3C/text%3E%3Ctext x='50%25' y='305' style='font: bold 70px sans-serif; text-anchor: middle; letter-spacing: 6px;'%3EDRAFT%3C/text%3E%3C/g%3E%3C/svg%3E");
-
-        --logo-bg: #1a5e9a;
-        --logo-active-bg: #c00;
-        --logo-text: white;
-
-        --tocnav-normal-text: #999;
-        --tocnav-normal-bg: var(--bg);
-        --tocnav-hover-text: var(--tocnav-normal-text);
-        --tocnav-hover-bg: #080808;
-        --tocnav-active-text: #f44;
-        --tocnav-active-bg: var(--tocnav-normal-bg);
-
-        --tocsidebar-text: var(--text);
-        --tocsidebar-bg: #080808;
-        --tocsidebar-shadow: rgba(255,255,255,.1);
-        --tocsidebar-heading-text: hsla(203,20%,40%,.7);
-
-        --toclink-text: var(--text);
-        --toclink-underline: #6af;
-        --toclink-visited-text: var(--toclink-text);
-        --toclink-visited-underline: #054572;
-
-        --heading-text: #8af;
-
-        --hr-text: var(--text);
-
-        --algo-border: #456;
-
-        --del-text: #f44;
-        --del-bg: transparent;
-        --ins-text: #4a4;
-        --ins-bg: transparent;
-
-        --a-normal-text: #6af;
-        --a-normal-underline: #555;
-        --a-visited-text: var(--a-normal-text);
-        --a-visited-underline: var(--a-normal-underline);
-        --a-hover-bg: rgba(25%, 25%, 25%, .2);
-        --a-active-text: #f44;
-        --a-active-underline: var(--a-active-text);
-
-        --borderedblock-bg: rgba(255, 255, 255, .05);
-
-        --blockquote-border: silver;
-        --blockquote-bg: var(--borderedblock-bg);
-        --blockquote-text: currentcolor;
-
-        --issue-border: #e05252;
-        --issue-bg: var(--borderedblock-bg);
-        --issue-text: var(--text);
-        --issueheading-text: hsl(0deg, 70%, 70%);
-
-        --example-border: hsl(50deg, 90%, 60%);
-        --example-bg: var(--borderedblock-bg);
-        --example-text: var(--text);
-        --exampleheading-text: hsl(50deg, 70%, 70%);
-
-        --note-border: hsl(120deg, 100%, 35%);
-        --note-bg: var(--borderedblock-bg);
-        --note-text: var(--text);
-        --noteheading-text: hsl(120, 70%, 70%);
-        --notesummary-underline: silver;
-
-        --assertion-border: #444;
-        --assertion-bg: var(--borderedblock-bg);
-        --assertion-text: var(--text);
-
-        --advisement-border: orange;
-        --advisement-bg: #222218;
-        --advisement-text: var(--text);
-        --advisementheading-text: #f84;
-
-        --warning-border: red;
-        --warning-bg: hsla(40,100%,20%,0.95);
-        --warning-text: var(--text);
-
-        --amendment-border: #330099;
-        --amendment-bg: #080010;
-        --amendment-text: var(--text);
-        --amendmentheading-text: #cc00ff;
-
-        --def-border: #8ccbf2;
-        --def-bg: #080818;
-        --def-text: var(--text);
-        --defrow-border: #136;
-
-        --datacell-border: silver;
-
-        --indexinfo-text: #aaa;
-
-        --indextable-hover-text: var(--text);
-        --indextable-hover-bg: #181818;
-
-        --outdatedspec-bg: rgba(255, 255, 255, .5);
-        --outdatedspec-text: black;
-        --outdated-bg: maroon;
-        --outdated-text: white;
-        --outdated-shadow: red;
-
-        --editedrec-bg: darkorange;
-    }
-    /* In case a transparent-bg image doesn't expect to be on a dark bg,
-       which is quite common in practice... */
-    img { background: white; }
-}
-</style>
-<style>/* Boilerplate: style-counters */
-body {
-    counter-reset: example figure issue;
-}
-.issue {
-    counter-increment: issue;
-}
-.issue:not(.no-marker)::before {
-    content: "Issue " counter(issue);
-}
-
-.example {
-    counter-increment: example;
-}
-.example:not(.no-marker)::before {
-    content: "Example " counter(example);
-}
-.invalid.example:not(.no-marker)::before,
-.illegal.example:not(.no-marker)::before {
-    content: "Invalid Example" counter(example);
-}
-
-figcaption {
-    counter-increment: figure;
-}
-figcaption:not(.no-marker)::before {
-    content: "Figure " counter(figure) " ";
-}
-</style>
-<style>/* Boilerplate: style-dfn-panel */
-:root {
-    --dfnpanel-bg: #ddd;
-    --dfnpanel-text: var(--text);
-    --dfnpanel-target-bg: #ffc;
-    --dfnpanel-target-outline: orange;
-}
-@media (prefers-color-scheme: dark) {
-    :root {
-        --dfnpanel-bg: #222;
-        --dfnpanel-text: var(--text);
-        --dfnpanel-target-bg: #333;
-        --dfnpanel-target-outline: silver;
-    }
-}
-.dfn-panel {
-    position: absolute;
-    z-index: 35;
-    width: 20em;
-    width: 300px;
-    height: auto;
-    max-height: 500px;
-    overflow: auto;
-    padding: 0.5em 0.75em;
-    font: small Helvetica Neue, sans-serif, Droid Sans Fallback;
-    background: var(--dfnpanel-bg);
-    color: var(--dfnpanel-text);
-    border: outset 0.2em;
-    white-space: normal; /* in case it's moved into a pre */
-}
-.dfn-panel:not(.on) { display: none; }
-.dfn-panel * { margin: 0; padding: 0; text-indent: 0; }
-.dfn-panel > b { display: block; }
-.dfn-panel a { color: var(--dfnpanel-text); }
-.dfn-panel a:not(:hover) { text-decoration: none !important; border-bottom: none !important; }
-.dfn-panel a:focus {
-    outline: 5px auto Highlight;
-    outline: 5px auto -webkit-focus-ring-color;
-}
-.dfn-panel > b + b { margin-top: 0.25em; }
-.dfn-panel ul { padding: 0 0 0 1em; list-style: none; }
-.dfn-panel li a {
-    max-width: calc(300px - 1.5em - 1em);
-    overflow: hidden;
-    text-overflow: ellipsis;
-}
-
-.dfn-panel.activated {
-    display: inline-block;
-    position: fixed;
-    left: 8px;
-    bottom: 2em;
-    margin: 0 auto;
-    max-width: calc(100vw - 1.5em - .4em - .5em);
-    max-height: 30vh;
-    transition: left 1s ease-out, bottom 1s ease-out;
-}
-
-.dfn-panel .link-item:hover {
-    text-decoration: underline;
-}
-.dfn-panel .link-item .copy-icon {
-    opacity: 0;
-}
-.dfn-panel .link-item:hover .copy-icon,
-.dfn-panel .link-item .copy-icon:focus {
-    opacity: 1;
-}
-
-.dfn-panel .copy-icon {
-    display: inline-block;
-    margin-right: 0.5em;
-    width: 0.85em;
-    height: 1em;
-    border-radius: 3px;
-    background-color: #ccc;
-    cursor: pointer;
-}
-
-.dfn-panel .copy-icon .icon {
-    width: 100%;
-    height: 100%;
-    background-color: #fff;
-    display: flex;
-    justify-content: center;
-    align-items: center;
-    position: relative;
-}
-
-.dfn-panel .copy-icon .icon::before {
-    content: "";
-    position: absolute;
-    top: 0;
-    left: 0;
-    width: 100%;
-    height: 100%;
-    border: 1px solid black;
-    background-color: #ccc;
-    opacity: 0.25;
-    transform: translate(3px, -3px);
-}
-
-.dfn-panel .copy-icon:active .icon::before {
-    opacity: 1;
-}
-
-.dfn-paneled[role="button"] { cursor: help; }
-
-.highlighted {
-    animation: target-fade 3s;
-}
-
-@keyframes target-fade {
-    from {
-        background-color: var(--dfnpanel-target-bg);
-        outline: 5px solid var(--dfnpanel-target-outline);
-    }
-    to {
-        color: var(--a-normal-text);
-        background-color: transparent;
-        outline: transparent;
-    }
-}
-</style>
-<style>/* Boilerplate: style-idl-highlighting */
-pre.idl.highlight {
-    background: var(--borderedblock-bg, var(--def-bg));
-}
-</style>
-<style>/* Boilerplate: style-issues */
-a[href].issue-return {
-    float: right;
-    float: inline-end;
-    color: var(--issueheading-text);
-    font-weight: bold;
-    text-decoration: none;
-}
-</style>
-<style>/* Boilerplate: style-md-lists */
-/* This is a weird hack for me not yet following the commonmark spec
-   regarding paragraph and lists. */
-[data-md] > :first-child {
-    margin-top: 0;
-}
-[data-md] > :last-child {
-    margin-bottom: 0;
-}
-</style>
-<style>/* Boilerplate: style-mdn-anno */
-:root {
-	--mdn-bg: #EEE;
-	--mdn-shadow: #999;
-	--mdn-nosupport-text: #ccc;
-	--mdn-pass: green;
-	--mdn-fail: red;
-}
-@media (prefers-color-scheme: dark) {
-	:root {
-		--mdn-bg: #222;
-		--mdn-shadow: #444;
-		--mdn-nosupport-text: #666;
-		--mdn-pass: #690;
-		--mdn-fail: #d22;
-	}
-}
-.mdn-anno {
-	background: var(--mdn-bg, #EEE);
-	border-radius: .25em;
-	box-shadow: 0 0 3px var(--mdn-shadow, #999);
-	color: var(--text, black);
-	font: 1em sans-serif;
-	hyphens: none;
-	max-width: min-content;
-	overflow: hidden;
-	padding: 0.2em;
-	position: absolute;
-	right: 0.3em;
-	top: auto;
-	white-space: nowrap;
-	word-wrap: normal;
-	z-index: 8;
-}
-.mdn-anno.unpositioned {
-	display: none;
-}
-.mdn-anno.overlapping-main {
-	opacity: .2;
-	transition: opacity .1s;
-}
-.mdn-anno[open] {
-	opacity: 1;
-	z-index: 9;
-	min-width: 9em;
-}
-.mdn-anno:hover {
-	opacity: 1;
-	outline: var(--text, black) 1px solid;
-}
-.mdn-anno > summary {
-	font-weight: normal;
-	text-align: right;
-	cursor: pointer;
-	display: block;
-}
-.mdn-anno > summary > .less-than-two-engines-flag {
-	color: var(--mdn-fail);
-	padding-right: 2px;
-}
-.mdn-anno > summary > .all-engines-flag {
-	color: var(--mdn-pass);
-	padding-right: 2px;
-}
-.mdn-anno > summary > span {
-	color: #fff;
-	background-color: #000;
-	font-weight: normal;
-	font-family: zillaslab, Palatino, "Palatino Linotype", serif;
-	padding: 2px 3px 0px 3px;
-	line-height: 1.3em;
-	vertical-align: top;
-}
-.mdn-anno > .feature {
-	margin-top: 20px;
-}
-.mdn-anno > .feature:not(:first-of-type) {
-	border-top: 1px solid #999;
-	margin-top: 6px;
-	padding-top: 2px;
-}
-.mdn-anno > .feature > .less-than-two-engines-text {
-	color: var(--mdn-fail);
-}
-.mdn-anno > .feature > .all-engines-text {
-	color: var(--mdn-pass);
-}
-.mdn-anno > .feature > p {
-	font-size: .75em;
-	margin-top: 6px;
-	margin-bottom: 0;
-}
-.mdn-anno > .feature > p + p {
-	margin-top: 3px;
-}
-.mdn-anno > .feature > .support {
-	display: block;
-	font-size: 0.6em;
-	margin: 0;
-	padding: 0;
-	margin-top: 2px;
-}
-.mdn-anno > .feature > .support + div {
-	padding-top: 0.5em;
-}
-.mdn-anno > .feature > .support > hr {
-	display: block;
-	border: none;
-	border-top: 1px dotted #999;
-	padding: 3px 0px 0px 0px;
-	margin: 2px 3px 0px 3px;
-}
-.mdn-anno > .feature > .support > hr::before {
-	content: "";
-}
-.mdn-anno > .feature > .support > span {
-	padding: 0.2em 0;
-	display: block;
-	display: table;
-}
-.mdn-anno > .feature > .support > span.no {
-	color: var(--mdn-nosupport-text);
-	filter: grayscale(100%);
-}
-.mdn-anno > .feature > .support > span.no::before {
-	opacity: 0.5;
-}
-.mdn-anno > .feature > .support > span:first-of-type {
-	padding-top: 0.5em;
-}
-.mdn-anno > .feature > .support > span > span {
-	padding: 0 0.5em;
-	display: table-cell;
-}
-.mdn-anno > .feature > .support > span > span:first-child {
-	width: 100%;
-}
-.mdn-anno > .feature > .support > span > span:last-child {
-	width: 100%;
-	white-space: pre;
-	padding: 0;
-}
-.mdn-anno > .feature > .support > span::before {
-	content: ' ';
-	display: table-cell;
-	min-width: 1.5em;
-	height: 1.5em;
-	background: no-repeat center center;
-	background-size: contain;
-	text-align: right;
-	font-size: 0.75em;
-	font-weight: bold;
-}
-.mdn-anno > .feature > .support > .chrome_android::before {
-	background-image: url(https://resources.whatwg.org/browser-logos/chrome.svg);
-}
-.mdn-anno > .feature > .support > .firefox_android::before {
-	background-image: url(https://resources.whatwg.org/browser-logos/firefox.png);
-}
-.mdn-anno > .feature > .support > .chrome::before {
-	background-image: url(https://resources.whatwg.org/browser-logos/chrome.svg);
-}
-.mdn-anno > .feature > .support > .edge_blink::before {
-	background-image: url(https://resources.whatwg.org/browser-logos/edge.svg);
-}
-.mdn-anno > .feature > .support > .edge::before {
-	background-image: url(https://resources.whatwg.org/browser-logos/edge_legacy.svg);
-}
-.mdn-anno > .feature > .support > .firefox::before {
-	background-image: url(https://resources.whatwg.org/browser-logos/firefox.png);
-}
-.mdn-anno > .feature > .support > .ie::before {
-	background-image: url(https://resources.whatwg.org/browser-logos/ie.png);
-}
-.mdn-anno > .feature > .support > .safari_ios::before {
-	background-image: url(https://resources.whatwg.org/browser-logos/safari-ios.svg);
-}
-.mdn-anno > .feature > .support > .nodejs::before {
-	background-image: url(https://nodejs.org/static/images/favicons/favicon.ico);
-}
-.mdn-anno > .feature > .support > .opera_android::before {
-	background-image: url(https://resources.whatwg.org/browser-logos/opera.svg);
-}
-.mdn-anno > .feature > .support > .opera::before {
-	background-image: url(https://resources.whatwg.org/browser-logos/opera.svg);
-}
-.mdn-anno > .feature > .support > .safari::before {
-	background-image: url(https://resources.whatwg.org/browser-logos/safari.png);
-}
-.mdn-anno > .feature > .support > .samsunginternet_android::before {
-	background-image: url(https://resources.whatwg.org/browser-logos/samsung.svg);
-}
-.mdn-anno > .feature > .support > .webview_android::before {
-	background-image: url(https://resources.whatwg.org/browser-logos/android-webview.png);
-}
-.name-slug-mismatch {
-	color: red;
-}
-.caniuse-status:hover {
-	z-index: 9;
-}
-/* dt, li, .issue, .note, and .example are "position: relative", so to put annotation at right margin, must move to right of containing block */;
-.h-entry:not(.status-LS) dt > .mdn-anno, .h-entry:not(.status-LS) li > .mdn-anno, .h-entry:not(.status-LS) .issue > .mdn-anno, .h-entry:not(.status-LS) .note > .mdn-anno, .h-entry:not(.status-LS) .example > .mdn-anno {
-	right: -6.7em;
-}
-.h-entry p + .mdn-anno {
-	margin-top: 0;
-}
- h2 + .mdn-anno.after {
-	margin: -48px 0 0 0;
-}
- h3 + .mdn-anno.after {
-	margin: -46px 0 0 0;
-}
- h4 + .mdn-anno.after {
-	margin: -42px 0 0 0;
-}
- h5 + .mdn-anno.after {
-	margin: -40px 0 0 0;
-}
- h6 + .mdn-anno.after {
-	margin: -40px 0 0 0;
-}
-</style>
-<style>/* Boilerplate: style-ref-hints */
-:root {
-    --ref-hint-bg: #ddd;
-    --ref-hint-text: var(--text);
-}
-@media (prefers-color-scheme: dark) {
-    :root {
-        --ref-hint-bg: #222;
-        --ref-hint-text: var(--text);
-    }
-}
-
-.ref-hint {
-    display: inline-block;
-    position: absolute;
-    z-index: 35;
-    width: 20em;
-    width: 300px;
-    height: auto;
-    max-height: 500px;
-    overflow: auto;
-    padding: 0.5em 0.5em;
-    font: small Helvetica Neue, sans-serif, Droid Sans Fallback;
-    background: var(--ref-hint-bg);
-    color: var(--ref-hint-text);
-    border: outset 0.2em;
-    white-space: normal; /* in case it's moved into a pre */
-}
-
-.ref-hint * { margin: 0; padding: 0; text-indent: 0; }
-
-.ref-hint ul { padding: 0 0 0 1em; list-style: none; }
-</style>
-<style>/* Boilerplate: style-selflinks */
-:root {
-    --selflink-text: white;
-    --selflink-bg: gray;
-    --selflink-hover-text: black;
-}
-.heading, .issue, .note, .example, li, dt {
-    position: relative;
-}
-a.self-link {
-    position: absolute;
-    top: 0;
-    left: calc(-1 * (3.5rem - 26px));
-    width: calc(3.5rem - 26px);
-    height: 2em;
-    text-align: center;
-    border: none;
-    transition: opacity .2s;
-    opacity: .5;
-}
-a.self-link:hover {
-    opacity: 1;
-}
-.heading > a.self-link {
-    font-size: 83%;
-}
-.example > a.self-link,
-.note > a.self-link,
-.issue > a.self-link {
-    /* These blocks are overflow:auto, so positioning outside
-       doesn't work. */
-    left: auto;
-    right: 0;
-}
-li > a.self-link {
-    left: calc(-1 * (3.5rem - 26px) - 2em);
-}
-dfn > a.self-link {
-    top: auto;
-    left: auto;
-    opacity: 0;
-    width: 1.5em;
-    height: 1.5em;
-    background: var(--selflink-bg);
-    color: var(--selflink-text);
-    font-style: normal;
-    transition: opacity .2s, background-color .2s, color .2s;
-}
-dfn:hover > a.self-link {
-    opacity: 1;
-}
-dfn > a.self-link:hover {
-    color: var(--selflink-hover-text);
-}
-
-a.self-link::before            { content: "¶"; }
-.heading > a.self-link::before { content: "§"; }
-dfn > a.self-link::before      { content: "#"; }
-</style>
-<style>/* Boilerplate: style-syntax-highlighting */
-code.highlight { padding: .1em; border-radius: .3em; }
-pre.highlight, pre > code.highlight { display: block; padding: 1em; margin: .5em 0; overflow: auto; border-radius: 0; }
-
-.highlight:not(.idl) { background: rgba(0, 0, 0, .03); }
-c-[a] { color: #990055 } /* Keyword.Declaration */
-c-[b] { color: #990055 } /* Keyword.Type */
-c-[c] { color: #708090 } /* Comment */
-c-[d] { color: #708090 } /* Comment.Multiline */
-c-[e] { color: #0077aa } /* Name.Attribute */
-c-[f] { color: #669900 } /* Name.Tag */
-c-[g] { color: #222222 } /* Name.Variable */
-c-[k] { color: #990055 } /* Keyword */
-c-[l] { color: #000000 } /* Literal */
-c-[m] { color: #000000 } /* Literal.Number */
-c-[n] { color: #0077aa } /* Name */
-c-[o] { color: #999999 } /* Operator */
-c-[p] { color: #999999 } /* Punctuation */
-c-[s] { color: #a67f59 } /* Literal.String */
-c-[t] { color: #a67f59 } /* Literal.String.Single */
-c-[u] { color: #a67f59 } /* Literal.String.Double */
-c-[cp] { color: #708090 } /* Comment.Preproc */
-c-[c1] { color: #708090 } /* Comment.Single */
-c-[cs] { color: #708090 } /* Comment.Special */
-c-[kc] { color: #990055 } /* Keyword.Constant */
-c-[kn] { color: #990055 } /* Keyword.Namespace */
-c-[kp] { color: #990055 } /* Keyword.Pseudo */
-c-[kr] { color: #990055 } /* Keyword.Reserved */
-c-[ld] { color: #000000 } /* Literal.Date */
-c-[nc] { color: #0077aa } /* Name.Class */
-c-[no] { color: #0077aa } /* Name.Constant */
-c-[nd] { color: #0077aa } /* Name.Decorator */
-c-[ni] { color: #0077aa } /* Name.Entity */
-c-[ne] { color: #0077aa } /* Name.Exception */
-c-[nf] { color: #0077aa } /* Name.Function */
-c-[nl] { color: #0077aa } /* Name.Label */
-c-[nn] { color: #0077aa } /* Name.Namespace */
-c-[py] { color: #0077aa } /* Name.Property */
-c-[ow] { color: #999999 } /* Operator.Word */
-c-[mb] { color: #000000 } /* Literal.Number.Bin */
-c-[mf] { color: #000000 } /* Literal.Number.Float */
-c-[mh] { color: #000000 } /* Literal.Number.Hex */
-c-[mi] { color: #000000 } /* Literal.Number.Integer */
-c-[mo] { color: #000000 } /* Literal.Number.Oct */
-c-[sb] { color: #a67f59 } /* Literal.String.Backtick */
-c-[sc] { color: #a67f59 } /* Literal.String.Char */
-c-[sd] { color: #a67f59 } /* Literal.String.Doc */
-c-[se] { color: #a67f59 } /* Literal.String.Escape */
-c-[sh] { color: #a67f59 } /* Literal.String.Heredoc */
-c-[si] { color: #a67f59 } /* Literal.String.Interpol */
-c-[sx] { color: #a67f59 } /* Literal.String.Other */
-c-[sr] { color: #a67f59 } /* Literal.String.Regex */
-c-[ss] { color: #a67f59 } /* Literal.String.Symbol */
-c-[vc] { color: #0077aa } /* Name.Variable.Class */
-c-[vg] { color: #0077aa } /* Name.Variable.Global */
-c-[vi] { color: #0077aa } /* Name.Variable.Instance */
-c-[il] { color: #000000 } /* Literal.Number.Integer.Long */
-
-@media (prefers-color-scheme: dark) {
-    .highlight:not(.idl) { background: rgba(255, 255, 255, .05); }
-
-    c-[a] { color: #d33682 } /* Keyword.Declaration */
-    c-[b] { color: #d33682 } /* Keyword.Type */
-    c-[c] { color: #2aa198 } /* Comment */
-    c-[d] { color: #2aa198 } /* Comment.Multiline */
-    c-[e] { color: #268bd2 } /* Name.Attribute */
-    c-[f] { color: #b58900 } /* Name.Tag */
-    c-[g] { color: #cb4b16 } /* Name.Variable */
-    c-[k] { color: #d33682 } /* Keyword */
-    c-[l] { color: #657b83 } /* Literal */
-    c-[m] { color: #657b83 } /* Literal.Number */
-    c-[n] { color: #268bd2 } /* Name */
-    c-[o] { color: #657b83 } /* Operator */
-    c-[p] { color: #657b83 } /* Punctuation */
-    c-[s] { color: #6c71c4 } /* Literal.String */
-    c-[t] { color: #6c71c4 } /* Literal.String.Single */
-    c-[u] { color: #6c71c4 } /* Literal.String.Double */
-    c-[ch] { color: #2aa198 } /* Comment.Hashbang */
-    c-[cp] { color: #2aa198 } /* Comment.Preproc */
-    c-[cpf] { color: #2aa198 } /* Comment.PreprocFile */
-    c-[c1] { color: #2aa198 } /* Comment.Single */
-    c-[cs] { color: #2aa198 } /* Comment.Special */
-    c-[kc] { color: #d33682 } /* Keyword.Constant */
-    c-[kn] { color: #d33682 } /* Keyword.Namespace */
-    c-[kp] { color: #d33682 } /* Keyword.Pseudo */
-    c-[kr] { color: #d33682 } /* Keyword.Reserved */
-    c-[ld] { color: #657b83 } /* Literal.Date */
-    c-[nc] { color: #268bd2 } /* Name.Class */
-    c-[no] { color: #268bd2 } /* Name.Constant */
-    c-[nd] { color: #268bd2 } /* Name.Decorator */
-    c-[ni] { color: #268bd2 } /* Name.Entity */
-    c-[ne] { color: #268bd2 } /* Name.Exception */
-    c-[nf] { color: #268bd2 } /* Name.Function */
-    c-[nl] { color: #268bd2 } /* Name.Label */
-    c-[nn] { color: #268bd2 } /* Name.Namespace */
-    c-[py] { color: #268bd2 } /* Name.Property */
-    c-[ow] { color: #657b83 } /* Operator.Word */
-    c-[mb] { color: #657b83 } /* Literal.Number.Bin */
-    c-[mf] { color: #657b83 } /* Literal.Number.Float */
-    c-[mh] { color: #657b83 } /* Literal.Number.Hex */
-    c-[mi] { color: #657b83 } /* Literal.Number.Integer */
-    c-[mo] { color: #657b83 } /* Literal.Number.Oct */
-    c-[sa] { color: #6c71c4 } /* Literal.String.Affix */
-    c-[sb] { color: #6c71c4 } /* Literal.String.Backtick */
-    c-[sc] { color: #6c71c4 } /* Literal.String.Char */
-    c-[dl] { color: #6c71c4 } /* Literal.String.Delimiter */
-    c-[sd] { color: #6c71c4 } /* Literal.String.Doc */
-    c-[se] { color: #6c71c4 } /* Literal.String.Escape */
-    c-[sh] { color: #6c71c4 } /* Literal.String.Heredoc */
-    c-[si] { color: #6c71c4 } /* Literal.String.Interpol */
-    c-[sx] { color: #6c71c4 } /* Literal.String.Other */
-    c-[sr] { color: #6c71c4 } /* Literal.String.Regex */
-    c-[ss] { color: #6c71c4 } /* Literal.String.Symbol */
-    c-[fm] { color: #268bd2 } /* Name.Function.Magic */
-    c-[vc] { color: #cb4b16 } /* Name.Variable.Class */
-    c-[vg] { color: #cb4b16 } /* Name.Variable.Global */
-    c-[vi] { color: #cb4b16 } /* Name.Variable.Instance */
-    c-[vm] { color: #cb4b16 } /* Name.Variable.Magic */
-    c-[il] { color: #657b83 } /* Literal.Number.Integer.Long */
-}
-</style>
-<style>/* Boilerplate: style-var-click-highlighting */
-/*
-Colors were chosen in Lab using https://nixsensor.com/free-color-converter/
-D50 2deg illuminant, L in [0,100], a and b in [-128, 128]
-0 = lab(85,0,85)
-1 = lab(85,80,30)
-2 = lab(85,-40,40)
-3 = lab(85,-50,0)
-4 = lab(85,5,15)
-5 = lab(85,-10,-50)
-6 = lab(85,35,-15)
-*/
-[data-algorithm] var { cursor: pointer; }
-var[data-var-color="0"] { background-color: #F4D200; box-shadow: 0 0 0 2px #F4D200; }
-var[data-var-color="1"] { background-color: #FF87A2; box-shadow: 0 0 0 2px #FF87A2; }
-var[data-var-color="2"] { background-color: #96E885; box-shadow: 0 0 0 2px #96E885; }
-var[data-var-color="3"] { background-color: #3EEED2; box-shadow: 0 0 0 2px #3EEED2; }
-var[data-var-color="4"] { background-color: #EACFB6; box-shadow: 0 0 0 2px #EACFB6; }
-var[data-var-color="5"] { background-color: #82DDFF; box-shadow: 0 0 0 2px #82DDFF; }
-var[data-var-color="6"] { background-color: #FFBCF2; box-shadow: 0 0 0 2px #FFBCF2; }
-</style>
-  <link href="https://www.w3.org/StyleSheets/TR/2021/W3C-WD" rel="stylesheet">
- <body class="h-entry">
-  <div class="head">
-   <p data-fill-with="logo"><a class="logo" href="https://www.w3.org/"> <img alt="W3C" height="48" src="https://www.w3.org/StyleSheets/TR/2021/logos/W3C" width="72"> </a> </p>
-   <h1>Credential Management Level 1</h1>
-   <p id="w3c-state"><a href="https://www.w3.org/standards/types#WD">W3C Working Draft</a>, <time class="dt-updated" datetime="2024-02-27">27 February 2024</time></p>
-   <details open>
-    <summary>More details about this document</summary>
-    <div data-fill-with="spec-metadata">
-     <dl>
-      <dt>This version:
-      <dd><a class="u-url" href="https://www.w3.org/TR/2024/w3c/WD-credential-management-1-20240227/">https://www.w3.org/TR/2024/w3c/WD-credential-management-1-20240227/</a>
-      <dt>Latest published version:
-      <dd><a href="https://www.w3.org/TR/credential-management-1/">https://www.w3.org/TR/credential-management-1/</a>
-      <dt>Editor's Draft:
-      <dd><a href="https://w3c.github.io/webappsec-credential-management/">https://w3c.github.io/webappsec-credential-management/</a>
-      <dt>Previous Versions:
-      <dd><a href="https://www.w3.org/TR/2016/WD-credential-management-1-20160425/" rel="prev">https://www.w3.org/TR/2016/WD-credential-management-1-20160425/</a>
-      <dd><a href="https://www.w3.org/TR/2019/WD-credential-management-1-20190117/" rel="prev">https://www.w3.org/TR/2019/WD-credential-management-1-20190117/</a>
-      <dt>History:
-      <dd><a class="u-url" href="https://www.w3.org/standards/history/credential-management-1/">https://www.w3.org/standards/history/credential-management-1/</a>
-      <dt>Feedback:
-      <dd><span><a href="mailto:public-webappsec@w3.org?subject=%5Bcredential-management%5D%20YOUR%20TOPIC%20HERE">public-webappsec@w3.org</a> with subject line “<kbd>[credential-management] <i data-lt>… message topic …</i></kbd>” (<a href="https://lists.w3.org/Archives/Public/public-webappsec/" rel="discussion">archives</a>)</span>
-      <dd><a href="https://github.com/w3c/webappsec-credential-management/issues">GitHub</a>
-      <dt class="editor">Editor:
-      <dd class="editor p-author h-card vcard" data-editor-id="116344"><a class="p-name fn u-email email" href="mailto:nsatragno@google.com">Nina Satragno</a> (<span class="p-org org">Google Inc.</span>)
-      <dt class="editor">Former Editors:
-      <dd class="editor p-author h-card vcard" data-editor-id="43843"><a class="p-name fn u-email email" href="mailto:jdhodges@google.com">Jeff Hodges</a> (<span class="p-org org">Google Inc.</span>)
-      <dd class="editor p-author h-card vcard" data-editor-id="56384"><a class="p-name fn u-email email" href="mailto:mkwst@google.com">Mike West</a> (<span class="p-org org">Google Inc.</span>)
-      <dt>Participate:
-      <dd><a href="https://github.com/w3c/webappsec-credential-management/issues/new">File an issue</a> (<a href="https://github.com/w3c/webappsec-credential-management/issues">open issues</a>)
-     </dl>
-    </div>
-   </details>
-   <div data-fill-with="warning"></div>
-   <p class="copyright" data-fill-with="copyright"><a href="https://www.w3.org/policies/#copyright">Copyright</a> © 2024 <a href="https://www.w3.org/">World Wide Web Consortium</a>. <abbr title="World Wide Web Consortium">W3C</abbr><sup>®</sup> <a href="https://www.w3.org/policies/#Legal_Disclaimer">liability</a>, <a href="https://www.w3.org/policies/#W3C_Trademarks">trademark</a> and <a href="https://www.w3.org/copyright/software-license/" rel="license" title="W3C Software and Document License">permissive document license</a> rules apply. </p>
-   <hr title="Separator for header">
-  </div>
-  <div class="p-summary" data-fill-with="abstract">
-   <h2 class="no-num no-toc no-ref heading settled" id="abstract"><span class="content">Abstract</span></h2>
-   <p>This specification describes an imperative API enabling a website to request a
-user’s credentials from a user agent, and to help the user agent correctly
-store user credentials for future use.</p>
-  </div>
-  <h2 class="no-num no-toc no-ref heading settled" id="sotd"><span class="content">Status of this document</span></h2>
-  <div data-fill-with="status">
-   <p> <em>This section describes the status of this document at the time of
-  its publication. A list of
-  current W3C publications and the latest revision of this technical report
-  can be found in the <a href="https://www.w3.org/TR/">W3C technical reports
-  index at https://www.w3.org/TR/.</a></em> </p>
-   <p> This document was published by the <a href="https://www.w3.org/groups/wg/webappsec">Web Application Security Working Group</a> as a Working Draft using the <a href="https://www.w3.org/2023/Process-20231103/#recs-and-notes">Recommendation
-      track</a>. This document is intended to become a W3C Recommendation. </p>
-   <p> The (<a href="https://lists.w3.org/Archives/Public/public-webappsec/">archived</a>) public mailing list <a href="mailto:public-webappsec@w3.org?Subject=%5Bcredential-management%5D%20PUT%20SUBJECT%20HERE">public-webappsec@w3.org</a> (see <a href="https://www.w3.org/Mail/Request">instructions</a>)
-	is preferred for discussion of this specification.
-	When sending e-mail,
-	please put the text “credential-management” in the subject,
-	preferably like this:
-	“[credential-management] <em>…summary of comment…</em>” </p>
-   <p> Publication as a Working Draft does not imply endorsement by <abbr title="World Wide Web Consortium">W3C</abbr> and its Members. This is a draft document and may be updated, replaced or
-  obsoleted by other documents at any time. It is inappropriate to cite this
-  document as other than work in progress. </p>
-   <p> This document was produced by the <a href="https://www.w3.org/groups/wg/webappsec">Web Application Security Working Group</a>. </p>
-   <p> This document was produced by a group operating under
-	the <a href="https://www.w3.org/Consortium/Patent-Policy/">W3C Patent Policy</a>.
-	W3C maintains a <a href="https://www.w3.org/groups/wg/webappsec/ipr" rel="disclosure">public list of any patent disclosures</a> made in connection with the deliverables of the group;
-	that page also includes instructions for disclosing a patent.
-	An individual who has actual knowledge of a patent which the individual believes contains <a href="https://www.w3.org/Consortium/Patent-Policy/#def-essential">Essential Claim(s)</a> must disclose the information in accordance with <a href="https://www.w3.org/Consortium/Patent-Policy/#sec-Disclosure">section 6 of the W3C Patent Policy</a>. </p>
-   <p> This document is governed by the <a href="https://www.w3.org/2023/Process-20231103/" id="w3c_process_revision">03 November 2023 W3C Process Document</a>. </p>
-   <p></p>
-  </div>
-  <div data-fill-with="at-risk"></div>
-  <nav data-fill-with="table-of-contents" id="toc">
-   <h2 class="no-num no-toc no-ref" id="contents">Table of Contents</h2>
-   <ol class="toc" role="directory">
-    <li>
-     <a href="#introduction"><span class="secno">1</span> <span class="content">Introduction</span></a>
-     <ol class="toc">
-      <li><a href="#use-cases"><span class="secno">1.1</span> <span class="content">Use Cases</span></a>
-     </ol>
-    <li>
-     <a href="#core"><span class="secno">2</span> <span class="content">Core API</span></a>
-     <ol class="toc">
-      <li>
-       <a href="#core-infrastructure"><span class="secno">2.1</span> <span class="content">Infrastructure</span></a>
-       <ol class="toc">
-        <li>
-         <a href="#sctn-infra-algorithms"><span class="secno">2.1.1</span> <span class="content">Infrastructure Algorithms</span></a>
-         <ol class="toc">
-          <li><a href="#algorithm-same-origin-with-ancestors"><span class="secno">2.1.1.1</span> <span class="content">Same-Origin with its Ancestors</span></a>
-         </ol>
-        <li>
-         <a href="#sctn-cred-type-registry"><span class="secno">2.1.2</span> <span class="content">Credential Type Registry</span></a>
-         <ol class="toc">
-          <li><a href="#sctn-registry-requirements"><span class="secno">2.1.2.1</span> <span class="content">Registration Entry Requirements and Update Process</span></a>
-         </ol>
-       </ol>
-      <li>
-       <a href="#the-credential-interface"><span class="secno">2.2</span> <span class="content">The <code>Credential</code> Interface</span></a>
-       <ol class="toc">
-        <li>
-         <a href="#credential-internal-methods"><span class="secno">2.2.1</span> <span class="content"><code>Credential</code> Internal Methods</span></a>
-         <ol class="toc">
-          <li><a href="#algorithm-collect-creds"><span class="secno">2.2.1.1</span> <span class="content"><code>[[CollectFromCredentialStore]]</code> internal method</span></a>
-          <li><a href="#algorithm-discover-creds"><span class="secno">2.2.1.2</span> <span class="content"><code>[[DiscoverFromExternalSource]]</code> internal method</span></a>
-          <li><a href="#algorithm-store-cred"><span class="secno">2.2.1.3</span> <span class="content"><code>[[Store]]</code> internal method</span></a>
-          <li><a href="#algorithm-create-cred"><span class="secno">2.2.1.4</span> <span class="content"><code>[[Create]]</code> internal method</span></a>
-         </ol>
-        <li><a href="#credentialuserdata-mixin"><span class="secno">2.2.2</span> <span class="content"><code>CredentialUserData</code> Mixin</span></a>
-       </ol>
-      <li>
-       <a href="#framework-credential-management"><span class="secno">2.3</span> <span class="content"><code>navigator.credentials</code></span></a>
-       <ol class="toc">
-        <li><a href="#credentialrequestoptions-dictionary"><span class="secno">2.3.1</span> <span class="content">The <code>CredentialRequestOptions</code> Dictionary</span></a>
-        <li>
-         <a href="#mediation-requirements"><span class="secno">2.3.2</span> <span class="content">Mediation Requirements</span></a>
-         <ol class="toc">
-          <li><a href="#mediation-examples"><span class="secno">2.3.2.1</span> <span class="content">Examples</span></a>
-         </ol>
-       </ol>
-      <li><a href="#credentialcreationoptions-dictionary"><span class="secno">2.4</span> <span class="content">The <code>CredentialCreationOptions</code> Dictionary</span></a>
-      <li>
-       <a href="#algorithms"><span class="secno">2.5</span> <span class="content">Algorithms</span></a>
-       <ol class="toc">
-        <li><a href="#algorithm-request"><span class="secno">2.5.1</span> <span class="content">Request a <code>Credential</code></span></a>
-        <li><a href="#algorithm-collect-known"><span class="secno">2.5.2</span> <span class="content">Collect <code>Credential</code>s from the credential store</span></a>
-        <li><a href="#algorithm-store"><span class="secno">2.5.3</span> <span class="content">Store a <code>Credential</code></span></a>
-        <li><a href="#algorithm-create"><span class="secno">2.5.4</span> <span class="content">Create a <code>Credential</code></span></a>
-        <li><a href="#algorithm-prevent-silent-access"><span class="secno">2.5.5</span> <span class="content">Prevent Silent Access</span></a>
-       </ol>
-     </ol>
-    <li>
-     <a href="#passwords"><span class="secno">3</span> <span class="content">Password Credentials</span></a>
-     <ol class="toc">
-      <li>
-       <a href="#password-examples"><span class="secno">3.1</span> <span class="content">Examples</span></a>
-       <ol class="toc">
-        <li><a href="#examples-password-signin"><span class="secno">3.1.1</span> <span class="content">Password-based Sign-in</span></a>
-        <li><a href="#examples-post-signin"><span class="secno">3.1.2</span> <span class="content">Post-sign-in Confirmation</span></a>
-        <li><a href="#examples-change-password"><span class="secno">3.1.3</span> <span class="content">Change Password</span></a>
-       </ol>
-      <li><a href="#passwordcredential-interface"><span class="secno">3.2</span> <span class="content">The <code>PasswordCredential</code> Interface</span></a>
-      <li>
-       <a href="#passwordcredential-algorithms"><span class="secno">3.3</span> <span class="content">Algorithms</span></a>
-       <ol class="toc">
-        <li><a href="#collectfromcredentialstore-passwordcredential"><span class="secno">3.3.1</span> <span class="content"> <code>PasswordCredential</code>’s <code>[[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)</code> </span></a>
-        <li><a href="#create-passwordcredential"><span class="secno">3.3.2</span> <span class="content"> <code>PasswordCredential</code>’s <code>[[Create]](origin, options, sameOriginWithAncestors)</code> </span></a>
-        <li><a href="#store-passwordcredential"><span class="secno">3.3.3</span> <span class="content"> <code>PasswordCredential</code>’s <code>[[Store]](credential, sameOriginWithAncestors)</code> </span></a>
-        <li><a href="#construct-passwordcredential-form"><span class="secno">3.3.4</span> <span class="content"> Create a <code>PasswordCredential</code> from an <code>HTMLFormElement</code> </span></a>
-        <li><a href="#construct-passwordcredential-data"><span class="secno">3.3.5</span> <span class="content"> Create a <code>PasswordCredential</code> from <code>PasswordCredentialData</code> </span></a>
-        <li><a href="#passwordcredential-matching"><span class="secno">3.3.6</span> <span class="content"> <code>CredentialRequestOptions</code> Matching for <code>PasswordCredential</code> </span></a>
-       </ol>
-     </ol>
-    <li>
-     <a href="#federated"><span class="secno">4</span> <span class="content">Federated Credentials</span></a>
-     <ol class="toc">
-      <li>
-       <a href="#federatedcredential-interface"><span class="secno">4.1</span> <span class="content">The <code>FederatedCredential</code> Interface</span></a>
-       <ol class="toc">
-        <li><a href="#provider-identification"><span class="secno">4.1.1</span> <span class="content">Identifying Providers</span></a>
-       </ol>
-      <li>
-       <a href="#federatedcredential-algorithms"><span class="secno">4.2</span> <span class="content">Algorithms</span></a>
-       <ol class="toc">
-        <li><a href="#collectfromcredentialstore-federatedcredential"><span class="secno">4.2.1</span> <span class="content"> <code>FederatedCredential</code>’s <code>[[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)</code> </span></a>
-        <li><a href="#create-federatedcredential"><span class="secno">4.2.2</span> <span class="content"> <code>FederatedCredential</code>’s <code>[[Create]](origin, options, sameOriginWithAncestors)</code> </span></a>
-        <li><a href="#store-federatedcredential"><span class="secno">4.2.3</span> <span class="content"> <code>FederatedCredential</code>’s <code>[[Store]](credential, sameOriginWithAncestors)</code> </span></a>
-        <li><a href="#construct-federatedcredential-data"><span class="secno">4.2.4</span> <span class="content"> Create a <code>FederatedCredential</code> from <code>FederatedCredentialInit</code> </span></a>
-       </ol>
-     </ol>
-    <li>
-     <a href="#user-mediation"><span class="secno">5</span> <span class="content">User Mediation</span></a>
-     <ol class="toc">
-      <li><a href="#user-mediated-storage"><span class="secno">5.1</span> <span class="content">Storing and Updating Credentials</span></a>
-      <li><a href="#user-mediation-requirement"><span class="secno">5.2</span> <span class="content">Requiring User Mediation</span></a>
-      <li><a href="#user-mediated-selection"><span class="secno">5.3</span> <span class="content">Credential Selection</span></a>
-     </ol>
-    <li>
-     <a href="#security-considerations"><span class="secno">6</span> <span class="content">Security Considerations</span></a>
-     <ol class="toc">
-      <li><a href="#security-credential-access"><span class="secno">6.1</span> <span class="content">Cross-domain credential access</span></a>
-      <li><a href="#security-leakage"><span class="secno">6.2</span> <span class="content">Credential Leakage</span></a>
-      <li><a href="#insecure-sites"><span class="secno">6.3</span> <span class="content">Insecure Sites</span></a>
-      <li><a href="#security-origin-confusion"><span class="secno">6.4</span> <span class="content">Origin Confusion</span></a>
-      <li><a href="#security-signout"><span class="secno">6.5</span> <span class="content">Signing-Out</span></a>
-     </ol>
-    <li>
-     <a href="#privacy-considerations"><span class="secno">7</span> <span class="content">Privacy Considerations</span></a>
-     <ol class="toc">
-      <li><a href="#security-timing"><span class="secno">7.1</span> <span class="content">Timing Attacks</span></a>
-      <li><a href="#security-chooser-leakage"><span class="secno">7.2</span> <span class="content">Chooser Leakage</span></a>
-      <li><a href="#security-local-data"><span class="secno">7.3</span> <span class="content">Locally Stored Data</span></a>
-     </ol>
-    <li>
-     <a href="#implementation"><span class="secno">8</span> <span class="content">Implementation Considerations</span></a>
-     <ol class="toc">
-      <li><a href="#implementation-authors"><span class="secno">8.1</span> <span class="content">Website Authors</span></a>
-      <li><a href="#implementation-extension"><span class="secno">8.2</span> <span class="content">Extension Points</span></a>
-      <li><a href="#browser-extensions"><span class="secno">8.3</span> <span class="content">Browser Extensions</span></a>
-     </ol>
-    <li><a href="#teh-futur"><span class="secno">9</span> <span class="content">Future Work</span></a>
-    <li>
-     <a href="#index"><span class="secno"></span> <span class="content">Index</span></a>
-     <ol class="toc">
-      <li><a href="#index-defined-here"><span class="secno"></span> <span class="content">Terms defined by this specification</span></a>
-      <li><a href="#index-defined-elsewhere"><span class="secno"></span> <span class="content">Terms defined by reference</span></a>
-     </ol>
-    <li>
-     <a href="#references"><span class="secno"></span> <span class="content">References</span></a>
-     <ol class="toc">
-      <li><a href="#normative"><span class="secno"></span> <span class="content">Normative References</span></a>
-      <li><a href="#informative"><span class="secno"></span> <span class="content">Informative References</span></a>
-     </ol>
-    <li><a href="#idl-index"><span class="secno"></span> <span class="content">IDL Index</span></a>
-    <li><a href="#issues-index"><span class="secno"></span> <span class="content">Issues Index</span></a>
-   </ol>
-  </nav>
-  <main>
-   <section>
-    <h2 class="heading settled" data-level="1" id="introduction"><span class="secno">1. </span><span class="content">Introduction</span><a class="self-link" href="#introduction"></a></h2>
-    <p><em>This section is not normative.</em></p>
-    <p>Signing into websites is more difficult than it should be. The user agent is in a unique position
-  to improve the experience in a number of ways, and most modern user agents have recognized this by
-  providing some measure of <i>credential management</i> natively in the browser. For example, users can save usernames
-  and passwords for websites; those <a data-link-type="dfn" href="#concept-credential" id="ref-for-concept-credential">credentials</a> are later autofilled into sign-in forms, albeit with
-  varying degrees of success.</p>
-    <p>The <code><a data-link-type="element-sub" href="https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete" id="ref-for-attr-fe-autocomplete">autocomplete</a></code> attribute offers a declarative mechanism by which websites can work
-  with user agents to improve the latter’s ability to detect and fill sign-in forms by marking
-  specific fields as "username" or "password", and user agents implement a wide variety of detection
-  heuristics to work with websites which haven’t taken the time to provide this detail in markup.</p>
-    <p>While this combination of heuristic and declarative detection works relatively well, the status
-  quo leaves some large gaps where detection is problematic. Sites with uncommon sign-in
-  mechanisms (submitting credentials via <code class="idl"><a data-link-type="idl" href="https://xhr.spec.whatwg.org/#xmlhttprequest" id="ref-for-xmlhttprequest">XMLHttpRequest</a></code> <a data-link-type="biblio" href="#biblio-xmlhttprequest" title="XMLHttpRequest Level 1">[XMLHTTPREQUEST]</a>, for instance) are
-  difficult to reliably detect, as is the increasingly common case in which users wish to
-  authenticate themselves using a federated identity provider. Allowing websites to more directly
-  interact with the user agent’s credential manager would allow the credential manager to be more
-  accurate on the one hand, and to assist users with federated sign-in on the other.</p>
-    <p>These use cases are explored in more detail in <a href="#use-cases">§ 1.1 Use Cases</a> and in <a href="https://w3c.github.io/webappsec/usecases/credentialmanagement/">Credential Management:
-  Use Cases and Requirements</a>; this specification attempts to address many of the requirements
-  that document outlines by defining a Credential Manager API which a website can use to request <a data-link-type="dfn" href="#concept-credential" id="ref-for-concept-credential①">credentials</a> for a user, and to ask the user agent to persist credentials when a user signs in
-  successfully.</p>
-    <p class="note" role="note"><span class="marker">Note:</span> The API defined here is intentionally small and simple: it does not intend to provide
-  authentication in and of itself, but is limited to providing an interface to the existing
-  credential managers implemented by existing user agents. That functionality is valuable <em>right now</em>, without significant effort on the part of either vendors or authors. There’s
-  certainly quite a bit more which could be done, of course. See <a href="#teh-futur">§ 9 Future Work</a> for some thoughts
-  we’ve punted for now, but which could be explored in future iterations of this API.</p>
-    <h3 class="heading settled" data-level="1.1" id="use-cases"><span class="secno">1.1. </span><span class="content">Use Cases</span><a class="self-link" href="#use-cases"></a></h3>
-    <p>Modern user agents generally offer users the capability to save passwords when signing into a
-  website, and likewise offer the capability to fill those passwords into sign-in forms fully- or
-  semi-automatically when users return to a website. From the perspective of a website, this
-  behavior is completely invisible: the website doesn’t know that passwords have been stored, and
-  it isn’t notified that passwords have been filled. This is both good and bad. On the one hand, a
-  user agent’s password manager works regardless of whether or not a site cooperates, which is
-  excellent for users. On the other, the password managers' behaviors are a fragile and proprietary
-  hodgepodge of heuristics meant to detect and fill sign-in forms, password change forms, etc.</p>
-    <p>A few problems with the status quo stand out as being particularly noteworthy:</p>
-    <ul>
-     <li data-md>
-      <p>User agents have an incredibly difficult time helping users with
-  federated identity providers. While detecting a username/password
-  form submission is fairly straightforward, detecting sign-in via a
-  third-party is quite difficult to reliably do well. It would be nice
-  if a website could help the user agent understand the intent behind the
-  redirects associated with a typical federated sign-in action.</p>
-     <li data-md>
-      <p>Likewise, user agents struggle to detect more esoteric sign-in
-  mechanisms than simple username/password forms. Authors increasingly
-  asynchronously sign users in via <code class="idl"><a data-link-type="idl" href="https://xhr.spec.whatwg.org/#xmlhttprequest" id="ref-for-xmlhttprequest①">XMLHttpRequest</a></code> or similar
-  mechanisms in order to improve the experience and take more control over
-  the presentation. This is good for users, but tough for user agents to
-  integrate into their password managers. It would be nice if a website
-  could help the user agent make sense of the sign-in mechanism they
-  choose to use.</p>
-     <li data-md>
-      <p>Finally, changing passwords is less well-supported than it could be if
-  the website explicitly informed the user agent that credentials had
-  changed.</p>
-    </ul>
-   </section>
-   <section>
-    <h2 class="heading settled" data-level="2" id="core"><span class="secno">2. </span><span class="content">Core API</span><a class="self-link" href="#core"></a></h2>
-    <p>From a developer’s perspective, a <dfn class="dfn-paneled" data-dfn-type="dfn" data-export id="concept-credential">credential</dfn> is an
-  object which allows a developer to make an authentication decision for a particular action. This
-  section defines a generic and extensible <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential">Credential</a></code> interface which serves as a base class
-  for <a data-link-type="dfn" href="#concept-credential" id="ref-for-concept-credential②">credentials</a> defined in this and other documents, along with a set of APIs
-  hanging off of <code class="idl"><a data-link-type="idl" href="#credentialscontainer" id="ref-for-credentialscontainer">navigator.credentials.*</a></code> which enable developers to
-  obtain them.</p>
-    <p>Various <a data-link-type="dfn" href="#credential-type-registry-credential-type" id="ref-for-credential-type-registry-credential-type">credential types</a> are each represented to JavaScript as an interface which <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-inherit" id="ref-for-dfn-inherit">inherits</a>, either directly or indirectly, from the <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential①">Credential</a></code> interface. This
-  document defines two such interfaces, <code class="idl"><a data-link-type="idl" href="#passwordcredential" id="ref-for-passwordcredential">PasswordCredential</a></code> and <code class="idl"><a data-link-type="idl" href="#federatedcredential" id="ref-for-federatedcredential">FederatedCredential</a></code>. Other
-  specifications, for example <a data-link-type="biblio" href="#biblio-webauthn" title="Web Authentication:An API for accessing Public Key Credentials Level 1">[WEBAUTHN]</a>, define other credential types.</p>
-    <p>A <a data-link-type="dfn" href="#concept-credential" id="ref-for-concept-credential③">credential</a> is <dfn class="dfn-paneled" data-dfn-for="credential" data-dfn-type="dfn" data-export id="credential-effective">effective</dfn> for a particular <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/origin.html#concept-origin" id="ref-for-concept-origin">origin</a> if it
-  is accepted as authentication on that origin. Even if a credential is effective at a particular
-  point in time, the UA can’t assume that the same credential will be effective at any future time,
-  for a couple reasons:</p>
-    <ol>
-     <li data-md>
-      <p>A password credential may stop being effective if the account holder changes their password.</p>
-     <li data-md>
-      <p>A credential made from a token received over SMS is likely to only be effective for a single
- use.</p>
-    </ol>
-    <p>Single-use <a data-link-type="dfn" href="#concept-credential" id="ref-for-concept-credential④">credentials</a> are generated by a <dfn class="dfn-paneled" data-dfn-type="dfn" data-export id="credential-source">credential source</dfn>, which could be
-  a private key, access to a federated account, the ability to receive SMS messages at a particular
-  phone number, or something else. Credential sources are not exposed to Javascript or explicitly
-  represented in this specification. To unify the model, we consider a password to be a credential
-  source on its own, which is simply copied to create password credentials.</p>
-    <p>Even though the UA can’t assume that an effective credential will still be effective if used a
-  second time, or that a credential source that has generated an effective credential will be able
-  to generate a second effective credential in the future, the second is more likely than the first.
-  By recording (with <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-store" id="ref-for-dom-credentialscontainer-store">store()</a></code>) which credentials have been effective in the
-  past, the UA has a better chance of <a href="#user-mediated-selection">offering</a> effective credential
-  sources to the user in the future.</p>
-    <h3 class="heading settled" data-level="2.1" id="core-infrastructure"><span class="secno">2.1. </span><span class="content">Infrastructure</span><a class="self-link" href="#core-infrastructure"></a></h3>
-    <p>User agents MUST internally provide a <dfn class="dfn-paneled" data-dfn-type="dfn" data-export data-lt="credential store" id="concept-credential-store">credential
-  store</dfn>, which is a vendor-specific, opaque storage mechanism to record which <a data-link-type="dfn" href="#concept-credential" id="ref-for-concept-credential⑤">credentials</a> have been <a data-link-type="dfn" href="#credential-effective" id="ref-for-credential-effective">effective</a>. It offers the following capabilities for <a data-link-type="dfn" href="#concept-credential" id="ref-for-concept-credential⑥">credential</a> access and
-  persistence:</p>
-    <ol>
-     <li data-md>
-      <p><dfn class="dfn-paneled" data-dfn-for="credential store" data-dfn-type="abstract-op" data-export id="abstract-opdef-credential-store-store-a-credential">Store a credential</dfn> for later retrieval.
-  This accepts a <a data-link-type="dfn" href="#concept-credential" id="ref-for-concept-credential⑦">credential</a>, and inserts it into the <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store">credential store</a>.</p>
-     <li data-md>
-      <p><dfn class="dfn-paneled" data-dfn-for="credential store" data-dfn-type="abstract-op" data-export id="abstract-opdef-credential-store-retrieve-a-list-of-credentials">Retrieve a list of credentials</dfn>. This
-  accepts an arbitrary filter, and returns a set of <a data-link-type="dfn" href="#concept-credential" id="ref-for-concept-credential⑧">credentials</a> that match the filter.</p>
-     <li data-md>
-      <p><dfn class="dfn-paneled" data-dfn-for="credential store" data-dfn-type="abstract-op" data-export id="abstract-opdef-credential-store-modify-a-credential">Modify a credential</dfn>. This accepts a <a data-link-type="dfn" href="#concept-credential" id="ref-for-concept-credential⑨">credential</a>, and overwrites the state of an existing <a data-link-type="dfn" href="#concept-credential" id="ref-for-concept-credential①⓪">credential</a> in the <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store①">credential store</a>.</p>
-    </ol>
-    <p>Additionally, the <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store②">credential store</a> should maintain a <dfn class="dfn-paneled" data-dfn-for="origin" data-dfn-type="dfn" data-lt="prevent silent access flag" data-noexport id="origin-prevent-silent-access-flag"><code>prevent silent   access</code> flag</dfn> for <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/origin.html#concept-origin" id="ref-for-concept-origin①">origins</a> (which is set to <code>true</code> unless otherwise specified).
-  An origin <dfn class="dfn-paneled" data-dfn-for="origin" data-dfn-type="dfn" data-noexport id="origin-requires-user-mediation">requires user mediation</dfn> if its flag is set to <code>true</code>.</p>
-    <p class="note" role="note"><span class="marker">Note:</span> The importance of user mediation is discussed in more detail in <a href="#user-mediation">§ 5 User Mediation</a>.</p>
-    <p class="note" role="note"><span class="marker">Note:</span> The <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store③">credential store</a> is an internal implementation detail of a user agent’s
-  implementation of the API specified in this document, and is not exposed to the web directly.
-  More capabilities may be specified by other documents in support of specific <a data-link-type="dfn" href="#concept-credential" id="ref-for-concept-credential①①">credential</a> types.</p>
-    <p>This document depends on the Infra Standard for a number of foundational concepts used in its
-  algorithms and prose <a data-link-type="biblio" href="#biblio-infra" title="Infra Standard">[INFRA]</a>.</p>
-    <p>Each <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#environment-settings-object" id="ref-for-environment-settings-object">environment settings object</a> has an associated <dfn class="dfn-paneled" data-dfn-type="dfn" data-lt="active credential types" data-noexport id="active-credential-types">active credential
-  types</dfn>, a <a data-link-type="dfn" href="https://infra.spec.whatwg.org/#ordered-set" id="ref-for-ordered-set">set</a> which is initially empty.</p>
-    <h4 class="heading settled" data-level="2.1.1" id="sctn-infra-algorithms"><span class="secno">2.1.1. </span><span class="content">Infrastructure Algorithms</span><a class="self-link" href="#sctn-infra-algorithms"></a></h4>
-    <h5 class="heading settled algorithm" data-algorithm="Same-Origin with its Ancestors" data-level="2.1.1.1" id="algorithm-same-origin-with-ancestors"><span class="secno">2.1.1.1. </span><span class="content">Same-Origin with its Ancestors</span><a class="self-link" href="#algorithm-same-origin-with-ancestors"></a></h5>
-    <p>An <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#environment-settings-object" id="ref-for-environment-settings-object①">environment settings object</a> (<var>settings</var>) is <dfn class="dfn-paneled" data-dfn-type="dfn" data-lt="same-origin with its ancestors" data-noexport id="same-origin-with-its-ancestors">same-origin with its
-  ancestors</dfn> if the following algorithm returns <code>true</code>:</p>
-    <ol class="algorithm">
-     <li data-md>
-      <p>If <var>settings</var>’s <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#concept-relevant-global" id="ref-for-concept-relevant-global">relevant global object</a> has no <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/nav-history-apis.html#concept-document-window" id="ref-for-concept-document-window">associated Document</a>,
-  return <code>false</code>.</p>
-     <li data-md>
-      <p>Let <var>document</var> be <var>settings</var>’ <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#concept-relevant-global" id="ref-for-concept-relevant-global①">relevant global object</a>'s <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/nav-history-apis.html#concept-document-window" id="ref-for-concept-document-window①">associated Document</a>.</p>
-     <li data-md>
-      <p>If <var>document</var> has no <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/browsers.html#concept-document-bc" id="ref-for-concept-document-bc">browsing context</a>, return <code>false</code>.</p>
-     <li data-md>
-      <p>Let <var>origin</var> be <var>settings</var>’ <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#concept-settings-object-origin" id="ref-for-concept-settings-object-origin">origin</a>.</p>
-     <li data-md>
-      <p>Let <var>navigable</var> be <var>document</var>’s <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/document-sequences.html#node-navigable" id="ref-for-node-navigable">node navigable</a>.</p>
-     <li data-md>
-      <p>While <var>navigable</var> has a non-null <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/document-sequences.html#nav-parent" id="ref-for-nav-parent">parent</a>:</p>
-      <ol>
-       <li data-md>
-        <p>Set <var>navigable</var> to <var>navigable</var>’s <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/document-sequences.html#nav-parent" id="ref-for-nav-parent①">parent</a>.</p>
-       <li data-md>
-        <p>If <var>navigable</var>’s <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/document-sequences.html#nav-document" id="ref-for-nav-document">active document</a>'s <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/origin.html#concept-origin" id="ref-for-concept-origin②">origin</a> is not <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/browsers.html#same-origin" id="ref-for-same-origin">same origin</a> with <var>origin</var>,
-  return <code>false</code>.</p>
-      </ol>
-     <li data-md>
-      <p>Return <code>true</code>.</p>
-    </ol>
-    <h4 class="heading settled" data-level="2.1.2" id="sctn-cred-type-registry"><span class="secno">2.1.2. </span><span class="content">Credential Type Registry</span><a class="self-link" href="#sctn-cred-type-registry"></a></h4>
-    <p>This registry maps <a data-link-type="dfn" href="#credential-type-registry-credential-type" id="ref-for-credential-type-registry-credential-type①">credential types</a> (i.e., <code class="idl"><a data-link-type="idl" href="#dom-credential-type-slot" id="ref-for-dom-credential-type-slot">[[type]]</a></code> values) to various values associated with a given credential type. For example: the <a data-link-type="dfn" href="#credential-type-registry-options-member-identifier" id="ref-for-credential-type-registry-options-member-identifier">Options Member Identifier</a> (formally, a <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-dictionary-member" id="ref-for-dfn-dictionary-member">dictionary member</a> <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-identifier" id="ref-for-dfn-identifier">identifier</a>) used in <code class="idl"><a data-link-type="idl" href="#dictdef-credentialcreationoptions" id="ref-for-dictdef-credentialcreationoptions">CredentialCreationOptions</a></code> and <code class="idl"><a data-link-type="idl" href="#dictdef-credentialrequestoptions" id="ref-for-dictdef-credentialrequestoptions">CredentialRequestOptions</a></code> (i.e., "options dictionaries")
-  by their specifications.</p>
-    <p class="note" role="note"><span class="marker">Note:</span> This registry is used by the <a data-link-type="dfn" href="#credentialrequestoptions-relevant-credential-interface-objects" id="ref-for-credentialrequestoptions-relevant-credential-interface-objects">relevant credential interface objects</a> algorithm.</p>
-    <table class="data">
-     <thead>
-      <tr>
-       <th><dfn class="dfn-paneled" data-dfn-for="credential type registry" data-dfn-type="dfn" data-noexport id="credential-type-registry-credential-type">Credential Type</dfn><br> <small>(in alphabetical order)</small>
-       <th><dfn class="dfn-paneled" data-dfn-for="credential type registry" data-dfn-type="dfn" data-noexport id="credential-type-registry-options-member-identifier">Options Member Identifier</dfn>
-       <th><dfn class="dfn-paneled" data-dfn-for="credential type registry" data-dfn-type="dfn" data-noexport id="credential-type-registry-appropriate-interface-object">Appropriate Interface Object</dfn>
-       <th>Specification
-       <th>Requestor Contact
-     <tbody>
-      <tr>
-       <td>federated
-       <td>federated
-       <td><code class="idl"><a data-link-type="idl" href="#federatedcredential" id="ref-for-federatedcredential①">FederatedCredential</a></code>
-       <td>This specification: <a href="#federated">§ 4 Federated Credentials</a>
-       <td><a href="https://www.w3.org/2011/webappsec/">W3C</a>
-      <tr>
-       <td>identity
-       <td>identity
-       <td><code class="idl"><a data-link-type="idl" href="https://fedidcg.github.io/FedCM/#identitycredential" id="ref-for-identitycredential">IdentityCredential</a></code>
-       <td><a data-link-type="biblio" href="#biblio-fedcm" title="FedCM API">[FEDCM]</a>
-       <td><a href="https://www.w3.org/community/fed-id/">W3C</a>
-      <tr>
-       <td>otp
-       <td>otp
-       <td><code class="idl"><a data-link-type="idl" href="https://wicg.github.io/web-otp#otpcredential" id="ref-for-otpcredential">OTPCredential</a></code>
-       <td><a data-link-type="biblio" href="#biblio-web-otp" title="WebOTP API">[WEB-OTP]</a>
-       <td><a href="https://wicg.io/">WICG</a>
-      <tr>
-       <td>password
-       <td>password
-       <td><code class="idl"><a data-link-type="idl" href="#passwordcredential" id="ref-for-passwordcredential①">PasswordCredential</a></code>
-       <td>This specification: <a href="#passwords">§ 3 Password Credentials</a>
-       <td><a href="https://www.w3.org/2011/webappsec/">W3C</a>
-      <tr>
-       <td>public-key
-       <td>publicKey
-       <td><code class="idl"><a data-link-type="idl" href="https://www.w3.org/TR/webauthn-3/#publickeycredential" id="ref-for-publickeycredential">PublicKeyCredential</a></code>
-       <td><a data-link-type="biblio" href="#biblio-webauthn" title="Web Authentication:An API for accessing Public Key Credentials Level 1">[WEBAUTHN]</a>
-       <td><a href="https://www.w3.org/blog/webauthn/">W3C</a>
-    </table>
-    <h5 class="heading settled" data-level="2.1.2.1" id="sctn-registry-requirements"><span class="secno">2.1.2.1. </span><span class="content">Registration Entry Requirements and Update Process</span><a class="self-link" href="#sctn-registry-requirements"></a></h5>
-    <ul>
-     <li data-md>
-      <p>Each <a data-link-type="dfn" href="#credential-type-registry-credential-type" id="ref-for-credential-type-registry-credential-type②">credential type</a> must be unique amongst the set of <a data-link-type="dfn" href="#credential-type-registry-credential-type" id="ref-for-credential-type-registry-credential-type③">credential types</a>.</p>
-     <li data-md>
-      <p>Each registry entry must state the <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-dictionary-member" id="ref-for-dfn-dictionary-member①">dictionary member</a> <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-identifier" id="ref-for-dfn-identifier①">identifier</a> (known as the <a data-link-type="dfn" href="#credential-type-registry-options-member-identifier" id="ref-for-credential-type-registry-options-member-identifier①">Options Member Identifier</a> in the registry) used in the
-credential specification’s extentions of <code class="idl"><a data-link-type="idl" href="#dictdef-credentialcreationoptions" id="ref-for-dictdef-credentialcreationoptions①">CredentialCreationOptions</a></code> and <code class="idl"><a data-link-type="idl" href="#dictdef-credentialrequestoptions" id="ref-for-dictdef-credentialrequestoptions①">CredentialRequestOptions</a></code>.</p>
-     <li data-md>
-      <p>Each registry entry must state the <a data-link-type="dfn" href="#credential-type-registry-appropriate-interface-object" id="ref-for-credential-type-registry-appropriate-interface-object">Appropriate Interface Object</a> <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-identifier" id="ref-for-dfn-identifier②">identifier</a> for the <a data-link-type="dfn" href="#credential-type-registry-credential-type" id="ref-for-credential-type-registry-credential-type④">credential type</a>.</p>
-     <li data-md>
-      <p>Each registry entry must include a link that references a publicly available specification
-defining the <a data-link-type="dfn" href="#credential-type-registry-credential-type" id="ref-for-credential-type-registry-credential-type⑤">credential type</a> and the <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-dictionary-member" id="ref-for-dfn-dictionary-member②">dictionary member</a> <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-identifier" id="ref-for-dfn-identifier③">identifier</a>.</p>
-     <li data-md>
-      <p>Each registry entry’s specification must include the requestor’s contact information.</p>
-    </ul>
-    <p>An update to this registry is an addition, change or deletion of a <a data-link-type="dfn" href="#credential-type-registry-credential-type" id="ref-for-credential-type-registry-credential-type⑥">credential type</a>'s registry entry.
-  Any person can request an update to this registry by pull requests to the <a href="https://github.com/w3c/webappsec-credential-management">webappsec-credential-management</a> repository.
-  The Web Applications Security Working Group will place it on an upcoming meeting agenda
-  and notify the requestor.
-  Consideration and disposition of the request is by consensus of the W3C Web Applications
-  Security Working Group.
-  The Chair will then notify the requestor of the outcome and update the registry accordingly.</p>
-    <h3 class="heading settled" data-level="2.2" id="the-credential-interface"><span class="secno">2.2. </span><span class="content">The <code>Credential</code> Interface</span><a class="self-link" href="#the-credential-interface"></a></h3>
-<pre class="idl highlight def">[<a class="idl-code" data-link-type="extended-attribute" href="https://webidl.spec.whatwg.org/#Exposed" id="ref-for-Exposed"><c- g>Exposed</c-></a>=<c- n>Window</c->, <a class="idl-code" data-link-type="extended-attribute" href="https://webidl.spec.whatwg.org/#SecureContext" id="ref-for-SecureContext"><c- g>SecureContext</c-></a>]
-<c- b>interface</c-> <dfn class="dfn-paneled idl-code" data-dfn-type="interface" data-export id="credential"><code><c- g>Credential</c-></code></dfn> {
-  <c- b>readonly</c-> <c- b>attribute</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString" id="ref-for-idl-USVString"><c- b>USVString</c-></a> <a class="idl-code" data-link-type="attribute" data-readonly data-type="USVString" href="#dom-credential-id" id="ref-for-dom-credential-id"><c- g>id</c-></a>;
-  <c- b>readonly</c-> <c- b>attribute</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-DOMString" id="ref-for-idl-DOMString"><c- b>DOMString</c-></a> <a class="idl-code" data-link-type="attribute" data-readonly data-type="DOMString" href="#dom-credential-type" id="ref-for-dom-credential-type"><c- g>type</c-></a>;
-  <c- b>static</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-promise" id="ref-for-idl-promise"><c- b>Promise</c-></a>&lt;<a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-boolean" id="ref-for-idl-boolean"><c- b>boolean</c-></a>> <a class="idl-code" data-link-type="method" href="#dom-credential-isconditionalmediationavailable" id="ref-for-dom-credential-isconditionalmediationavailable"><c- g>isConditionalMediationAvailable</c-></a>();
-};
-</pre>
-    <div>
-     <dl>
-      <dt data-md><dfn class="dfn-paneled idl-code" data-dfn-for="Credential" data-dfn-type="attribute" data-export id="dom-credential-id"><code>id</code></dfn>, <span> of type <a data-link-type="idl-name" href="https://webidl.spec.whatwg.org/#idl-USVString" id="ref-for-idl-USVString①">USVString</a>, readonly</span>
-      <dd data-md>
-       <p>The credential’s identifier. The requirements for the identifier are distinct for each type
-  of <a data-link-type="dfn" href="#concept-credential" id="ref-for-concept-credential①②">credential</a>. It might represent a username for username/password tuples, for example.</p>
-      <dt data-md><dfn class="dfn-paneled idl-code" data-dfn-for="Credential" data-dfn-type="attribute" data-export id="dom-credential-type"><code>type</code></dfn>, <span> of type <a data-link-type="idl-name" href="https://webidl.spec.whatwg.org/#idl-DOMString" id="ref-for-idl-DOMString①">DOMString</a>, readonly</span>
-      <dd data-md>
-       <p>This attribute’s getter returns the value of the object’s <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-object" id="ref-for-dfn-interface-object">interface object</a>'s <code class="idl"><a data-link-type="idl" href="#dom-credential-type-slot" id="ref-for-dom-credential-type-slot①">[[type]]</a></code> slot, which specifies the <a data-link-type="dfn" href="#credential-credential-type" id="ref-for-credential-credential-type">credential type</a> represented by this object.</p>
-      <dt data-md><dfn class="dfn-paneled idl-code" data-dfn-for="Credential" data-dfn-type="method" data-export id="dom-credential-isconditionalmediationavailable"><code>isConditionalMediationAvailable()</code></dfn>
-      <dd data-md>
-       <p>Returns a new <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#idl-promise" id="ref-for-idl-promise①">Promise</a></code> that <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#resolve" id="ref-for-resolve">resolves</a> with <code>true</code> if and only if the user agent supports the <code class="idl"><a data-link-type="idl" href="#dom-credentialmediationrequirement-conditional" id="ref-for-dom-credentialmediationrequirement-conditional">conditional</a></code> approach to <a href="#mediation-requirements">mediation of credential requests</a> for the <a data-link-type="dfn" href="#credential-credential-type" id="ref-for-credential-credential-type①">credential type</a>, <code>false</code> otherwise.</p>
-       <p><code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential②">Credential</a></code>'s default implementation of <code class="idl"><a data-link-type="idl" href="#dom-credential-isconditionalmediationavailable" id="ref-for-dom-credential-isconditionalmediationavailable①">isConditionalMediationAvailable()</a></code>:</p>
-       <ol class="algorithm">
-        <li data-md>
-         <p>Return a new <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#idl-promise" id="ref-for-idl-promise②">Promise</a></code> that immediately <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#resolve" id="ref-for-resolve①">resolves</a> with <code>false</code>.</p>
-       </ol>
-       <p>The specification for any <a data-link-type="dfn" href="#credential-credential-type" id="ref-for-credential-credential-type②">credential type</a> supporting <code class="idl"><a data-link-type="idl" href="#dom-credentialmediationrequirement-conditional" id="ref-for-dom-credentialmediationrequirement-conditional①">conditional</a></code> mediation must explicitly override this
-  function to <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#resolve" id="ref-for-resolve②">resolve</a> to <code>true</code>.</p>
-       <p class="note" role="note"><span class="marker">Note:</span> If this function is not present, <code class="idl"><a data-link-type="idl" href="#dom-credentialmediationrequirement-conditional" id="ref-for-dom-credentialmediationrequirement-conditional②">conditional</a></code> mediation is not supported for the <a data-link-type="dfn" href="#credential-credential-type" id="ref-for-credential-credential-type③">credential type</a>.</p>
-      <dt data-md><dfn class="dfn-paneled idl-code" data-dfn-for="Credential" data-dfn-type="attribute" data-export id="dom-credential-type-slot"><code>[[type]]</code></dfn>
-      <dd data-md>
-       <p>The <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential③">Credential</a></code> <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-object" id="ref-for-dfn-interface-object①">interface object</a> has an internal slot named <code>[[type]]</code>, which
-  unsurprisingly contains a <dfn class="dfn-paneled" data-dfn-for="credential" data-dfn-type="dfn" data-lt="credential type" data-noexport id="credential-credential-type">string representing the credential type</dfn>. The slot’s value
-  is the empty string unless otherwise specified. See <a href="#sctn-cred-type-registry">§ 2.1.2 Credential Type Registry</a> for a list of <a data-link-type="dfn" href="#credential-type-registry-credential-type" id="ref-for-credential-type-registry-credential-type⑦">credential types</a>.</p>
-       <p class="note" role="note"><span class="marker">Note:</span> The <code class="idl"><a data-link-type="idl" href="#dom-credential-type-slot" id="ref-for-dom-credential-type-slot②">[[type]]</a></code> slot’s value will be the same for all credentials implementing a
-  particular interface, which means that developers can rely on <code>obj.type</code> returning a string
-  that unambiguously represents the specific kind of <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential④">Credential</a></code> they’re dealing with.</p>
-      <dt data-md><dfn class="dfn-paneled idl-code" data-dfn-for="Credential" data-dfn-type="attribute" data-export id="dom-credential-discovery-slot"><code>[[discovery]]</code></dfn>
-      <dd data-md>
-       <p>The <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential⑤">Credential</a></code> <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-object" id="ref-for-dfn-interface-object②">interface object</a> has an internal slot named <code>[[discovery]]</code>,
-  representing the mechanism by which the user agent can collect credentials of
-  a given type. Its value is either
-  "<dfn class="dfn-paneled idl-code" data-dfn-for="Credential/[[discovery]]" data-dfn-type="enum-value" data-export id="dom-credential-discovery-credential-store"><code>credential store</code></dfn>" or
-  "<dfn class="dfn-paneled idl-code" data-dfn-for="Credential/[[discovery]]" data-dfn-type="enum-value" data-export id="dom-credential-discovery-remote"><code>remote</code></dfn>". The former value means that
-  all available credential information is stored in the user agent’s <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store④">credential store</a>,
-  while the latter means that the user agent can discover credentials outside of those
-  explicitly represented in the <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store⑤">credential store</a> via interaction with some external device
-  or service.</p>
-     </dl>
-    </div>
-    <p class="issue" id="issue-47fed4d0"><a class="self-link" href="#issue-47fed4d0"></a> Talk to Tobie/Dominic about the <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-object" id="ref-for-dfn-interface-object③">interface object</a> bits, here and in <a href="#algorithm-request">§ 2.5.1 Request a Credential</a>, etc. I’m not sure I’ve gotten the terminology right. <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-prototype-object" id="ref-for-dfn-interface-prototype-object">interface prototype
-  object</a>, maybe?</p>
-    <p>Some <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential⑥">Credential</a></code> objects are <dfn class="dfn-paneled" data-dfn-for="Credential" data-dfn-type="dfn" data-noexport id="credential-origin-bound">origin bound</dfn>: these contain an
-  internal slot named <dfn class="dfn-paneled idl-code" data-dfn-for="Credential" data-dfn-type="attribute" data-export id="dom-credential-origin-slot"><code>[[origin]]</code></dfn>, which stores the <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/origin.html#concept-origin" id="ref-for-concept-origin③">origin</a> for which the <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential⑦">Credential</a></code> may be <a data-link-type="dfn" href="#credential-effective" id="ref-for-credential-effective①">effective</a>.</p>
-    <h4 class="heading settled" data-level="2.2.1" id="credential-internal-methods"><span class="secno">2.2.1. </span><span class="content"><code>Credential</code> Internal Methods</span><a class="self-link" href="#credential-internal-methods"></a></h4>
-    <p>The <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential⑧">Credential</a></code> <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-object" id="ref-for-dfn-interface-object④">interface object</a> features several <a data-link-type="dfn" href="https://tc39.github.io/ecma262/#sec-ordinary-object-internal-methods-and-internal-slots" id="ref-for-sec-ordinary-object-internal-methods-and-internal-slots">internal methods</a> facilitating
-  retrieval and storage of <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential⑨">Credential</a></code> objects, with default "no-op" implementations
-  as specified in this section, below.</p>
-    <p>Unless otherwise specified, each <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-object" id="ref-for-dfn-interface-object⑤">interface object</a> created for interfaces which <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-inherit" id="ref-for-dfn-inherit①">inherit</a> from <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential①⓪">Credential</a></code> MUST provide implementations for at least one of these internal methods, overriding <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential①①">Credential</a></code>'s default implementations, as appropriate for the <a data-link-type="dfn" href="#concept-credential" id="ref-for-concept-credential①③">credential</a> type. E.g., <a href="#passwordcredential-interface">§ 3.2 The PasswordCredential Interface</a>, <a href="#federatedcredential-interface">§ 4.1 The FederatedCredential Interface</a>, and <a data-link-type="biblio" href="#biblio-webauthn" title="Web Authentication:An API for accessing Public Key Credentials Level 1">[WEBAUTHN]</a>.</p>
-    <h5 class="heading settled algorithm" data-algorithm="[[CollectFromCredentialStore]] internal method" data-level="2.2.1.1" id="algorithm-collect-creds"><span class="secno">2.2.1.1. </span><span class="content"><code>[[CollectFromCredentialStore]]</code> internal method</span><a class="self-link" href="#algorithm-collect-creds"></a></h5>
-     <dfn class="dfn-paneled idl-code" data-dfn-for="Credential" data-dfn-type="method" data-export id="dom-credential-collectfromcredentialstore-slot"><code>[[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)</code></dfn> is called with an <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#concept-settings-object-origin" id="ref-for-concept-settings-object-origin①">origin</a>, a <code class="idl"><a data-link-type="idl" href="#dictdef-credentialrequestoptions" id="ref-for-dictdef-credentialrequestoptions②">CredentialRequestOptions</a></code>, and a boolean which
-    is true iff the caller’s <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#environment-settings-object" id="ref-for-environment-settings-object②">environment settings object</a> is <a data-link-type="dfn" href="#same-origin-with-its-ancestors" id="ref-for-same-origin-with-its-ancestors">same-origin with its ancestors</a>.
-    The algorithm returns a set of <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential①②">Credential</a></code> objects from the user agent’s <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store⑥">credential store</a> that
-    match the options provided. If no matching <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential①③">Credential</a></code> objects are available, the
-    returned set will be empty. 
-    <p><code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential①④">Credential</a></code>'s default implementation of <code class="idl"><a data-link-type="idl" href="#dom-credential-collectfromcredentialstore-slot" id="ref-for-dom-credential-collectfromcredentialstore-slot">[[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)</a></code>:</p>
-    <ol class="algorithm">
-     <li data-md>
-      <p>Return an empty set.</p>
-    </ol>
-    <h5 class="heading settled algorithm" data-algorithm="[[DiscoverFromExternalSource]] internal method" data-level="2.2.1.2" id="algorithm-discover-creds"><span class="secno">2.2.1.2. </span><span class="content"><code>[[DiscoverFromExternalSource]]</code> internal method</span><a class="self-link" href="#algorithm-discover-creds"></a></h5>
-     <dfn class="dfn-paneled idl-code" data-dfn-for="Credential" data-dfn-type="method" data-export id="dom-credential-discoverfromexternalsource-slot"><code>[[DiscoverFromExternalSource]](origin, options, sameOriginWithAncestors)</code></dfn> is called <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/infrastructure.html#in-parallel" id="ref-for-in-parallel">in parallel</a> with an <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#concept-settings-object-origin" id="ref-for-concept-settings-object-origin②">origin</a>, a <code class="idl"><a data-link-type="idl" href="#dictdef-credentialrequestoptions" id="ref-for-dictdef-credentialrequestoptions③">CredentialRequestOptions</a></code> object,
-    and a boolean which is true iff the caller’s <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#environment-settings-object" id="ref-for-environment-settings-object③">environment settings object</a> is <a data-link-type="dfn" href="#same-origin-with-its-ancestors" id="ref-for-same-origin-with-its-ancestors①">same-origin with its ancestors</a>.
-    It returns a <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential①⑤">Credential</a></code> if one can be
-    returned given the options provided, <code>null</code> if no credential is available, or throws an
-    error if discovery fails (for example, incorrect options could produce a <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#exceptiondef-typeerror" id="ref-for-exceptiondef-typeerror">TypeError</a></code>).
-    If this kind of <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential①⑥">Credential</a></code> is only <a data-link-type="dfn" href="#credential-effective" id="ref-for-credential-effective②">effective</a> for a single use or a limited time,
-    this method is responsible for generating new <a data-link-type="dfn" href="#concept-credential" id="ref-for-concept-credential①④">credentials</a> using a <a data-link-type="dfn" href="#credential-source" id="ref-for-credential-source">credential source</a>. 
-    <p><code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential①⑦">Credential</a></code>'s default implementation of <code class="idl"><a data-link-type="idl" href="#dom-credential-discoverfromexternalsource-slot" id="ref-for-dom-credential-discoverfromexternalsource-slot">[[DiscoverFromExternalSource]](origin, options, sameOriginWithAncestors)</a></code>:</p>
-    <ol class="algorithm">
-     <li data-md>
-      <p>Return <code>null</code>.</p>
-    </ol>
-    <h5 class="heading settled algorithm" data-algorithm="[[Store]] internal method" data-level="2.2.1.3" id="algorithm-store-cred"><span class="secno">2.2.1.3. </span><span class="content"><code>[[Store]]</code> internal method</span><a class="self-link" href="#algorithm-store-cred"></a></h5>
-     <dfn class="dfn-paneled idl-code" data-dfn-for="Credential" data-dfn-type="method" data-export id="dom-credential-store-slot"><code>[[Store]](credential, sameOriginWithAncestors)</code></dfn> is called <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/infrastructure.html#in-parallel" id="ref-for-in-parallel①">in parallel</a> with a <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential①⑧">Credential</a></code>, and a boolean which is true iff the caller’s <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#environment-settings-object" id="ref-for-environment-settings-object④">environment settings object</a> is <a data-link-type="dfn" href="#same-origin-with-its-ancestors" id="ref-for-same-origin-with-its-ancestors②">same-origin with its ancestors</a>.
-    The algorithm returns once <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential①⑨">Credential</a></code> is persisted to the <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store⑦">credential store</a>. 
-    <p><code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential②⓪">Credential</a></code>'s default implementation of <code class="idl"><a data-link-type="idl" href="#dom-credential-store-slot" id="ref-for-dom-credential-store-slot">[[Store]](credential, sameOriginWithAncestors)</a></code>:</p>
-    <ol class="algorithm">
-     <li data-md>
-      <p>Throw a <code>NotSupportedError</code>.</p>
-    </ol>
-    <h5 class="heading settled algorithm" data-algorithm="[[Create]] internal method" data-level="2.2.1.4" id="algorithm-create-cred"><span class="secno">2.2.1.4. </span><span class="content"><code>[[Create]]</code> internal method</span><a class="self-link" href="#algorithm-create-cred"></a></h5>
-     <dfn class="dfn-paneled idl-code" data-dfn-for="Credential" data-dfn-type="method" data-export id="dom-credential-create-slot"><code>[[Create]](origin, options, sameOriginWithAncestors)</code></dfn> is called <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/infrastructure.html#in-parallel" id="ref-for-in-parallel②">in parallel</a> with an <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#concept-settings-object-origin" id="ref-for-concept-settings-object-origin③">origin</a>, a <code class="idl"><a data-link-type="idl" href="#dictdef-credentialcreationoptions" id="ref-for-dictdef-credentialcreationoptions②">CredentialCreationOptions</a></code>,
-    and a boolean which is true iff the caller’s <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#environment-settings-object" id="ref-for-environment-settings-object⑤">environment settings object</a> is <a data-link-type="dfn" href="#same-origin-with-its-ancestors" id="ref-for-same-origin-with-its-ancestors③">same-origin with its ancestors</a>.
-    The algorithm either: 
-    <ul>
-     <li data-md>
-      <p>creates a <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential②①">Credential</a></code>, or</p>
-     <li data-md>
-      <p>does not create a credential and returns <code>null</code>, or</p>
-     <li data-md>
-      <p>throws an error if creation fails due to exceptional situations
-  (for example, incorrect options could produce a <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#exceptiondef-typeerror" id="ref-for-exceptiondef-typeerror①">TypeError</a></code>).</p>
-    </ul>
-    <p>When creating a <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential②②">Credential</a></code>, it will return an algorithm that takes a <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#concept-settings-object-global" id="ref-for-concept-settings-object-global">global object</a> and returns an <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-object" id="ref-for-dfn-interface-object⑥">interface object</a> inheriting from <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential②③">Credential</a></code>. This algorithm MUST be invoked from a <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#concept-task" id="ref-for-concept-task">task</a>.</p>
-    <p class="note" role="note"><span class="marker">Note:</span> This algorithm’s steps are defined on a per-<a data-link-type="dfn" href="#credential-credential-type" id="ref-for-credential-credential-type④">credential type</a> basis.</p>
-    <p><code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential②④">Credential</a></code>'s default implementation of <code class="idl"><a data-link-type="idl" href="#dom-credential-create-slot" id="ref-for-dom-credential-create-slot">[[Create]](origin, options, sameOriginWithAncestors)</a></code>:</p>
-    <ol class="algorithm">
-     <li data-md>
-      <p>Return <code>null</code>.</p>
-    </ol>
-    <h4 class="heading settled" data-level="2.2.2" id="credentialuserdata-mixin"><span class="secno">2.2.2. </span><span class="content"><code>CredentialUserData</code> Mixin</span><a class="self-link" href="#credentialuserdata-mixin"></a></h4>
-    <p>Some <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential②⑤">Credential</a></code> objects contain data which aims to give users a human-readable disambiguation
-  mechanism in the <a data-link-type="dfn" href="#credential-chooser" id="ref-for-credential-chooser">credential chooser</a> by providing a friendly name and icon:</p>
-<pre class="idl highlight def">[<a class="idl-code" data-link-type="extended-attribute" href="https://webidl.spec.whatwg.org/#SecureContext" id="ref-for-SecureContext①"><c- g>SecureContext</c-></a>]
-<c- b>interface</c-> <c- b>mixin</c-> <dfn class="dfn-paneled idl-code" data-dfn-type="interface" data-export id="credentialuserdata"><code><c- g>CredentialUserData</c-></code></dfn> {
-  <c- b>readonly</c-> <c- b>attribute</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString" id="ref-for-idl-USVString②"><c- b>USVString</c-></a> <a class="idl-code" data-link-type="attribute" data-readonly data-type="USVString" href="#dom-credentialuserdata-name" id="ref-for-dom-credentialuserdata-name"><c- g>name</c-></a>;
-  <c- b>readonly</c-> <c- b>attribute</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString" id="ref-for-idl-USVString③"><c- b>USVString</c-></a> <a class="idl-code" data-link-type="attribute" data-readonly data-type="USVString" href="#dom-credentialuserdata-iconurl" id="ref-for-dom-credentialuserdata-iconurl"><c- g>iconURL</c-></a>;
-};
-</pre>
-    <div>
-     <dl>
-      <dt data-md><dfn class="dfn-paneled idl-code" data-dfn-for="CredentialUserData" data-dfn-type="attribute" data-export id="dom-credentialuserdata-name"><code>name</code></dfn>, <span> of type <a data-link-type="idl-name" href="https://webidl.spec.whatwg.org/#idl-USVString" id="ref-for-idl-USVString④">USVString</a>, readonly</span>
-      <dd data-md>
-       <p>A name associated with the credential, intended as a human-understandable public name for
-  display in a <a data-link-type="dfn" href="#credential-chooser" id="ref-for-credential-chooser①">credential chooser</a>.</p>
-      <dt data-md><dfn class="dfn-paneled idl-code" data-dfn-for="CredentialUserData" data-dfn-type="attribute" data-export id="dom-credentialuserdata-iconurl"><code>iconURL</code></dfn>, <span> of type <a data-link-type="idl-name" href="https://webidl.spec.whatwg.org/#idl-USVString" id="ref-for-idl-USVString⑤">USVString</a>, readonly</span>
-      <dd data-md>
-       <p>A URL pointing to an image for the credential, intended for display in a <a data-link-type="dfn" href="#credential-chooser" id="ref-for-credential-chooser②">credential chooser</a>. This URL MUST be an <a data-link-type="dfn" href="https://www.w3.org/TR/mixed-content/#a-priori-authenticated-url" id="ref-for-a-priori-authenticated-url"><i lang="la">a priori</i> authenticated
-  URL</a>.</p>
-     </dl>
-    </div>
-    <h3 class="heading settled" data-level="2.3" id="framework-credential-management"><span class="secno">2.3. </span><span class="content"><code>navigator.credentials</code></span><a class="self-link" href="#framework-credential-management"></a></h3>
-    <p>Developers retrieve <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential②⑥">Credential</a></code>s and interact with the user agent’s <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store⑧">credential store</a> via
-  methods exposed on the <code class="idl"><a data-link-type="idl" href="#credentialscontainer" id="ref-for-credentialscontainer①">CredentialsContainer</a></code> interface, which hangs off the <code class="idl"><a data-link-type="idl" href="https://html.spec.whatwg.org/multipage/system-state.html#navigator" id="ref-for-navigator">Navigator</a></code> object as <a class="idl-code" data-link-type="attribute" href="#dom-navigator-credentials" id="ref-for-dom-navigator-credentials"><code>navigator.credentials</code></a>.</p>
-<pre class="idl highlight def"><c- b>partial</c-> <c- b>interface</c-> <a class="idl-code" data-link-type="interface" href="https://html.spec.whatwg.org/multipage/system-state.html#navigator" id="ref-for-navigator①"><c- g>Navigator</c-></a> {
-  [<a class="idl-code" data-link-type="extended-attribute" href="https://webidl.spec.whatwg.org/#SecureContext" id="ref-for-SecureContext②"><c- g>SecureContext</c-></a>, <a class="idl-code" data-link-type="extended-attribute" href="https://webidl.spec.whatwg.org/#SameObject" id="ref-for-SameObject"><c- g>SameObject</c-></a>] <c- b>readonly</c-> <c- b>attribute</c-> <a data-link-type="idl-name" href="#credentialscontainer" id="ref-for-credentialscontainer②"><c- n>CredentialsContainer</c-></a> <a class="idl-code" data-link-type="attribute" data-readonly data-type="CredentialsContainer" href="#dom-navigator-credentials" id="ref-for-dom-navigator-credentials①"><c- g>credentials</c-></a>;
-};
-</pre>
-    <p>The <dfn class="dfn-paneled idl-code" data-dfn-for="Navigator" data-dfn-type="attribute" data-export id="dom-navigator-credentials"><code>credentials</code></dfn> attribute MUST return the <code class="idl"><a data-link-type="idl" href="#credentialscontainer" id="ref-for-credentialscontainer③">CredentialsContainer</a></code> associated with the <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/document-sequences.html#nav-document" id="ref-for-nav-document①">active document</a>'s <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/browsers.html#concept-document-bc" id="ref-for-concept-document-bc①">browsing context</a>.</p>
-    <p class="note" role="note"><span class="marker">Note:</span> As discussed in <a href="#insecure-sites">§ 6.3 Insecure Sites</a>, the credential management API is exposed only in <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#secure-context" id="ref-for-secure-context">Secure Contexts</a>.</p>
-<pre class="idl highlight def">[<a class="idl-code" data-link-type="extended-attribute" href="https://webidl.spec.whatwg.org/#Exposed" id="ref-for-Exposed①"><c- g>Exposed</c-></a>=<c- n>Window</c->, <a class="idl-code" data-link-type="extended-attribute" href="https://webidl.spec.whatwg.org/#SecureContext" id="ref-for-SecureContext③"><c- g>SecureContext</c-></a>]
-<c- b>interface</c-> <dfn class="dfn-paneled idl-code" data-dfn-type="interface" data-export id="credentialscontainer"><code><c- g>CredentialsContainer</c-></code></dfn> {
-  <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-promise" id="ref-for-idl-promise③"><c- b>Promise</c-></a>&lt;<a data-link-type="idl-name" href="#credential" id="ref-for-credential②⑦"><c- n>Credential</c-></a>?> <a class="idl-code" data-link-type="method" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get"><c- g>get</c-></a>(<c- b>optional</c-> <a data-link-type="idl-name" href="#dictdef-credentialrequestoptions" id="ref-for-dictdef-credentialrequestoptions④"><c- n>CredentialRequestOptions</c-></a> <a class="idl-code" data-link-type="argument" href="#dom-credentialscontainer-get-options-options" id="ref-for-dom-credentialscontainer-get-options-options"><c- g>options</c-></a> = {});
-  <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-promise" id="ref-for-idl-promise④"><c- b>Promise</c-></a>&lt;<a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-undefined" id="ref-for-idl-undefined"><c- b>undefined</c-></a>> <a class="idl-code" data-link-type="method" href="#dom-credentialscontainer-store" id="ref-for-dom-credentialscontainer-store①"><c- g>store</c-></a>(<a data-link-type="idl-name" href="#credential" id="ref-for-credential②⑧"><c- n>Credential</c-></a> <a class="idl-code" data-link-type="argument" href="#dom-credentialscontainer-store-credential-credential" id="ref-for-dom-credentialscontainer-store-credential-credential"><c- g>credential</c-></a>);
-  <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-promise" id="ref-for-idl-promise⑤"><c- b>Promise</c-></a>&lt;<a data-link-type="idl-name" href="#credential" id="ref-for-credential②⑨"><c- n>Credential</c-></a>?> <a class="idl-code" data-link-type="method" href="#dom-credentialscontainer-create" id="ref-for-dom-credentialscontainer-create"><c- g>create</c-></a>(<c- b>optional</c-> <a data-link-type="idl-name" href="#dictdef-credentialcreationoptions" id="ref-for-dictdef-credentialcreationoptions③"><c- n>CredentialCreationOptions</c-></a> <a class="idl-code" data-link-type="argument" href="#dom-credentialscontainer-create-options-options" id="ref-for-dom-credentialscontainer-create-options-options"><c- g>options</c-></a> = {});
-  <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-promise" id="ref-for-idl-promise⑥"><c- b>Promise</c-></a>&lt;<a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-undefined" id="ref-for-idl-undefined①"><c- b>undefined</c-></a>> <a class="idl-code" data-link-type="method" href="#dom-credentialscontainer-preventsilentaccess" id="ref-for-dom-credentialscontainer-preventsilentaccess"><c- g>preventSilentAccess</c-></a>();
-};
-
-<c- b>dictionary</c-> <dfn class="dfn-paneled idl-code" data-dfn-type="dictionary" data-export id="dictdef-credentialdata"><code><c- g>CredentialData</c-></code></dfn> {
-  <c- b>required</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString" id="ref-for-idl-USVString⑥"><c- b>USVString</c-></a> <dfn class="dfn-paneled idl-code" data-dfn-for="CredentialData" data-dfn-type="dict-member" data-export data-type="USVString " id="dom-credentialdata-id"><code><c- g>id</c-></code></dfn>;
-};
-</pre>
-    <div>
-     <dl>
-      <dt data-md><dfn class="dfn-paneled idl-code" data-dfn-for="CredentialsContainer" data-dfn-type="method" data-export data-lt="get(options)|get()" id="dom-credentialscontainer-get"><code>get(options)</code></dfn>
-      <dd data-md>
-       <p>When <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get①">get()</a></code> is called, the user agent MUST return the result of
-  executing <a data-link-type="abstract-op" href="#abstract-opdef-request-a-credential" id="ref-for-abstract-opdef-request-a-credential">Request a <code>Credential</code></a> on <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-get-options-options" id="ref-for-dom-credentialscontainer-get-options-options①">options</a></code>.</p>
-       <table class="argumentdef data">
-        <caption>Arguments for the <a data-link-type="idl" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get②">CredentialsContainer.get(options)</a> method.</caption>
-        <thead>
-         <tr>
-          <th>Parameter 
-          <th>Type 
-          <th style="text-align:center">Nullable 
-          <th style="text-align:center">Optional 
-          <th>Description 
-        <tbody>
-         <tr>
-          <td><dfn class="dfn-paneled idl-code" data-dfn-for="CredentialsContainer/get(options)" data-dfn-type="argument" data-export id="dom-credentialscontainer-get-options-options"><code>options</code></dfn> 
-          <td> <code class="idl"><a data-link-type="idl-name" href="#dictdef-credentialrequestoptions" id="ref-for-dictdef-credentialrequestoptions⑤">CredentialRequestOptions</a></code>
-          <td style="text-align:center"> <span class="no">✘</span>
-          <td style="text-align:center"> <span class="yes">✔</span>
-          <td>The set of properties governing the scope of the request. 
-       </table>
-      <dt data-md><dfn class="dfn-paneled idl-code" data-dfn-for="CredentialsContainer" data-dfn-type="method" data-export data-lt="store(credential)|store()" id="dom-credentialscontainer-store"><code>store(credential)</code></dfn>
-      <dd data-md>
-       <p>When <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-store" id="ref-for-dom-credentialscontainer-store②">store()</a></code> is called, the user agent MUST return the result of
-  executing <a data-link-type="abstract-op" href="#abstract-opdef-store-a-credential" id="ref-for-abstract-opdef-store-a-credential">Store a <code>Credential</code></a> on <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-store-credential-credential" id="ref-for-dom-credentialscontainer-store-credential-credential①">credential</a></code>.</p>
-       <table class="argumentdef data">
-        <caption>Arguments for the <a data-link-type="idl" href="#dom-credentialscontainer-store" id="ref-for-dom-credentialscontainer-store③">CredentialsContainer.store(credential)</a> method.</caption>
-        <thead>
-         <tr>
-          <th>Parameter 
-          <th>Type 
-          <th style="text-align:center">Nullable 
-          <th style="text-align:center">Optional 
-          <th>Description 
-        <tbody>
-         <tr>
-          <td><dfn class="dfn-paneled idl-code" data-dfn-for="CredentialsContainer/store(credential)" data-dfn-type="argument" data-export id="dom-credentialscontainer-store-credential-credential"><code>credential</code></dfn> 
-          <td> <code class="idl"><a data-link-type="idl-name" href="#credential" id="ref-for-credential③⓪">Credential</a></code>
-          <td style="text-align:center"> <span class="no">✘</span>
-          <td style="text-align:center"> <span class="no">✘</span>
-          <td>The credential to be stored. 
-       </table>
-      <dt data-md><dfn class="dfn-paneled idl-code" data-dfn-for="CredentialsContainer" data-dfn-type="method" data-export data-lt="create(options)|create()" id="dom-credentialscontainer-create"><code>create(options)</code></dfn>
-      <dd data-md>
-       <p>When <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-create" id="ref-for-dom-credentialscontainer-create①">create()</a></code> is called, the user agent MUST return the result of
-  executing <a data-link-type="abstract-op" href="#abstract-opdef-create-a-credential" id="ref-for-abstract-opdef-create-a-credential">Create a <code>Credential</code></a> on <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-create-options-options" id="ref-for-dom-credentialscontainer-create-options-options①">options</a></code>.</p>
-       <table class="argumentdef data">
-        <caption>Arguments for the <a data-link-type="idl" href="#dom-credentialscontainer-create" id="ref-for-dom-credentialscontainer-create②">CredentialsContainer.create(options)</a> method.</caption>
-        <thead>
-         <tr>
-          <th>Parameter 
-          <th>Type 
-          <th style="text-align:center">Nullable 
-          <th style="text-align:center">Optional 
-          <th>Description 
-        <tbody>
-         <tr>
-          <td><dfn class="dfn-paneled idl-code" data-dfn-for="CredentialsContainer/create(options)" data-dfn-type="argument" data-export id="dom-credentialscontainer-create-options-options"><code>options</code></dfn> 
-          <td> <code class="idl"><a data-link-type="idl-name" href="#dictdef-credentialcreationoptions" id="ref-for-dictdef-credentialcreationoptions④">CredentialCreationOptions</a></code>
-          <td style="text-align:center"> <span class="no">✘</span>
-          <td style="text-align:center"> <span class="yes">✔</span>
-          <td>The options used to create a <code>Credential</code>. 
-       </table>
-      <dt data-md><dfn class="dfn-paneled idl-code" data-dfn-for="CredentialsContainer" data-dfn-type="method" data-export id="dom-credentialscontainer-preventsilentaccess"><code>preventSilentAccess()</code></dfn>
-      <dd data-md>
-       <p>When <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-preventsilentaccess" id="ref-for-dom-credentialscontainer-preventsilentaccess①">preventSilentAccess()</a></code> is called, the user agent MUST return
-  the result of executing <a data-link-type="abstract-op" href="#abstract-opdef-prevent-silent-access" id="ref-for-abstract-opdef-prevent-silent-access">Prevent Silent Access</a> on the <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#current-settings-object" id="ref-for-current-settings-object">current settings
-  object</a>.</p>
-       <p class="note" role="note"><span class="marker">Note:</span> The intent here is a signal from the origin that the user has signed out. That
-  is, after a click on a "Sign out" button, the site updates the user’s session info, and
-  calls <code>navigator.credentials.preventSilentAccess()</code>. This sets the <a data-link-type="dfn" href="#origin-prevent-silent-access-flag" id="ref-for-origin-prevent-silent-access-flag"><code>prevent silent         access</code> flag</a>, meaning that credentials will not be automagically handed back to the
-  page next time the user visits.</p>
-       <p class="note" role="note"><span class="marker">Note:</span> This function was previously called <code>requireUserMediation()</code> which should be considered
-  deprecated.</p>
-     </dl>
-    </div>
-    <div class="algorithm" data-algorithm="create credentialscontainer"> When a <code class="idl"><a data-link-type="idl" href="https://html.spec.whatwg.org/multipage/system-state.html#navigator" id="ref-for-navigator②">Navigator</a></code> object (<var>navigator</var>) is created, the user agent MUST create a
-    new <code class="idl"><a data-link-type="idl" href="#credentialscontainer" id="ref-for-credentialscontainer④">CredentialsContainer</a></code> object, using <var>navigator</var>’s <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#concept-relevant-realm" id="ref-for-concept-relevant-realm">relevant Realm</a>, and associate it
-    with <var>navigator</var>. </div>
-    <h4 class="heading settled" data-level="2.3.1" id="credentialrequestoptions-dictionary"><span class="secno">2.3.1. </span><span class="content">The <code>CredentialRequestOptions</code> Dictionary</span><a class="self-link" href="#credentialrequestoptions-dictionary"></a></h4>
-    <p>In order to retrieve a <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential③①">Credential</a></code> via <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get③">get()</a></code>, the caller specifies a
-  few parameters in a <code class="idl"><a data-link-type="idl" href="#dictdef-credentialrequestoptions" id="ref-for-dictdef-credentialrequestoptions⑥">CredentialRequestOptions</a></code> object.</p>
-    <p class="note" role="note"><span class="marker">Note:</span> The <code class="idl"><a data-link-type="idl" href="#dictdef-credentialrequestoptions" id="ref-for-dictdef-credentialrequestoptions⑦">CredentialRequestOptions</a></code> dictionary is an extension point. If and when new types of
-  credentials are introduced that require options, their dictionary types will be added to the
-  dictionary so they can be passed into the request. See <a href="#implementation-extension">§ 8.2 Extension Points</a>.</p>
-<pre class="idl highlight def"><c- b>dictionary</c-> <dfn class="dfn-paneled idl-code" data-dfn-type="dictionary" data-export id="dictdef-credentialrequestoptions"><code><c- g>CredentialRequestOptions</c-></code></dfn> {
-  <a data-link-type="idl-name" href="#enumdef-credentialmediationrequirement" id="ref-for-enumdef-credentialmediationrequirement"><c- n>CredentialMediationRequirement</c-></a> <a class="idl-code" data-default="&quot;optional&quot;" data-link-type="dict-member" data-type="CredentialMediationRequirement " href="#dom-credentialrequestoptions-mediation" id="ref-for-dom-credentialrequestoptions-mediation"><c- g>mediation</c-></a> = "optional";
-  <a data-link-type="idl-name" href="https://dom.spec.whatwg.org/#abortsignal" id="ref-for-abortsignal"><c- n>AbortSignal</c-></a> <a class="idl-code" data-link-type="dict-member" data-type="AbortSignal " href="#dom-credentialrequestoptions-signal" id="ref-for-dom-credentialrequestoptions-signal"><c- g>signal</c-></a>;
-};
-</pre>
-    <div>
-     <dl>
-      <dt data-md><dfn class="dfn-paneled idl-code" data-dfn-for="CredentialRequestOptions" data-dfn-type="dict-member" data-export id="dom-credentialrequestoptions-mediation"><code>mediation</code></dfn>, <span> of type <a data-link-type="idl-name" href="#enumdef-credentialmediationrequirement" id="ref-for-enumdef-credentialmediationrequirement①">CredentialMediationRequirement</a>, defaulting to <code>"optional"</code></span>
-      <dd data-md>
-       <p>This property specifies the mediation requirements for a given credential request. The
-  meaning of each enum value is described below in <code class="idl"><a data-link-type="idl" href="#enumdef-credentialmediationrequirement" id="ref-for-enumdef-credentialmediationrequirement②">CredentialMediationRequirement</a></code>.
-  Processing details are defined in <a href="#algorithm-request">§ 2.5.1 Request a Credential</a>.</p>
-      <dt data-md><dfn class="dfn-paneled idl-code" data-dfn-for="CredentialRequestOptions" data-dfn-type="dict-member" data-export id="dom-credentialrequestoptions-signal"><code>signal</code></dfn>, <span> of type <a data-link-type="idl-name" href="https://dom.spec.whatwg.org/#abortsignal" id="ref-for-abortsignal①">AbortSignal</a></span>
-      <dd data-md>
-       <p>This property lets the developer abort an ongoing <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get④">get()</a></code> operation.
-  An aborted operation may complete normally (generally if the abort was received after the
-  operation finished) or reject with an <a data-link-type="dfn" href="https://dom.spec.whatwg.org/#abortsignal-abort-reason" id="ref-for-abortsignal-abort-reason">abort reason</a>.</p>
-     </dl>
-    </div>
-    <div class="note" role="note">
-      Earlier versions of this specification defined a boolean <code>unmediated</code> member. Setting that
-    to <code>true</code> had the effect of setting <code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-mediation" id="ref-for-dom-credentialrequestoptions-mediation①">mediation</a></code> to
-    "<code class="idl"><a data-link-type="idl" href="#dom-credentialmediationrequirement-silent" id="ref-for-dom-credentialmediationrequirement-silent">silent</a></code>", and setting it to <code>false</code> had the effect of
-    setting <code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-mediation" id="ref-for-dom-credentialrequestoptions-mediation②">mediation</a></code> to "<code class="idl"><a data-link-type="idl" href="#dom-credentialmediationrequirement-optional" id="ref-for-dom-credentialmediationrequirement-optional">optional</a></code>". 
-     <p><code>unmediated</code> should be considered deprecated; new code should instead rely on <code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-mediation" id="ref-for-dom-credentialrequestoptions-mediation③">mediation</a></code>.</p>
-    </div>
-    <div class="algorithm" data-algorithm="relevant credential interfaces">
-      The <dfn class="dfn-paneled" data-dfn-for="CredentialRequestOptions,CredentialCreationOptions" data-dfn-type="dfn" data-noexport id="credentialrequestoptions-relevant-credential-interface-objects">relevant credential interface objects</dfn> for a given <code class="idl"><a data-link-type="idl" href="#dictdef-credentialcreationoptions" id="ref-for-dictdef-credentialcreationoptions⑤">CredentialCreationOptions</a></code> or <code class="idl"><a data-link-type="idl" href="#dictdef-credentialrequestoptions" id="ref-for-dictdef-credentialrequestoptions⑧">CredentialRequestOptions</a></code> (<var>options</var>) is a set of <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-object" id="ref-for-dfn-interface-object⑦">interface objects</a>, collected as follows: 
-     <p class="note" role="note"><span class="marker">Note:</span> This algorithm uses the <a href="#sctn-cred-type-registry">Credential Type Registry</a>.</p>
-     <ol class="algorithm">
-      <li data-md>
-       <p>Let <var>settings</var> be the <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#current-settings-object" id="ref-for-current-settings-object①">current settings object</a></p>
-      <li data-md>
-       <p>Let <var>relevant interface objects</var> be an <a data-link-type="dfn" href="https://infra.spec.whatwg.org/#list-empty" id="ref-for-list-empty">empty</a> <a data-link-type="dfn" href="https://infra.spec.whatwg.org/#ordered-set" id="ref-for-ordered-set①">set</a>.</p>
-      <li data-md>
-       <p><a data-link-type="dfn" href="https://infra.spec.whatwg.org/#map-iterate" id="ref-for-map-iterate">For each</a> <var>optionKey</var> → <var>optionValue</var> of <var>options</var>:</p>
-       <ol>
-        <li data-md>
-         <p>Let <var>credentialInterfaceObject</var> be the <a data-link-type="dfn" href="#credential-type-registry-appropriate-interface-object" id="ref-for-credential-type-registry-appropriate-interface-object①">Appropriate Interface Object</a> (on <var>settings</var>’ <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#concept-settings-object-global" id="ref-for-concept-settings-object-global①">global object</a>) whose <a data-link-type="dfn" href="#credential-type-registry-options-member-identifier" id="ref-for-credential-type-registry-options-member-identifier②">Options Member Identifier</a> is <var>optionKey</var>.</p>
-        <li data-md>
-         <p class="assertion">Assert: <var>credentialInterfaceObject</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credential-type-slot" id="ref-for-dom-credential-type-slot③">[[type]]</a></code> slot equals the <a data-link-type="dfn" href="#credential-type-registry-credential-type" id="ref-for-credential-type-registry-credential-type⑧">Credential Type</a> whose <a data-link-type="dfn" href="#credential-type-registry-options-member-identifier" id="ref-for-credential-type-registry-options-member-identifier③">Options Member
-  Identifier</a> is <var>optionKey</var>.</p>
-        <li data-md>
-         <p>Append <var>credentialInterfaceObject</var> to <var>relevant interface objects</var>.</p>
-       </ol>
-      <li data-md>
-       <p>Return <var>relevant interface objects</var>.</p>
-     </ol>
-    </div>
-    <div class="algorithm" data-algorithm="can collect locally">
-      A given <code class="idl"><a data-link-type="idl" href="#dictdef-credentialrequestoptions" id="ref-for-dictdef-credentialrequestoptions⑨">CredentialRequestOptions</a></code> (<var>options</var>) is <dfn class="dfn-paneled" data-dfn-for="CredentialRequestOptions" data-dfn-type="dfn" data-noexport id="credentialrequestoptions-matchable-a-priori">matchable <i lang="la">a priori</i></dfn> if the following
-    steps return <code>true</code>: 
-     <ol class="algorithm">
-      <li data-md>
-       <p>For each <var>interface</var> in <var>options</var>’ <a data-link-type="dfn" href="#credentialrequestoptions-relevant-credential-interface-objects" id="ref-for-credentialrequestoptions-relevant-credential-interface-objects①">relevant credential interface objects</a>:</p>
-       <ol>
-        <li data-md>
-         <p>If <var>interface</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credential-discovery-slot" id="ref-for-dom-credential-discovery-slot">[[discovery]]</a></code> slot’s value is not
-  "<code class="idl"><a data-link-type="idl" href="#dom-credential-discovery-credential-store" id="ref-for-dom-credential-discovery-credential-store">credential store</a></code>", return <code>false</code>.</p>
-       </ol>
-      <li data-md>
-       <p>Return <code>true</code>.</p>
-     </ol>
-     <p class="note" role="note"><span class="marker">Note:</span> When executing <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get⑤">get(options)</a></code>, we only return credentials without <a data-link-type="dfn" href="#user-mediated" id="ref-for-user-mediated">user mediation</a> if
-    the provided <code class="idl"><a data-link-type="idl" href="#dictdef-credentialrequestoptions" id="ref-for-dictdef-credentialrequestoptions①⓪">CredentialRequestOptions</a></code> is <a data-link-type="dfn" href="#credentialrequestoptions-matchable-a-priori" id="ref-for-credentialrequestoptions-matchable-a-priori">matchable <i lang="la">a priori</i></a>. If any
-    credential types are requested that could require discovery from some external service (OAuth
-    tokens, security key authenticators, etc.), then <a data-link-type="dfn" href="#user-mediated" id="ref-for-user-mediated①">user mediation</a> will be required in order
-    to guide the discovery process (by choosing a federated identity provider, BTLE device, etc).</p>
-    </div>
-    <h4 class="heading settled" data-level="2.3.2" id="mediation-requirements"><span class="secno">2.3.2. </span><span class="content">Mediation Requirements</span><a class="self-link" href="#mediation-requirements"></a></h4>
-    <p>When making a request via <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get⑥">get(options)</a></code>, developers can set a case-by-case requirement for <a data-link-type="dfn" href="#user-mediated" id="ref-for-user-mediated②">user mediation</a> by choosing the appropriate <code class="idl"><a data-link-type="idl" href="#enumdef-credentialmediationrequirement" id="ref-for-enumdef-credentialmediationrequirement③">CredentialMediationRequirement</a></code> enum value.</p>
-    <p class="note" role="note"><span class="marker">Note:</span> The <a href="#user-mediation">§ 5 User Mediation</a> section gives more detail on the concept in general, and its
-  implications on how the user agent deals with individual requests for a given origin).</p>
-<pre class="idl highlight def"><c- b>enum</c-> <dfn class="dfn-paneled idl-code" data-dfn-type="enum" data-export id="enumdef-credentialmediationrequirement"><code><c- g>CredentialMediationRequirement</c-></code></dfn> {
-  <a class="idl-code" data-link-type="enum-value" href="#dom-credentialmediationrequirement-silent" id="ref-for-dom-credentialmediationrequirement-silent①"><c- s>"silent"</c-></a>,
-  <a class="idl-code" data-link-type="enum-value" href="#dom-credentialmediationrequirement-optional" id="ref-for-dom-credentialmediationrequirement-optional①"><c- s>"optional"</c-></a>,
-  <a class="idl-code" data-link-type="enum-value" href="#dom-credentialmediationrequirement-conditional" id="ref-for-dom-credentialmediationrequirement-conditional③"><c- s>"conditional"</c-></a>,
-  <a class="idl-code" data-link-type="enum-value" href="#dom-credentialmediationrequirement-required" id="ref-for-dom-credentialmediationrequirement-required"><c- s>"required"</c-></a>
-};
-</pre>
-    <div>
-     <dl>
-      <dt data-md><dfn class="dfn-paneled idl-code" data-dfn-for="CredentialMediationRequirement" data-dfn-type="enum-value" data-export data-lt="&quot;silent&quot;|silent" id="dom-credentialmediationrequirement-silent"><code>silent</code></dfn>
-      <dd data-md>
-       <p>User mediation is suppressed for the given operation. If the operation can be performed
-  without user involvement, wonderful. If user involvement is necessary, then the operation
-  will return <code>null</code> rather than involving the user.</p>
-       <p class="note" role="note"><span class="marker">Note:</span> The intended usage is to support <a href="#example-mediation-silent">"Keep me signed-into this site"
-  scenarios</a>, where a developer may wish to silently obtain
-  credentials if a user should be automatically signed in, but to delay bothering the user
-  with a sign-in prompt until they actively choose to sign-in.</p>
-      <dt data-md><dfn class="dfn-paneled idl-code" data-dfn-for="CredentialMediationRequirement" data-dfn-type="enum-value" data-export data-lt="&quot;optional&quot;|optional" id="dom-credentialmediationrequirement-optional"><code>optional</code></dfn>
-      <dd data-md>
-       <p>If credentials can be handed over for a given operation without user mediation, they will
-  be. If <a data-link-type="dfn" href="#origin-requires-user-mediation" id="ref-for-origin-requires-user-mediation">user mediation is required</a>, then the user agent will
-  involve the user in the decision.</p>
-       <p class="note" role="note"><span class="marker">Note:</span> This is the default behavior for <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get⑦">get()</a></code>, and is intended to serve a case where a
-  developer has reasonable confidence that a user expects to start a sign-in operation. If
-  a user has just clicked "sign-in" for example, then they won’t be surprised or confused to
-  see a <a data-link-type="dfn" href="#credential-chooser" id="ref-for-credential-chooser③">credential chooser</a> if necessary.</p>
-      <dt data-md><dfn class="dfn-paneled idl-code" data-dfn-for="CredentialMediationRequirement" data-dfn-type="enum-value" data-export data-lt="&quot;conditional&quot;|conditional" id="dom-credentialmediationrequirement-conditional"><code>conditional</code></dfn>
-      <dd data-md>
-       <p>Discovered credentials are presented to the user in a non-modal dialog along with an
-  indication of the <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/origin.html#concept-origin" id="ref-for-concept-origin④">origin</a> which is requesting credentials. If the user makes a gesture
-  outside of the dialog, the dialog closes without resolving or rejecting the <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#idl-promise" id="ref-for-idl-promise⑦">Promise</a></code> returned by the <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get⑧">get()</a></code> method and without causing a user-visible
-  error condition. If the user makes a gesture that selects a credential, that credential is
-  returned to the caller. The <a data-link-type="dfn" href="#origin-prevent-silent-access-flag" id="ref-for-origin-prevent-silent-access-flag①">prevent silent access flag</a> is treated as being <code>true</code> regardless of its actual value: the <code class="idl"><a data-link-type="idl" href="#dom-credentialmediationrequirement-conditional" id="ref-for-dom-credentialmediationrequirement-conditional④">conditional</a></code> behavior
-  always involves <a data-link-type="dfn" href="#user-mediated" id="ref-for-user-mediated③">user mediation</a> of some sort if applicable credentials are discovered.</p>
-       <p>If no credentials are discovered, the user agent MAY prompt the user to take action in a way
-  that depends on the type of credential (e.g. to insert a device containing credentials).
-  Either way, the <code>get()</code> method MUST NOT resolve immediately with <code>null</code> to avoid revealing
-  the lack of applicable credentials to the website.</p>
-       <p>Websites can only pass <code class="idl"><a data-link-type="idl" href="#dom-credentialmediationrequirement-conditional" id="ref-for-dom-credentialmediationrequirement-conditional⑤">conditional</a></code> into the <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get⑨">get()</a></code> method if all of the <a data-link-type="dfn" href="#credentialrequestoptions-relevant-credential-interface-objects" id="ref-for-credentialrequestoptions-relevant-credential-interface-objects②">credential
-  interfaces it refers to</a> have overridden <code class="idl"><a data-link-type="idl" href="#dom-credential-isconditionalmediationavailable" id="ref-for-dom-credential-isconditionalmediationavailable②">isConditionalMediationAvailable()</a></code> to return
-  a new <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#idl-promise" id="ref-for-idl-promise⑧">Promise</a></code> that <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#resolve" id="ref-for-resolve③">resolves</a> with <code>true</code>.</p>
-      <dt data-md><dfn class="dfn-paneled idl-code" data-dfn-for="CredentialMediationRequirement" data-dfn-type="enum-value" data-export data-lt="&quot;required&quot;|required" id="dom-credentialmediationrequirement-required"><code>required</code></dfn>
-      <dd data-md>
-       <p>The user agent will not hand over credentials without <a data-link-type="dfn" href="#user-mediated" id="ref-for-user-mediated④">user mediation</a>, even if the <a data-link-type="dfn" href="#origin-prevent-silent-access-flag" id="ref-for-origin-prevent-silent-access-flag②">prevent silent access flag</a> is unset for an origin.</p>
-       <p class="note" role="note"><span class="marker">Note:</span> This requirement is intended to support <a href="#example-mediation-require">reauthentication</a> or <a href="#example-mediation-switch">user-switching</a> scenarios. Further, the requirement is tied
-  to a specific operation, and does not affect the <a data-link-type="dfn" href="#origin-prevent-silent-access-flag" id="ref-for-origin-prevent-silent-access-flag③">prevent silent access flag</a> for the
-  origin. To set that flag, developers should call <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-preventsilentaccess" id="ref-for-dom-credentialscontainer-preventsilentaccess②">preventSilentAccess()</a></code>.</p>
-     </dl>
-    </div>
-    <h5 class="heading settled" data-level="2.3.2.1" id="mediation-examples"><span class="secno">2.3.2.1. </span><span class="content">Examples</span><a class="self-link" href="#mediation-examples"></a></h5>
-    <div class="example" id="example-mediation-silent">
-     <a class="self-link" href="#example-mediation-silent"></a> MegaCorp, Inc. wishes to seamlessly sign in users when possible. They can do so by calling <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get①⓪">get()</a></code> for all non-signed in users at some convinient point while a landing page is loading,
-    passing in a <code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-mediation" id="ref-for-dom-credentialrequestoptions-mediation④">mediation</a></code> member set to
-    "<code class="idl"><a data-link-type="idl" href="#dom-credentialmediationrequirement-silent" id="ref-for-dom-credentialmediationrequirement-silent②">silent</a></code>". This ensures that users who have opted-into
-    dropping the requirements for user mediation (as described in <a href="#user-mediation-requirement">§ 5.2 Requiring User Mediation</a>)
-    are signed in, and users who haven’t opted-into such behavior won’t be bothered with a confusing <a data-link-type="dfn" href="#credential-chooser" id="ref-for-credential-chooser④">credential chooser</a> popping up without context: 
-<pre>window.addEventListener('load', async () => {
-  const credentials = await navigator.<a class="idl-code" data-link-type="attribute" href="#dom-navigator-credentials" id="ref-for-dom-navigator-credentials②">credentials</a>.<a class="idl-code" data-link-type="method" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get①①">get</a>({
-    ...,
-    <a class="idl-code" data-link-type="dict-member" href="#dom-credentialrequestoptions-mediation" id="ref-for-dom-credentialrequestoptions-mediation⑤">mediation</a>: '<a class="idl-code" data-link-type="enum-value" href="#dom-credentialmediationrequirement-silent" id="ref-for-dom-credentialmediationrequirement-silent③">silent</a>'
-  });
-  if (credentials) {
-    // Hooray! Let’s sign the user in using these credentials!
-  }
-});
-</pre>
-    </div>
-    <div class="example" id="example-mediation-optional">
-     <a class="self-link" href="#example-mediation-optional"></a> When a user clicks "Sign In", MegaCorp, Inc. wishes to give them the smoothest possible
-    experience. If they have <a href="#user-mediation-requirement">opted-into</a> signing in without <a data-link-type="dfn" href="#user-mediated" id="ref-for-user-mediated⑤">user mediation</a>, and the user agent can unambigiously choose a credential, great! If
-    not, a <a data-link-type="dfn" href="#credential-chooser" id="ref-for-credential-chooser⑤">credential chooser</a> will be presented. 
-<pre>document.querySelector('#sign-in').addEventListener('click', async () => {
-  const credentials = await navigator.<a class="idl-code" data-link-type="attribute" href="#dom-navigator-credentials" id="ref-for-dom-navigator-credentials③">credentials</a>.<a class="idl-code" data-link-type="method" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get①②">get</a>({
-    ...,
-    <a class="idl-code" data-link-type="dict-member" href="#dom-credentialrequestoptions-mediation" id="ref-for-dom-credentialrequestoptions-mediation⑥">mediation</a>: '<a class="idl-code" data-link-type="enum-value" href="#dom-credentialmediationrequirement-optional" id="ref-for-dom-credentialmediationrequirement-optional②">optional</a>'
-  });
-  if (credentials) {
-    // Hooray! Let’s sign the user in using these credentials!
-  }
-});
-</pre>
-     <p class="note" role="note"><span class="marker">Note:</span> MegaCorp, Inc. could also have left off the <code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-mediation" id="ref-for-dom-credentialrequestoptions-mediation⑦">mediation</a></code> member entirely, as "<code class="idl"><a data-link-type="idl" href="#dom-credentialmediationrequirement-optional" id="ref-for-dom-credentialmediationrequirement-optional③">optional</a></code>" is its default.</p>
-    </div>
-    <div class="example" id="example-mediation-require">
-     <a class="self-link" href="#example-mediation-require"></a> MegaCorp, Inc. wishes to protect a sensitive operation by requiring a user to reauthenticate
-    before taking action. Even if a user has <a href="#user-mediation-requirement">opted-into</a> signing in
-    without <a data-link-type="dfn" href="#user-mediated" id="ref-for-user-mediated⑥">user mediation</a>, MegaCorp, Inc. can ensure that the user agent requires mediation
-    by calling <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get①③">get()</a></code> with a <code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-mediation" id="ref-for-dom-credentialrequestoptions-mediation⑧">mediation</a></code> member set to
-    "<code class="idl"><a data-link-type="idl" href="#dom-credentialmediationrequirement-required" id="ref-for-dom-credentialmediationrequirement-required①">required</a></code>": 
-     <p class="note" role="note"><span class="marker">Note:</span> Depending on the security model of the browser or the credential type, this may require
-    the user to authenticate themselves in some way, perhaps by entering a master password, scanning
-    a fingerprint, etc. before a credential is handed to the website.</p>
-<pre>document.querySelector('#important-form').addEventListener('submit', async () => {
-  const credentials = await navigator.<a class="idl-code" data-link-type="attribute" href="#dom-navigator-credentials" id="ref-for-dom-navigator-credentials④">credentials</a>.<a class="idl-code" data-link-type="method" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get①④">get</a>({
-    ...,
-    <a class="idl-code" data-link-type="dict-member" href="#dom-credentialrequestoptions-mediation" id="ref-for-dom-credentialrequestoptions-mediation⑨">mediation</a>: '<a class="idl-code" data-link-type="enum-value" href="#dom-credentialmediationrequirement-required" id="ref-for-dom-credentialmediationrequirement-required②">required</a>'
-  });
-  if (credentials) {
-    // Verify that |credentials| enables access, and cancel the submission
-    // if it doesn’t.
-  } else {
-    e.preventDefault();
-  }
-});
-</pre>
-    </div>
-    <div class="example" id="example-mediation-switch">
-     <a class="self-link" href="#example-mediation-switch"></a> MegaCorp, Inc. wishes to support signing into multiple user accounts at once. In order to ensure
-    that the user gets a chance to select a different credential, MegaCorp, Inc. can call <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get①⑤">get()</a></code> with a <code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-mediation" id="ref-for-dom-credentialrequestoptions-mediation①⓪">mediation</a></code> member set to
-    "<code class="idl"><a data-link-type="idl" href="#dom-credentialmediationrequirement-required" id="ref-for-dom-credentialmediationrequirement-required③">required</a></code>" in order to ensure that that credentials aren’t
-    returned automatically in response to clicking on an "Add account" button: 
-<pre>document.querySelector('#switch-button').addEventListener('click', e => {
-  var c = await navigator.<a class="idl-code" data-link-type="attribute" href="#dom-navigator-credentials" id="ref-for-dom-navigator-credentials⑤">credentials</a>.<a class="idl-code" data-link-type="method" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get①⑥">get</a>({
-    ...,
-    <a class="idl-code" data-link-type="dict-member" href="#dom-credentialrequestoptions-mediation" id="ref-for-dom-credentialrequestoptions-mediation①①">mediation</a>: '<a class="idl-code" data-link-type="enum-value" href="#dom-credentialmediationrequirement-required" id="ref-for-dom-credentialmediationrequirement-required④">required</a>'
-  });
-  if (c) {
-    // Sign the user in using |c|.
-  }
-});
-</pre>
-    </div>
-    <h3 class="heading settled" data-level="2.4" id="credentialcreationoptions-dictionary"><span class="secno">2.4. </span><span class="content">The <code>CredentialCreationOptions</code> Dictionary</span><a class="self-link" href="#credentialcreationoptions-dictionary"></a></h3>
-    <p>In order to create a <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential③②">Credential</a></code> via <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-create" id="ref-for-dom-credentialscontainer-create③">create()</a></code>, the caller specifies a
-  few parameters in a <code class="idl"><a data-link-type="idl" href="#dictdef-credentialcreationoptions" id="ref-for-dictdef-credentialcreationoptions⑥">CredentialCreationOptions</a></code> object.</p>
-    <p class="note" role="note"><span class="marker">Note:</span> The <code class="idl"><a data-link-type="idl" href="#dictdef-credentialcreationoptions" id="ref-for-dictdef-credentialcreationoptions⑦">CredentialCreationOptions</a></code> dictionary is an extension point. If and when new types of
-  credentials are introduced, they will add to the dictionary so they can be passed into the
-  creation method. See <a href="#implementation-extension">§ 8.2 Extension Points</a>, and the extensions introduced in this document: <a href="#passwordcredential-interface">§ 3.2 The PasswordCredential Interface</a> and <a href="#federatedcredential-interface">§ 4.1 The FederatedCredential Interface</a>.</p>
-<pre class="idl highlight def"><c- b>dictionary</c-> <dfn class="dfn-paneled idl-code" data-dfn-type="dictionary" data-export id="dictdef-credentialcreationoptions"><code><c- g>CredentialCreationOptions</c-></code></dfn> {
-  <a data-link-type="idl-name" href="https://dom.spec.whatwg.org/#abortsignal" id="ref-for-abortsignal②"><c- n>AbortSignal</c-></a> <a class="idl-code" data-link-type="dict-member" data-type="AbortSignal " href="#dom-credentialcreationoptions-signal" id="ref-for-dom-credentialcreationoptions-signal"><c- g>signal</c-></a>;
-};
-</pre>
-    <div>
-     <dl>
-      <dt data-md><dfn class="dfn-paneled idl-code" data-dfn-for="CredentialCreationOptions" data-dfn-type="dict-member" data-export id="dom-credentialcreationoptions-signal"><code>signal</code></dfn>, <span> of type <a data-link-type="idl-name" href="https://dom.spec.whatwg.org/#abortsignal" id="ref-for-abortsignal③">AbortSignal</a></span>
-      <dd data-md>
-       <p>This property lets the developer abort an ongoing <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-create" id="ref-for-dom-credentialscontainer-create④">create()</a></code> operation. An aborted operation may complete normally (generally if the abort was received
-  after the operation finished) or reject with an <a data-link-type="dfn" href="https://dom.spec.whatwg.org/#abortsignal-abort-reason" id="ref-for-abortsignal-abort-reason①">abort reason</a>.</p>
-     </dl>
-    </div>
-    <h3 class="heading settled" data-level="2.5" id="algorithms"><span class="secno">2.5. </span><span class="content">Algorithms</span><a class="self-link" href="#algorithms"></a></h3>
-    <h4 class="heading settled algorithm" data-algorithm="Request a Credential" data-level="2.5.1" id="algorithm-request"><span class="secno">2.5.1. </span><span class="content">Request a <code>Credential</code></span><a class="self-link" href="#algorithm-request"></a></h4>
-    <p>The <dfn class="dfn-paneled" data-dfn-type="abstract-op" data-export id="abstract-opdef-request-a-credential">Request a <code>Credential</code></dfn> algorithm accepts a <code class="idl"><a data-link-type="idl" href="#dictdef-credentialrequestoptions" id="ref-for-dictdef-credentialrequestoptions①①">CredentialRequestOptions</a></code> (<var>options</var>), and returns a <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#idl-promise" id="ref-for-idl-promise⑨">Promise</a></code> that resolves with a <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential③③">Credential</a></code> if one can be
-  unambigiously obtained, or with <code>null</code> if not.</p>
-    <ol class="algorithm">
-     <li data-md>
-      <p>Let <var>settings</var> be the <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#current-settings-object" id="ref-for-current-settings-object②">current settings object</a></p>
-     <li data-md>
-      <p class="assertion">Assert: <var>settings</var> is a <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#secure-context" id="ref-for-secure-context①">secure context</a>.</p>
-     <li data-md>
-      <p>If <code><var>options</var>.<code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-signal" id="ref-for-dom-credentialrequestoptions-signal①">signal</a></code></code> is <a data-link-type="dfn" href="https://dom.spec.whatwg.org/#abortsignal-aborted" id="ref-for-abortsignal-aborted">aborted</a>,
-  then return <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#a-promise-rejected-with" id="ref-for-a-promise-rejected-with">a promise rejected with</a> <code><var>options</var>.<code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-signal" id="ref-for-dom-credentialrequestoptions-signal②">signal</a></code></code>’s <a data-link-type="dfn" href="https://dom.spec.whatwg.org/#abortsignal-abort-reason" id="ref-for-abortsignal-abort-reason②">abort reason</a>.</p>
-     <li data-md>
-      <p>If <code><var>options</var>.<code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-mediation" id="ref-for-dom-credentialrequestoptions-mediation①②">mediation</a></code></code> is
-  "<code class="idl"><a data-link-type="idl" href="#dom-credentialmediationrequirement-conditional" id="ref-for-dom-credentialmediationrequirement-conditional⑥">conditional</a></code>":</p>
-      <ol>
-       <li data-md>
-        <p>For each <var>interface</var> in <var>options</var>’ <a data-link-type="dfn" href="#credentialrequestoptions-relevant-credential-interface-objects" id="ref-for-credentialrequestoptions-relevant-credential-interface-objects③">relevant credential interface objects</a>:</p>
-        <ol>
-         <li data-md>
-          <p>If <var>interface</var> does not support <code class="idl"><a data-link-type="idl" href="#dom-credentialmediationrequirement-conditional" id="ref-for-dom-credentialmediationrequirement-conditional⑦">conditional</a></code> <a data-link-type="dfn" href="#user-mediated" id="ref-for-user-mediated⑦">user mediation</a>, return <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#a-promise-rejected-with" id="ref-for-a-promise-rejected-with①">a promise rejected with</a> a "<code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#exceptiondef-typeerror" id="ref-for-exceptiondef-typeerror②">TypeError</a></code>" <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#idl-DOMException" id="ref-for-idl-DOMException">DOMException</a></code>.</p>
-        </ol>
-      </ol>
-     <li data-md>
-      <p>Let <var>p</var> be <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#a-new-promise" id="ref-for-a-new-promise">a new promise</a>.</p>
-     <li data-md>
-      <p>For each <var>interface</var> in <var>options</var>’ <a data-link-type="dfn" href="#credentialrequestoptions-relevant-credential-interface-objects" id="ref-for-credentialrequestoptions-relevant-credential-interface-objects④">relevant credential interface objects</a>:</p>
-      <ol>
-       <li data-md>
-        <p>If <var>settings</var>’ <a data-link-type="dfn" href="#active-credential-types" id="ref-for-active-credential-types">active credential types</a> <a data-link-type="dfn" href="https://infra.spec.whatwg.org/#list-contain" id="ref-for-list-contain">contains</a> <var>interface</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credential-type-slot" id="ref-for-dom-credential-type-slot④">[[type]]</a></code>, return <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#a-promise-rejected-with" id="ref-for-a-promise-rejected-with②">a promise rejected with</a> a "<code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#notallowederror" id="ref-for-notallowederror">NotAllowedError</a></code>" <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#idl-DOMException" id="ref-for-idl-DOMException①">DOMException</a></code>.</p>
-      </ol>
-     <li data-md>
-      <p>For each <var>interface</var> in <var>options</var>’ <a data-link-type="dfn" href="#credentialrequestoptions-relevant-credential-interface-objects" id="ref-for-credentialrequestoptions-relevant-credential-interface-objects⑤">relevant credential interface objects</a>:</p>
-      <ol>
-       <li data-md>
-        <p><a data-link-type="dfn" href="https://infra.spec.whatwg.org/#set-append" id="ref-for-set-append">Append</a> <var>interface</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credential-type-slot" id="ref-for-dom-credential-type-slot⑤">[[type]]</a></code> to <var>settings</var>’ <a data-link-type="dfn" href="#active-credential-types" id="ref-for-active-credential-types①">active credential types</a>.</p>
-      </ol>
-     <li data-md>
-      <p>Let <var>origin</var> be <var>settings</var>’ <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#concept-settings-object-origin" id="ref-for-concept-settings-object-origin④">origin</a>.</p>
-     <li data-md>
-      <p>Let <var>sameOriginWithAncestors</var> be <code>true</code> if <var>settings</var> is <a data-link-type="dfn" href="#same-origin-with-its-ancestors" id="ref-for-same-origin-with-its-ancestors④">same-origin with its
-  ancestors</a>, and <code>false</code> otherwise.</p>
-     <li data-md>
-      <p>If <var>options</var>[<code class="idl"><a data-link-type="idl" href="https://fedidcg.github.io/FedCM/#dom-credentialrequestoptions-identity" id="ref-for-dom-credentialrequestoptions-identity">identity</a></code>] <a data-link-type="dfn" href="https://infra.spec.whatwg.org/#map-exists" id="ref-for-map-exists">exists</a> and
-  if <var>settings</var>’ <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#concept-relevant-global" id="ref-for-concept-relevant-global②">relevant global object</a>'s <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/nav-history-apis.html#concept-document-window" id="ref-for-concept-document-window②">associated Document</a> is <strong>not</strong> <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/iframe-embed-object.html#allowed-to-use" id="ref-for-allowed-to-use">allowed to use</a> the <a data-link-type="dfn" href="https://fedidcg.github.io/FedCM/#identity-credentials-get" id="ref-for-identity-credentials-get">identity-credentials-get</a> <a data-link-type="dfn" href="https://www.w3.org/TR/permissions-policy-1/#policy-controlled-feature" id="ref-for-policy-controlled-feature">policy-controlled feature</a> return <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#a-promise-rejected-with" id="ref-for-a-promise-rejected-with③">a promise rejected with</a> a "<code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#notallowederror" id="ref-for-notallowederror①">NotAllowedError</a></code>" <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#idl-DOMException" id="ref-for-idl-DOMException②">DOMException</a></code>.</p>
-     <li data-md>
-      <p>If <var>options</var>[<code class="idl"><a data-link-type="idl" href="https://www.w3.org/TR/webauthn-3/#dom-credentialrequestoptions-publickey" id="ref-for-dom-credentialrequestoptions-publickey">publicKey</a></code>] <a data-link-type="dfn" href="https://infra.spec.whatwg.org/#map-exists" id="ref-for-map-exists①">exists</a> and
-  if <var>settings</var>’ <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#concept-relevant-global" id="ref-for-concept-relevant-global③">relevant global object</a>'s <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/nav-history-apis.html#concept-document-window" id="ref-for-concept-document-window③">associated Document</a> is <strong>not</strong> <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/iframe-embed-object.html#allowed-to-use" id="ref-for-allowed-to-use①">allowed to use</a> the <a data-link-type="dfn" href="https://www.w3.org/TR/webauthn-3/#publickey-credentials-get-feature" id="ref-for-publickey-credentials-get-feature">publickey-credentials-get</a> <a data-link-type="dfn" href="https://www.w3.org/TR/permissions-policy-1/#policy-controlled-feature" id="ref-for-policy-controlled-feature①">policy-controlled feature</a> return <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#a-promise-rejected-with" id="ref-for-a-promise-rejected-with④">a promise rejected with</a> a "<code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#notallowederror" id="ref-for-notallowederror②">NotAllowedError</a></code>" <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#idl-DOMException" id="ref-for-idl-DOMException③">DOMException</a></code>.</p>
-      <p class="note" role="note"><span class="marker">Note:</span> <a class="idl-code" data-link-type="const" href="#dom-credential-type-password" id="ref-for-dom-credential-type-password"><code>password</code></a> and <a class="idl-code" data-link-type="const" href="#dom-federatedcredential-federated" id="ref-for-dom-federatedcredential-federated"><code>federated</code></a> <a data-link-type="dfn" href="#credential-type-registry-credential-type" id="ref-for-credential-type-registry-credential-type⑨">credential types</a> are not presently treated as <a data-link-type="dfn" href="https://www.w3.org/TR/permissions-policy-1/#policy-controlled-feature" id="ref-for-policy-controlled-feature②">policy-controlled features</a>, although this may change in the future.</p>
-     <li data-md>
-      <p>Run the following steps <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/infrastructure.html#in-parallel" id="ref-for-in-parallel③">in parallel</a>:</p>
-      <ol>
-       <li data-md>
-        <p>Let <var>credentials</var> be the result of <a data-link-type="abstract-op" href="#abstract-opdef-collect-credentials-from-the-credential-store" id="ref-for-abstract-opdef-collect-credentials-from-the-credential-store">collecting <code>Credential</code>s from the credential store</a>, given <var>origin</var>, <var>options</var>, and <var>sameOriginWithAncestors</var>.</p>
-       <li data-md>
-        <p>If <var>credentials</var> is an <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-exception" id="ref-for-dfn-exception">exception</a>, <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#reject" id="ref-for-reject">reject</a> <var>p</var> with <var>credentials</var>.</p>
-       <li data-md>
-        <p>If all of the following statements are true, resolve <var>p</var> with <var>credentials</var>[0] and
-  skip the remaining steps:</p>
-        <ol>
-         <li data-md>
-          <p><var>credentials</var>’ <a data-link-type="dfn" href="https://infra.spec.whatwg.org/#list-size" id="ref-for-list-size">size</a> is 1</p>
-         <li data-md>
-          <p><var>origin</var> does not <a data-link-type="dfn" href="#origin-requires-user-mediation" id="ref-for-origin-requires-user-mediation①">require user mediation</a></p>
-         <li data-md>
-          <p><var>options</var> is <a data-link-type="dfn" href="#credentialrequestoptions-matchable-a-priori" id="ref-for-credentialrequestoptions-matchable-a-priori①">matchable <i lang="la">a priori</i></a>.</p>
-         <li data-md>
-          <p><var>options</var>.<code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-mediation" id="ref-for-dom-credentialrequestoptions-mediation①③">mediation</a></code> is not
-  "<code class="idl"><a data-link-type="idl" href="#dom-credentialmediationrequirement-required" id="ref-for-dom-credentialmediationrequirement-required⑤">required</a></code>".</p>
-         <li data-md>
-          <p><var>options</var>.<code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-mediation" id="ref-for-dom-credentialrequestoptions-mediation①④">mediation</a></code> is not
-  "<code class="idl"><a data-link-type="idl" href="#dom-credentialmediationrequirement-conditional" id="ref-for-dom-credentialmediationrequirement-conditional⑧">conditional</a></code>".</p>
-        </ol>
-        <p class="issue" id="issue-e720ed3b"><a class="self-link" href="#issue-e720ed3b"></a> This might be the wrong model. It would be nice to support a site that wished
-  to accept either username/passwords or webauthn-style credentials without forcing
-  a chooser for those users who use the former, and who wish to remain signed in.</p>
-       <li data-md>
-        <p>If <var>options</var>’ <code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-mediation" id="ref-for-dom-credentialrequestoptions-mediation①⑤">mediation</a></code> is
-  "<code class="idl"><a data-link-type="idl" href="#dom-credentialmediationrequirement-silent" id="ref-for-dom-credentialmediationrequirement-silent④">silent</a></code>", <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#resolve" id="ref-for-resolve④">resolve</a> <var>p</var> with <code>null</code>, and skip
-  the remaining steps.</p>
-       <li data-md>
-        <p>Let <var>result</var> be the result of <a data-link-type="abstract-op" href="#abstract-opdef-ask-the-user-to-choose-a-credential" id="ref-for-abstract-opdef-ask-the-user-to-choose-a-credential">asking the user to
-  choose a <code>Credential</code></a>, given <var>options</var> and <var>credentials</var>.</p>
-       <li data-md>
-        <p>If <var>result</var> is an <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-object" id="ref-for-dfn-interface-object⑧">interface object</a>:</p>
-        <ol>
-         <li data-md>
-          <p>Set <var>result</var> to the result of executing <var>result</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credential-discoverfromexternalsource-slot" id="ref-for-dom-credential-discoverfromexternalsource-slot①">[[DiscoverFromExternalSource]](origin, options, sameOriginWithAncestors)</a></code>,
-  given <var>origin</var>, <var>options</var>, and <var>sameOriginWithAncestors</var>.</p>
-          <p>If that threw an <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-exception" id="ref-for-dfn-exception①">exception</a>:</p>
-          <ol>
-           <li data-md>
-            <p>Let <var>e</var> be the thrown <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-exception" id="ref-for-dfn-exception②">exception</a>.</p>
-           <li data-md>
-            <p><a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#queue-a-task" id="ref-for-queue-a-task">Queue a task</a> on <var>global</var>’s <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#dom-manipulation-task-source" id="ref-for-dom-manipulation-task-source">DOM manipulation task source</a> to run the following substeps:</p>
-            <ol>
-             <li data-md>
-              <p><a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#reject" id="ref-for-reject①">Reject</a> <var>p</var> with <var>e</var>.</p>
-            </ol>
-           <li data-md>
-            <p>Terminate these substeps.</p>
-          </ol>
-        </ol>
-       <li data-md>
-        <p class="assertion">Assert: <var>result</var> is <code>null</code>, or a <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential③④">Credential</a></code>.</p>
-       <li data-md>
-        <p>If <var>result</var> is a <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential③⑤">Credential</a></code>, <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#resolve" id="ref-for-resolve⑤">resolve</a> <var>p</var> with <var>result</var>.</p>
-       <li data-md>
-        <p>If <var>result</var> is <code>null</code> and <var>options</var>.<code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-mediation" id="ref-for-dom-credentialrequestoptions-mediation①⑥">mediation</a></code> is not <code class="idl"><a data-link-type="idl" href="#dom-credentialmediationrequirement-conditional" id="ref-for-dom-credentialmediationrequirement-conditional⑨">conditional</a></code>, <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#resolve" id="ref-for-resolve⑥">resolve</a> <var>p</var> with <var>result</var>.</p>
-        <p class="note" role="note"><span class="marker">Note:</span> if <var>options</var>.<code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-mediation" id="ref-for-dom-credentialrequestoptions-mediation①⑦">mediation</a></code> is <code class="idl"><a data-link-type="idl" href="#dom-credentialmediationrequirement-conditional" id="ref-for-dom-credentialmediationrequirement-conditional①⓪">conditional</a></code> and a <code>null</code> credential is discovered,
-  promise <var>p</var> is not resolved.</p>
-      </ol>
-     <li data-md>
-      <p><a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-perform-steps-once-promise-is-settled" id="ref-for-dfn-perform-steps-once-promise-is-settled">React</a> to <var>p</var>:</p>
-      <ol>
-       <li data-md>
-        <p>For each <var>interface</var> in <var>options</var>’ <a data-link-type="dfn" href="#credentialrequestoptions-relevant-credential-interface-objects" id="ref-for-credentialrequestoptions-relevant-credential-interface-objects⑥">relevant credential interface objects</a>:</p>
-        <ol>
-         <li data-md>
-          <p><a data-link-type="dfn" href="https://infra.spec.whatwg.org/#list-remove" id="ref-for-list-remove">Remove</a> <var>interface</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credential-type-slot" id="ref-for-dom-credential-type-slot⑥">[[type]]</a></code> from <var>settings</var>’ <a data-link-type="dfn" href="#active-credential-types" id="ref-for-active-credential-types②">active credential types</a>.</p>
-        </ol>
-      </ol>
-     <li data-md>
-      <p>Return <var>p</var>.</p>
-    </ol>
-    <h4 class="heading settled algorithm" data-algorithm="Collect Credentials from the credential store" data-level="2.5.2" id="algorithm-collect-known"><span class="secno">2.5.2. </span><span class="content">Collect <code>Credential</code>s from the credential store</span><a class="self-link" href="#algorithm-collect-known"></a></h4>
-    <p>Given an <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#concept-settings-object-origin" id="ref-for-concept-settings-object-origin⑤">origin</a> (<var>origin</var>),
-  a <code class="idl"><a data-link-type="idl" href="#dictdef-credentialrequestoptions" id="ref-for-dictdef-credentialrequestoptions①②">CredentialRequestOptions</a></code> (<var>options</var>), and a boolean which is <code>true</code> iff the calling
-  context is <a data-link-type="dfn" href="#same-origin-with-its-ancestors" id="ref-for-same-origin-with-its-ancestors⑤">same-origin with its ancestors</a> (<var>sameOriginWithAncestors</var>), the user agent may <dfn class="dfn-paneled" data-dfn-type="abstract-op" data-export data-local-lt="collect local" id="abstract-opdef-collect-credentials-from-the-credential-store">collect <code>Credential</code>s from the credential store</dfn>,
-  returning a set of <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential③⑥">Credential</a></code> objects stored by the user agent locally that match <var>options</var>’
-  filter. If no such <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential③⑦">Credential</a></code> objects are known, the returned set will be empty:</p>
-    <ol class="algorithm">
-     <li data-md>
-      <p>Let <var>possible matches</var> be an empty set.</p>
-     <li data-md>
-      <p>For each <var>interface</var> in <var>options</var>’ <a data-link-type="dfn" href="#credentialrequestoptions-relevant-credential-interface-objects" id="ref-for-credentialrequestoptions-relevant-credential-interface-objects⑦">relevant credential interface objects</a>:</p>
-      <ol>
-       <li data-md>
-        <p>Let <var>r</var> be the result of executing <var>interface</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credential-collectfromcredentialstore-slot" id="ref-for-dom-credential-collectfromcredentialstore-slot①">[[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)</a></code> internal method on <var>origin</var>, <var>options</var>, and <var>sameOriginWithAncestors</var>. If that threw an <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-exception" id="ref-for-dfn-exception③">exception</a>, rethrow that exception.</p>
-       <li data-md>
-        <p class="assertion">Assert: <var>r</var> is a list of <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-object" id="ref-for-dfn-interface-object⑨">interface objects</a>.</p>
-       <li data-md>
-        <p>For each <var>c</var> in <var>r</var>:</p>
-        <ol>
-         <li data-md>
-          <p><a data-link-type="dfn" href="https://infra.spec.whatwg.org/#set-append" id="ref-for-set-append①">Append</a> <var>c</var> to <var>possible matches</var>.</p>
-        </ol>
-      </ol>
-     <li data-md>
-      <p>Return <var>possible matches</var>.</p>
-    </ol>
-    <h4 class="heading settled algorithm" data-algorithm="Store a Credential" data-level="2.5.3" id="algorithm-store"><span class="secno">2.5.3. </span><span class="content">Store a <code>Credential</code></span><a class="self-link" href="#algorithm-store"></a></h4>
-    <p>The <dfn class="dfn-paneled" data-dfn-type="abstract-op" data-export id="abstract-opdef-store-a-credential">Store a <code>Credential</code></dfn> algorithm accepts a <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential③⑧">Credential</a></code> (<var>credential</var>), and returns a <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#idl-promise" id="ref-for-idl-promise①⓪">Promise</a></code> which resolves once the object is persisted to the <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store⑨">credential store</a>.</p>
-    <ol class="algorithm">
-     <li data-md>
-      <p>Let <var>settings</var> be the <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#current-settings-object" id="ref-for-current-settings-object③">current settings object</a></p>
-     <li data-md>
-      <p class="assertion">Assert: <var>settings</var> is a <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#secure-context" id="ref-for-secure-context②">secure context</a>.</p>
-     <li data-md>
-      <p>Let <var>sameOriginWithAncestors</var> be <code>true</code> if the <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#current-settings-object" id="ref-for-current-settings-object④">current settings object</a> is <a data-link-type="dfn" href="#same-origin-with-its-ancestors" id="ref-for-same-origin-with-its-ancestors⑥">same-origin
-  with its ancestors</a>, and <code>false</code> otherwise.</p>
-     <li data-md>
-      <p>Let <var>p</var> be <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#a-new-promise" id="ref-for-a-new-promise①">a new promise</a>.</p>
-     <li data-md>
-      <p>If <var>settings</var>’ <a data-link-type="dfn" href="#active-credential-types" id="ref-for-active-credential-types③">active credential types</a> <a data-link-type="dfn" href="https://infra.spec.whatwg.org/#list-contain" id="ref-for-list-contain①">contains</a> <var>credential</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credential-type-slot" id="ref-for-dom-credential-type-slot⑦">[[type]]</a></code>, return <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#a-promise-rejected-with" id="ref-for-a-promise-rejected-with⑤">a promise rejected with</a> a "<code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#notallowederror" id="ref-for-notallowederror③">NotAllowedError</a></code>" <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#idl-DOMException" id="ref-for-idl-DOMException④">DOMException</a></code>.</p>
-     <li data-md>
-      <p><a data-link-type="dfn" href="https://infra.spec.whatwg.org/#set-append" id="ref-for-set-append②">Append</a> <var>credential</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credential-type-slot" id="ref-for-dom-credential-type-slot⑧">[[type]]</a></code> to <var>settings</var>’ <a data-link-type="dfn" href="#active-credential-types" id="ref-for-active-credential-types④">active credential types</a>.</p>
-     <li data-md>
-      <p>Run the following steps <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/infrastructure.html#in-parallel" id="ref-for-in-parallel④">in parallel</a>:</p>
-      <ol>
-       <li data-md>
-        <p>Execute <var>credential</var>’s <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-object" id="ref-for-dfn-interface-object①⓪">interface object</a>'s <code class="idl"><a data-link-type="idl" href="#dom-credential-store-slot" id="ref-for-dom-credential-store-slot①">[[Store]](credential, sameOriginWithAncestors)</a></code> internal method on <var>credential</var> and <var>sameOriginWithAncestors</var>.</p>
-        <p>If that threw an <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-exception" id="ref-for-dfn-exception④">exception</a>:</p>
-        <ol>
-         <li data-md>
-          <p>Let <var>e</var> be the thrown <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-exception" id="ref-for-dfn-exception⑤">exception</a>.</p>
-         <li data-md>
-          <p><a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#queue-a-task" id="ref-for-queue-a-task①">Queue a task</a> on <var>global</var>’s <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#dom-manipulation-task-source" id="ref-for-dom-manipulation-task-source①">DOM manipulation task source</a> to
-  run the following substeps:</p>
-          <ol>
-           <li data-md>
-            <p><a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#reject" id="ref-for-reject②">Reject</a> <var>p</var> with <var>e</var>.</p>
-          </ol>
-        </ol>
-        <p>Otherwise, <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#resolve" id="ref-for-resolve⑦">resolve</a> <var>p</var> with <code>undefined</code>.</p>
-      </ol>
-     <li data-md>
-      <p><a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-perform-steps-once-promise-is-settled" id="ref-for-dfn-perform-steps-once-promise-is-settled①">React</a> to <var>p</var>:</p>
-      <ol>
-       <li data-md>
-        <p><a data-link-type="dfn" href="https://infra.spec.whatwg.org/#list-remove" id="ref-for-list-remove①">Remove</a> <var>credential</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credential-type-slot" id="ref-for-dom-credential-type-slot⑨">[[type]]</a></code> from <var>settings</var>’ <a data-link-type="dfn" href="#active-credential-types" id="ref-for-active-credential-types⑤">active credential types</a>.</p>
-      </ol>
-     <li data-md>
-      <p>Return <var>p</var>.</p>
-    </ol>
-    <h4 class="heading settled algorithm" data-algorithm="Create a Credential" data-level="2.5.4" id="algorithm-create"><span class="secno">2.5.4. </span><span class="content">Create a <code>Credential</code></span><a class="self-link" href="#algorithm-create"></a></h4>
-    <p>The <dfn class="dfn-paneled" data-dfn-type="abstract-op" data-export id="abstract-opdef-create-a-credential">Create a <code>Credential</code></dfn> algorithm accepts a <code class="idl"><a data-link-type="idl" href="#dictdef-credentialcreationoptions" id="ref-for-dictdef-credentialcreationoptions⑧">CredentialCreationOptions</a></code> (<var>options</var>), and returns a <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#idl-promise" id="ref-for-idl-promise①①">Promise</a></code> which resolves with a <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential③⑨">Credential</a></code> if one can be created
-  using the options provided, or <code>null</code> if no <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential④⓪">Credential</a></code> can be created. In exceptional
-  circumstances, the <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#idl-promise" id="ref-for-idl-promise①②">Promise</a></code> may reject with an appropriate exception:</p>
-    <ol class="algorithm">
-     <li data-md>
-      <p>Let <var>settings</var> be the <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#current-settings-object" id="ref-for-current-settings-object⑤">current settings object</a>.</p>
-     <li data-md>
-      <p class="assertion">Assert: <var>settings</var> is a <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#secure-context" id="ref-for-secure-context③">secure context</a>.</p>
-     <li data-md>
-      <p>Let <var>global</var> be <var>settings</var>’ <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#concept-settings-object-global" id="ref-for-concept-settings-object-global②">global object</a>.</p>
-     <li data-md>
-      <p>Let <var>sameOriginWithAncestors</var> be <code>true</code> if the <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#current-settings-object" id="ref-for-current-settings-object⑥">current settings object</a> is <a data-link-type="dfn" href="#same-origin-with-its-ancestors" id="ref-for-same-origin-with-its-ancestors⑦">same-origin
-  with its ancestors</a>, and <code>false</code> otherwise.</p>
-     <li data-md>
-      <p>If <var>options</var>[<code class="idl"><a data-link-type="idl" href="https://www.w3.org/TR/webauthn-3/#dom-credentialcreationoptions-publickey" id="ref-for-dom-credentialcreationoptions-publickey">publicKey</a></code>] <a data-link-type="dfn" href="https://infra.spec.whatwg.org/#map-exists" id="ref-for-map-exists②">exists</a> and
-  if <var>settings</var>’ <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#concept-relevant-global" id="ref-for-concept-relevant-global④">relevant global object</a>'s <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/nav-history-apis.html#concept-document-window" id="ref-for-concept-document-window④">associated Document</a> is <strong>not</strong> <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/iframe-embed-object.html#allowed-to-use" id="ref-for-allowed-to-use②">allowed to use</a> the <a data-link-type="dfn" href="https://www.w3.org/TR/webauthn-3/#publickey-credentials-create-feature" id="ref-for-publickey-credentials-create-feature">publickey-credentials-create</a> <a data-link-type="dfn" href="https://www.w3.org/TR/permissions-policy-1/#policy-controlled-feature" id="ref-for-policy-controlled-feature③">policy-controlled feature</a> return <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#a-promise-rejected-with" id="ref-for-a-promise-rejected-with⑥">a promise rejected with</a> a "<code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#notallowederror" id="ref-for-notallowederror④">NotAllowedError</a></code>" <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#idl-DOMException" id="ref-for-idl-DOMException⑤">DOMException</a></code>.</p>
-      <p class="note" role="note"><span class="marker">Note:</span> <a class="idl-code" data-link-type="const" href="#dom-credential-type-password" id="ref-for-dom-credential-type-password①"><code>password</code></a> and <a class="idl-code" data-link-type="const" href="#dom-federatedcredential-federated" id="ref-for-dom-federatedcredential-federated①"><code>federated</code></a> <a data-link-type="dfn" href="#credential-type-registry-credential-type" id="ref-for-credential-type-registry-credential-type①⓪">credential types</a> are not presently treated as <a data-link-type="dfn" href="https://www.w3.org/TR/permissions-policy-1/#policy-controlled-feature" id="ref-for-policy-controlled-feature④">policy-controlled features</a>, although this may change in the future.</p>
-     <li data-md>
-      <p>Let <var>interfaces</var> be the <a data-link-type="dfn" href="https://infra.spec.whatwg.org/#ordered-set" id="ref-for-ordered-set②">set</a> of <var>options</var>’ <a data-link-type="dfn" href="#credentialrequestoptions-relevant-credential-interface-objects" id="ref-for-credentialrequestoptions-relevant-credential-interface-objects⑧">relevant credential interface objects</a>.</p>
-     <li data-md>
-      <p>Return <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#a-promise-rejected-with" id="ref-for-a-promise-rejected-with⑦">a promise rejected with</a> <code>NotSupportedError</code> if any of the following statements
-  are true:</p>
-      <ol>
-       <li data-md>
-        <p><var>global</var> does not have an <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/nav-history-apis.html#concept-document-window" id="ref-for-concept-document-window⑤">associated Document</a>.</p>
-       <li data-md>
-        <p><var>interfaces</var>’ <a data-link-type="dfn" href="https://infra.spec.whatwg.org/#list-size" id="ref-for-list-size①">size</a> is greater than 1.</p>
-        <p class="note" role="note"><span class="marker">Note:</span> It may be reasonable at some point in the future to loosen this restriction, and
-  allow the user agent to help the user choose among one of many potential credential
-  types in order to support a "sign-up" use case. For the moment, though, we’re punting
-  on that by restricting the dictionary to a single entry.</p>
-      </ol>
-     <li data-md>
-      <p>If <code><var>options</var>.<code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-signal" id="ref-for-dom-credentialrequestoptions-signal③">signal</a></code></code> is <a data-link-type="dfn" href="https://dom.spec.whatwg.org/#abortsignal-aborted" id="ref-for-abortsignal-aborted①">aborted</a>,
-  then return <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#a-promise-rejected-with" id="ref-for-a-promise-rejected-with⑧">a promise rejected with</a> <code><var>options</var>.<code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-signal" id="ref-for-dom-credentialrequestoptions-signal④">signal</a></code></code>’s <a data-link-type="dfn" href="https://dom.spec.whatwg.org/#abortsignal-abort-reason" id="ref-for-abortsignal-abort-reason③">abort reason</a>.</p>
-     <li data-md>
-      <p>Let <var>p</var> be <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#a-new-promise" id="ref-for-a-new-promise②">a new promise</a>.</p>
-     <li data-md>
-      <p>Let <var>type</var> be <var>interfaces</var>[0]'s <code class="idl"><a data-link-type="idl" href="#dom-credential-type-slot" id="ref-for-dom-credential-type-slot①⓪">[[type]]</a></code>.</p>
-     <li data-md>
-      <p>If <var>settings</var>’ <a data-link-type="dfn" href="#active-credential-types" id="ref-for-active-credential-types⑥">active credential types</a> <a data-link-type="dfn" href="https://infra.spec.whatwg.org/#list-contain" id="ref-for-list-contain②">contains</a> <var>type</var>, return <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#a-promise-rejected-with" id="ref-for-a-promise-rejected-with⑨">a promise rejected with</a> a "<code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#notallowederror" id="ref-for-notallowederror⑤">NotAllowedError</a></code>" <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#idl-DOMException" id="ref-for-idl-DOMException⑥">DOMException</a></code>.</p>
-     <li data-md>
-      <p><a data-link-type="dfn" href="https://infra.spec.whatwg.org/#set-append" id="ref-for-set-append③">Append</a> <var>type</var> to <var>settings</var>’ <a data-link-type="dfn" href="#active-credential-types" id="ref-for-active-credential-types⑦">active credential types</a>.</p>
-     <li data-md>
-      <p>Let <var>origin</var> be <var>settings</var>’s <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#concept-settings-object-origin" id="ref-for-concept-settings-object-origin⑥">origin</a>.</p>
-     <li data-md>
-      <p>Run the following steps <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/infrastructure.html#in-parallel" id="ref-for-in-parallel⑤">in parallel</a>:</p>
-      <ol>
-       <li data-md>
-        <p>Let <var>r</var> be the result of executing <var>interfaces</var>[0]'s <code class="idl"><a data-link-type="idl" href="#dom-credential-create-slot" id="ref-for-dom-credential-create-slot①">[[Create]](origin, options, sameOriginWithAncestors)</a></code> internal method on <var>origin</var>, <var>options</var>, and <var>sameOriginWithAncestors</var>.</p>
-        <p>If that threw an <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-exception" id="ref-for-dfn-exception⑥">exception</a>:</p>
-        <ol>
-         <li data-md>
-          <p>Let <var>e</var> be the thrown <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-exception" id="ref-for-dfn-exception⑦">exception</a>.</p>
-         <li data-md>
-          <p><a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#queue-a-task" id="ref-for-queue-a-task②">Queue a task</a> on <var>global</var>’s <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#dom-manipulation-task-source" id="ref-for-dom-manipulation-task-source②">DOM manipulation task source</a> to run the
- following substeps:</p>
-          <ol>
-           <li data-md>
-            <p><a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#reject" id="ref-for-reject③">Reject</a> <var>p</var> with <var>e</var>.</p>
-          </ol>
-         <li data-md>
-          <p>Terminate these substeps.</p>
-        </ol>
-       <li data-md>
-        <p>If <var>r</var> is a <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential④①">Credential</a></code> or <code>null</code>, <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#resolve" id="ref-for-resolve⑧">resolve</a> <var>p</var> with <var>r</var>, and terminate these substeps.</p>
-       <li data-md>
-        <p class="assertion">Assert: <var>r</var> is an algorithm (as defined in <a href="#algorithm-create-cred">§ 2.2.1.4 [[Create]] internal method</a>).</p>
-       <li data-md>
-        <p><a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#queue-a-task" id="ref-for-queue-a-task③">Queue a task</a> on <var>global</var>’s <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#dom-manipulation-task-source" id="ref-for-dom-manipulation-task-source③">DOM manipulation task source</a> to run the following substeps:</p>
-        <ol>
-         <li data-md>
-          <p><a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#resolve" id="ref-for-resolve⑨">Resolve</a> <var>p</var> with the result of <a data-link-type="dfn" href="https://www.w3.org/2001/tag/doc/promises-guide#should-promise-call" id="ref-for-should-promise-call">promise-calling</a> <var>r</var> given <var>global</var>.</p>
-        </ol>
-      </ol>
-     <li data-md>
-      <p><a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-perform-steps-once-promise-is-settled" id="ref-for-dfn-perform-steps-once-promise-is-settled②">React</a> to <var>p</var>:</p>
-      <ol>
-       <li data-md>
-        <p><a data-link-type="dfn" href="https://infra.spec.whatwg.org/#list-remove" id="ref-for-list-remove②">Remove</a> <var>type</var> from <var>settings</var>’ <a data-link-type="dfn" href="#active-credential-types" id="ref-for-active-credential-types⑧">active credential types</a>.</p>
-      </ol>
-     <li data-md>
-      <p>Return <var>p</var>.</p>
-    </ol>
-    <h4 class="heading settled algorithm" data-algorithm="Prevent Silent Access" data-level="2.5.5" id="algorithm-prevent-silent-access"><span class="secno">2.5.5. </span><span class="content">Prevent Silent Access</span><a class="self-link" href="#algorithm-prevent-silent-access"></a></h4>
-    <p>The <dfn class="dfn-paneled" data-dfn-type="abstract-op" data-export id="abstract-opdef-prevent-silent-access">Prevent Silent Access</dfn> algorithm accepts an <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#environment-settings-object" id="ref-for-environment-settings-object⑥">environment settings
-  object</a> (<var>settings</var>), and returns a <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#idl-promise" id="ref-for-idl-promise①③">Promise</a></code> which resolves once the <code>prevent silent access</code> flag is persisted to the <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store①⓪">credential store</a>.</p>
-    <ol class="algorithm">
-     <li data-md>
-      <p>Let <var>origin</var> be <var>settings</var>’ <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#concept-settings-object-origin" id="ref-for-concept-settings-object-origin⑦">origin</a>.</p>
-     <li data-md>
-      <p>Let <var>p</var> be <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#a-new-promise" id="ref-for-a-new-promise③">a new promise</a></p>
-     <li data-md>
-      <p>Run the following seps <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/infrastructure.html#in-parallel" id="ref-for-in-parallel⑥">in parallel</a>:</p>
-      <ol>
-       <li data-md>
-        <p>Set <var>origin</var>’s <a data-link-type="dfn" href="#origin-prevent-silent-access-flag" id="ref-for-origin-prevent-silent-access-flag④"><code>prevent silent access</code> flag</a> in the <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store①①">credential store</a>.</p>
-       <li data-md>
-        <p><a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#resolve" id="ref-for-resolve①⓪">Resolve</a> <var>p</var> with <code>undefined</code>.</p>
-      </ol>
-     <li data-md>
-      <p>Return <var>p</var>.</p>
-    </ol>
-   </section>
-   <section>
-    <h2 class="heading settled" data-level="3" id="passwords"><span class="secno">3. </span><span class="content">Password Credentials</span><a class="self-link" href="#passwords"></a></h2>
-    <p>For good or for ill, many websites rely on username/password pairs as an authentication mechanism.
-  The <code class="idl"><a data-link-type="idl" href="#passwordcredential" id="ref-for-passwordcredential②">PasswordCredential</a></code> interface is a <a data-link-type="dfn" href="#concept-credential" id="ref-for-concept-credential①⑤">credential</a> meant to enable this use case, storing
-  both a username and password, as well as metadata that can help a user choose the right account
-  from within a <a data-link-type="dfn" href="#credential-chooser" id="ref-for-credential-chooser⑥">credential chooser</a>.</p>
-    <h3 class="heading settled" data-level="3.1" id="password-examples"><span class="secno">3.1. </span><span class="content">Examples</span><a class="self-link" href="#password-examples"></a></h3>
-    <h4 class="heading settled" data-level="3.1.1" id="examples-password-signin"><span class="secno">3.1.1. </span><span class="content">Password-based Sign-in</span><a class="self-link" href="#examples-password-signin"></a></h4>
-    <div class="example" id="example-1e3287d5">
-     <a class="self-link" href="#example-1e3287d5"></a> MegaCorp, Inc. supports passwords, and can use <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get①⑦">navigator.credentials.get()</a></code> to obtain
-    username/password pairs from a user’s <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store①②">credential store</a>: 
-<pre>navigator.<a class="idl-code" data-link-type="attribute" href="#dom-navigator-credentials" id="ref-for-dom-navigator-credentials⑥">credentials</a>
-  .<a data-link-type="idl" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get①⑧">get</a>({ '<a class="idl-code" data-link-type="dict-member" href="#dom-credentialrequestoptions-password" id="ref-for-dom-credentialrequestoptions-password">password</a>': true })
-  .then(credential => {
-    if (!credential) {
-      // The user either doesn’t have credentials for this site, or
-      // refused to share them. Insert some code here to fall back to
-      // a basic login form.
-      return;
-    }
-    if (credential.<a class="idl-code" data-link-type="attribute" href="#dom-credential-type" id="ref-for-dom-credential-type①">type</a> == '<a class="idl-code" data-link-type="const" href="#dom-credential-type-password" id="ref-for-dom-credential-type-password②">password</a>') {
-      var form = new FormData();
-      form.append('username_field', credential.id);
-      form.append('password_field', credential.password);
-      var opt = {
-        method: 'POST',
-        body: form,
-        credentials: 'include'  // Send cookies.
-      };
-      fetch('https://example.com/loginEndpoint', opt)
-        .then(function (response) {
-          if (/* |response| indicates a successful login */) {
-            // Record that the credential was effective. See note below.
-            navigator.<a class="idl-code" data-link-type="attribute" href="#dom-navigator-credentials" id="ref-for-dom-navigator-credentials⑦">credentials</a>.<a data-link-type="idl" href="#dom-credentialscontainer-store" id="ref-for-dom-credentialscontainer-store④">store</a>(credential);
-            // Notify the user that sign-in succeeded! Do amazing, signed-in things!
-            // Maybe navigate to a landing page via location.href =
-            // '/signed-in-experience'?
-          } else {
-            // Insert some code here to fall back to a basic login form.
-          }
-        });
-    }
-  });
-</pre>
-     <p>Alternatively, the website could just copy the credential data into a <code><a data-link-type="element" href="https://html.spec.whatwg.org/multipage/forms.html#the-form-element" id="ref-for-the-form-element">form</a></code> and call <code class="idl"><a data-link-type="idl" href="https://html.spec.whatwg.org/multipage/forms.html#dom-form-submit" id="ref-for-dom-form-submit">submit()</a></code> on the form:</p>
-<pre>navigator.<a class="idl-code" data-link-type="attribute" href="#dom-navigator-credentials" id="ref-for-dom-navigator-credentials⑧">credentials</a>
-  .<a data-link-type="idl" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get①⑨">get</a>({ '<a class="idl-code" data-link-type="dict-member" href="#dom-credentialrequestoptions-password" id="ref-for-dom-credentialrequestoptions-password①">password</a>': true })
-  .then(credential => {
-    if (!credential) {
-      return; // as above...
-    }
-    if (credential.<a class="idl-code" data-link-type="attribute" href="#dom-credential-type" id="ref-for-dom-credential-type②">type</a> === '<a class="idl-code" data-link-type="const" href="#password-literal">password</a>') {
-      document.querySelector('input[name=username_field]').value =
-        credential.id;
-      document.querySelector('input[name=password_field]').value =
-        credential.password;
-      document.getElementById('myform').submit();
-    }
-  });
-</pre>
-     <p>Note that the former method is much preferred, as it contains an explicit call
-    to <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-store" id="ref-for-dom-credentialscontainer-store⑤">store()</a></code> and saves the credentials. The <code><a data-link-type="element" href="https://html.spec.whatwg.org/multipage/forms.html#the-form-element" id="ref-for-the-form-element①">form</a></code> based mechanism
-    relies on form submission, which navigates the browsing context, making it difficult to
-    ensure that <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-store" id="ref-for-dom-credentialscontainer-store⑥">store()</a></code> is called after successful sign-in.</p>
-    </div>
-    <p class="note" role="note"><span class="marker">Note:</span> The <a data-link-type="dfn" href="#credential-chooser" id="ref-for-credential-chooser⑦">credential chooser</a> presented by the user agent could allow the user to choose
-  credentials that aren’t actually stored for the current origin. For instance, it might offer up
-  credentials from <code>https://m.example.com</code> when signing into <code>https://www.example.com</code> (as
-  described in <a href="#security-credential-access">§ 6.1 Cross-domain credential access</a>), or it might allow a user to create a new
-  credential on the fly. Developers can deal gracefully with this uncertainty by calling <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-store" id="ref-for-dom-credentialscontainer-store⑦">store()</a></code> every time credentials are successfully used, even right after
-  credentials have been retrieved from <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get②⓪">get()</a></code>: if the credentials aren’t
-  yet stored for the origin, the user will be given the opportunity to do so. If they are stored,
-  the user won’t be prompted.</p>
-    <h4 class="heading settled" data-level="3.1.2" id="examples-post-signin"><span class="secno">3.1.2. </span><span class="content">Post-sign-in Confirmation</span><a class="self-link" href="#examples-post-signin"></a></h4>
-    <p>To ensure that users are offered to store new credentials after a successful sign-in, they can
-  to be passed to <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-store" id="ref-for-dom-credentialscontainer-store⑧">store()</a></code>.</p>
-    <div class="example" id="example-c7eaa6aa">
-     <a class="self-link" href="#example-c7eaa6aa"></a> If a user is signed in by submitting the credentials to a sign-in endpoint via <a data-link-type="functionish" href="https://fetch.spec.whatwg.org/#dom-global-fetch" id="ref-for-dom-global-fetch"><code>fetch()</code></a>, we can check the response to determine whether the user
-    was signed in successfully, and notify the user agent accordingly. Given a sign-in form like the
-    following: 
-<pre>&lt;form action="https://example.com/login" method="POST" id="theForm">
-  &lt;label for="username">Username&lt;/label>
-  &lt;input type="text" id="username" name="username" <a data-link-type="element-attr" href="https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete" id="ref-for-attr-fe-autocomplete①">autocomplete</a>="<a data-link-type="attr-value" href="https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-username" id="ref-for-attr-fe-autocomplete-username">username</a>">
-  &lt;label for="password">Password&lt;/label>
-  &lt;input type="password" id="password" name="password" <a data-link-type="element-attr" href="https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete" id="ref-for-attr-fe-autocomplete②">autocomplete</a>="<a data-link-type="attr-value" href="https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-current-password" id="ref-for-attr-fe-autocomplete-current-password">current-password</a>">
-  &lt;input type="submit">
-&lt;/form>
-</pre>
-     <p>Then the developer can handle the form submission with something like the following handler:</p>
-<pre>document.querySelector('#theForm').addEventListener('submit', e => {
-    if (<a class="idl-code" data-link-type="interface" href="#passwordcredential" id="ref-for-passwordcredential③">window.PasswordCredential</a>) {
-      e.preventDefault();
-
-      // Construct a new <a data-link-type="idl" href="#passwordcredential" id="ref-for-passwordcredential④">PasswordCredential</a> from the <a data-link-type="idl" href="https://html.spec.whatwg.org/multipage/forms.html#htmlformelement" id="ref-for-htmlformelement">HTMLFormElement</a>
-      // that fired the "submit" event: this will suck up the values of the fields
-      // labeled with "username" and "current-password" <a data-link-type="element-attr" href="https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete" id="ref-for-attr-fe-autocomplete③">autocomplete</a>
-      // attributes:
-      var c = new <a data-link-type="idl" href="#dom-passwordcredential-passwordcredential" id="ref-for-dom-passwordcredential-passwordcredential">PasswordCredential</a>(e.target);
-
-      // Fetch the form’s action URL, passing that new credential object in
-      // as a FormData object. If the response indicates success, tell the user agent
-      // so it can ask the user to store the password for future use:
-      var opt = {
-        method: 'POST',
-        body: new FormData(e.target),
-        credentials: 'include'  // Send cookies.
-      };
-      fetch(e.target.action, opt).then(r => {
-        if (/* |r| is a "successful" <a data-link-type="idl" href="https://fetch.spec.whatwg.org/#response" id="ref-for-response">Response</a> */)
-          <a data-link-type="idl" href="#dom-credentialscontainer-store" id="ref-for-dom-credentialscontainer-store⑨">navigator.credentials.store</a>(c);
-      });
-    }
-});
-</pre>
-    </div>
-    <h4 class="heading settled" data-level="3.1.3" id="examples-change-password"><span class="secno">3.1.3. </span><span class="content">Change Password</span><a class="self-link" href="#examples-change-password"></a></h4>
-    <p>This same storage mechanism can be reused for "password change" with no modifications: if the
-  user changes their credentials, the website can notify the user agent that they’ve successfully
-  signed in with new credentials. The user agent can then update the credentials it stores:</p>
-    <div class="example" id="example-640da6a4">
-     <a class="self-link" href="#example-640da6a4"></a> MegaCorp Inc. allows users to change their passwords by POSTing data to
-    a backend server asynchronously. After doing so successfully, they can
-    update the user’s credentials by calling <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-store" id="ref-for-dom-credentialscontainer-store①⓪">store()</a></code> with the new information. 
-     <p>Given a password change form like the following:</p>
-<pre>&lt;form action="https://example.com/changePassword" method="POST" id="theForm">
-  &lt;input type="hidden" name="username" <a data-link-type="element-attr" href="https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete" id="ref-for-attr-fe-autocomplete④">autocomplete</a>="<a data-link-type="attr-value" href="https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-username" id="ref-for-attr-fe-autocomplete-username①">username</a>" value="user">
-  &lt;label for="password">New Password&lt;/label>
-  &lt;input type="password" id="password" name="password" <a data-link-type="element-attr" href="https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete" id="ref-for-attr-fe-autocomplete⑤">autocomplete</a>="<a data-link-type="attr-value" href="https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-new-password" id="ref-for-attr-fe-autocomplete-new-password">new-password</a>">
-  &lt;input type="submit">
-&lt;/form>
-</pre>
-     <p>The developer can handle the form submission with something like the following:</p>
-<pre>document.querySelector('#theForm').addEventListener('submit', e => {
-  if (<a class="idl-code" data-link-type="interface" href="#passwordcredential" id="ref-for-passwordcredential⑤">window.PasswordCredential</a>) {
-    e.preventDefault();
-
-    // Construct a new <a data-link-type="idl" href="#passwordcredential" id="ref-for-passwordcredential⑥">PasswordCredential</a> from the <a data-link-type="idl" href="https://html.spec.whatwg.org/multipage/forms.html#htmlformelement" id="ref-for-htmlformelement①">HTMLFormElement</a>
-    // that fired the "submit" event: this will suck up the values of the fields
-    // labeled with "username" and "new-password" <a data-link-type="element-attr" href="https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete" id="ref-for-attr-fe-autocomplete⑥">autocomplete</a>
-    // attributes:
-    var c = new <a data-link-type="idl" href="#dom-passwordcredential-passwordcredential" id="ref-for-dom-passwordcredential-passwordcredential①">PasswordCredential</a>(e.target);
-
-    // Fetch the form’s action URL, passing that new credential object in
-    // as a FormData object. If the response indicates success, tell the user agent
-    // so it can ask the user to store the password for future use:
-    var opt = {
-      method: 'POST',
-      body: new FormData(e.target),
-      credentials: 'include'  // Send cookies.
-    };
-    fetch(e.target.action, opt).then(r => {
-      if (/* |r| is a "successful" <a data-link-type="idl" href="https://fetch.spec.whatwg.org/#response" id="ref-for-response①">Response</a> */)
-        <a data-link-type="idl" href="#dom-credentialscontainer-store" id="ref-for-dom-credentialscontainer-store①①">navigator.credentials.store</a>(c);
-    });
-  }
-});
-</pre>
-    </div>
-    <h3 class="heading settled" data-level="3.2" id="passwordcredential-interface"><span class="secno">3.2. </span><span class="content">The <code>PasswordCredential</code> Interface</span><a class="self-link" href="#passwordcredential-interface"></a></h3>
-<pre class="idl highlight def">[<a class="idl-code" data-link-type="extended-attribute" href="https://webidl.spec.whatwg.org/#Exposed" id="ref-for-Exposed②"><c- g>Exposed</c-></a>=<c- n>Window</c->,
- <a class="idl-code" data-link-type="extended-attribute" href="https://webidl.spec.whatwg.org/#SecureContext" id="ref-for-SecureContext④"><c- g>SecureContext</c-></a>]
-<c- b>interface</c-> <dfn class="dfn-paneled idl-code" data-dfn-type="interface" data-export id="passwordcredential"><code><c- g>PasswordCredential</c-></code></dfn> : <a data-link-type="idl-name" href="#credential" id="ref-for-credential④②"><c- n>Credential</c-></a> {
-  <a class="idl-code" data-link-type="constructor" href="#dom-passwordcredential-passwordcredential" id="ref-for-dom-passwordcredential-passwordcredential②"><c- g>constructor</c-></a>(<a data-link-type="idl-name" href="https://html.spec.whatwg.org/multipage/forms.html#htmlformelement" id="ref-for-htmlformelement②"><c- n>HTMLFormElement</c-></a> <dfn class="dfn-paneled idl-code" data-dfn-for="PasswordCredential/PasswordCredential(form), PasswordCredential/constructor(form)" data-dfn-type="argument" data-export id="dom-passwordcredential-passwordcredential-form-form"><code><c- g>form</c-></code></dfn>);
-  <a class="idl-code" data-link-type="constructor" href="#dom-passwordcredential-passwordcredential-data" id="ref-for-dom-passwordcredential-passwordcredential-data"><c- g>constructor</c-></a>(<a data-link-type="idl-name" href="#dictdef-passwordcredentialdata" id="ref-for-dictdef-passwordcredentialdata"><c- n>PasswordCredentialData</c-></a> <dfn class="dfn-paneled idl-code" data-dfn-for="PasswordCredential/PasswordCredential(data), PasswordCredential/constructor(data)" data-dfn-type="argument" data-export id="dom-passwordcredential-passwordcredential-data-data"><code><c- g>data</c-></code></dfn>);
-  <c- b>readonly</c-> <c- b>attribute</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString" id="ref-for-idl-USVString⑦"><c- b>USVString</c-></a> <a class="idl-code" data-link-type="attribute" data-readonly data-type="USVString" href="#dom-passwordcredential-password" id="ref-for-dom-passwordcredential-password"><c- g>password</c-></a>;
-};
-<a data-link-type="idl-name" href="#passwordcredential" id="ref-for-passwordcredential⑦"><c- n>PasswordCredential</c-></a> <c- b>includes</c-> <a data-link-type="idl-name" href="#credentialuserdata" id="ref-for-credentialuserdata"><c- n>CredentialUserData</c-></a>;
-
-<c- b>partial</c-> <c- b>dictionary</c-> <a class="idl-code" data-link-type="dictionary" href="#dictdef-credentialrequestoptions" id="ref-for-dictdef-credentialrequestoptions①③"><c- g>CredentialRequestOptions</c-></a> {
-  <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-boolean" id="ref-for-idl-boolean①"><c- b>boolean</c-></a> <dfn class="dfn-paneled idl-code" data-default="false" data-dfn-for="CredentialRequestOptions" data-dfn-type="dict-member" data-export data-type="boolean " id="dom-credentialrequestoptions-password"><code><c- g>password</c-></code></dfn> = <c- b>false</c->;
-};
-</pre>
-    <div>
-     <dl>
-      <dt data-md><dfn class="dfn-paneled idl-code" data-dfn-for="PasswordCredential" data-dfn-type="attribute" data-export id="dom-passwordcredential-password"><code>password</code></dfn>, <span> of type <a data-link-type="idl-name" href="https://webidl.spec.whatwg.org/#idl-USVString" id="ref-for-idl-USVString⑧">USVString</a>, readonly</span>
-      <dd data-md>
-       <p>This attribute represents the password of the credential.</p>
-      <dt data-md><code class="idl"><a data-link-type="idl" href="#dom-credential-type-slot" id="ref-for-dom-credential-type-slot①①">[[type]]</a></code>
-      <dd data-md>
-       <p>The <code class="idl"><a data-link-type="idl" href="#passwordcredential" id="ref-for-passwordcredential⑧">PasswordCredential</a></code> <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-object" id="ref-for-dfn-interface-object①①">interface object</a> has an internal slot named <code>[[type]]</code> whose
-  value is "<dfn class="dfn-paneled idl-code" data-dfn-for="Credential/[[type]]" data-dfn-type="const" data-export id="dom-credential-type-password"><code>password</code></dfn>".</p>
-      <dt data-md><code class="idl"><a data-link-type="idl" href="#dom-credential-discovery-slot" id="ref-for-dom-credential-discovery-slot①">[[discovery]]</a></code>
-      <dd data-md>
-       <p>The <code class="idl"><a data-link-type="idl" href="#passwordcredential" id="ref-for-passwordcredential⑨">PasswordCredential</a></code> <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-object" id="ref-for-dfn-interface-object①②">interface object</a> has an internal slot named <code>[[discovery]]</code> whose value is "<code class="idl"><a data-link-type="idl" href="#dom-credential-discovery-credential-store" id="ref-for-dom-credential-discovery-credential-store①">credential store</a></code>".</p>
-      <dt data-md><dfn class="dfn-paneled idl-code" data-dfn-for="PasswordCredential" data-dfn-type="constructor" data-export data-lt="PasswordCredential(form)|constructor(form)" id="dom-passwordcredential-passwordcredential"><code>PasswordCredential(form)</code></dfn>
-      <dd data-md>
-       <p>This constructor accepts an <code class="idl"><a data-link-type="idl" href="https://html.spec.whatwg.org/multipage/forms.html#htmlformelement" id="ref-for-htmlformelement③">HTMLFormElement</a></code> (<var>form</var>), and runs the following steps:</p>
-       <ol>
-        <li data-md>
-         <p>Let <var>origin</var> be the <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#current-settings-object" id="ref-for-current-settings-object⑦">current settings object</a>'s <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#concept-settings-object-origin" id="ref-for-concept-settings-object-origin⑧">origin</a>.</p>
-        <li data-md>
-         <p>Let <var>r</var> be the result of executing <a data-link-type="abstract-op" href="#abstract-opdef-create-a-passwordcredential-from-an-htmlformelement" id="ref-for-abstract-opdef-create-a-passwordcredential-from-an-htmlformelement">Create a <code>PasswordCredential</code> from
-  an <code>HTMLFormElement</code></a> given <var>form</var> and <var>origin</var>.</p>
-        <li data-md>
-         <p>If <var>r</var> is an <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-exception" id="ref-for-dfn-exception⑧">exception</a>, <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-throw" id="ref-for-dfn-throw">throw</a> <var>r</var>.</p>
-         <p>Otherwise, return <var>r</var>.</p>
-       </ol>
-      <dt data-md><dfn class="dfn-paneled idl-code" data-dfn-for="PasswordCredential" data-dfn-type="constructor" data-export data-lt="PasswordCredential(data)|constructor(data)" id="dom-passwordcredential-passwordcredential-data"><code>PasswordCredential(data)</code></dfn>
-      <dd data-md>
-       <p>This constructor accepts a <code class="idl"><a data-link-type="idl" href="#dictdef-passwordcredentialdata" id="ref-for-dictdef-passwordcredentialdata①">PasswordCredentialData</a></code> (<var>data</var>), and runs the following steps:</p>
-       <ol>
-        <li data-md>
-         <p>Let <var>r</var> be the result of executing <a data-link-type="abstract-op" href="#abstract-opdef-create-a-passwordcredential-from-passwordcredentialdata" id="ref-for-abstract-opdef-create-a-passwordcredential-from-passwordcredentialdata">Create a <code>PasswordCredential</code> from <code>PasswordCredentialData</code></a> on <var>data</var>.</p>
-        <li data-md>
-         <p>If <var>r</var> is an <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-exception" id="ref-for-dfn-exception⑨">exception</a>, <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-throw" id="ref-for-dfn-throw①">throw</a> <var>r</var>.</p>
-         <p>Otherwise, return <var>r</var>.</p>
-       </ol>
-     </dl>
-    </div>
-    <p><code class="idl"><a data-link-type="idl" href="#passwordcredential" id="ref-for-passwordcredential①⓪">PasswordCredential</a></code> objects can be created via <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-create" id="ref-for-dom-credentialscontainer-create⑤">navigator.credentials.create()</a></code> either explicitly by passing in a <code class="idl"><a data-link-type="idl" href="#dictdef-passwordcredentialdata" id="ref-for-dictdef-passwordcredentialdata②">PasswordCredentialData</a></code> dictionary, or based on the contents
-  of an <code class="idl"><a data-link-type="idl" href="https://html.spec.whatwg.org/multipage/forms.html#htmlformelement" id="ref-for-htmlformelement④">HTMLFormElement</a></code>'s <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/forms.html#category-submit" id="ref-for-category-submit">submittable elements</a>.</p>
-<pre class="idl highlight def"><c- b>dictionary</c-> <dfn class="dfn-paneled idl-code" data-dfn-type="dictionary" data-export id="dictdef-passwordcredentialdata"><code><c- g>PasswordCredentialData</c-></code></dfn> : <a data-link-type="idl-name" href="#dictdef-credentialdata" id="ref-for-dictdef-credentialdata"><c- n>CredentialData</c-></a> {
-  <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString" id="ref-for-idl-USVString⑨"><c- b>USVString</c-></a> <dfn class="dfn-paneled idl-code" data-dfn-for="PasswordCredentialData" data-dfn-type="dict-member" data-export data-type="USVString " id="dom-passwordcredentialdata-name"><code><c- g>name</c-></code></dfn>;
-  <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString" id="ref-for-idl-USVString①⓪"><c- b>USVString</c-></a> <dfn class="dfn-paneled idl-code" data-dfn-for="PasswordCredentialData" data-dfn-type="dict-member" data-export data-type="USVString " id="dom-passwordcredentialdata-iconurl"><code><c- g>iconURL</c-></code></dfn>;
-  <c- b>required</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString" id="ref-for-idl-USVString①①"><c- b>USVString</c-></a> <dfn class="dfn-paneled idl-code" data-dfn-for="PasswordCredentialData" data-dfn-type="dict-member" data-export data-type="USVString " id="dom-passwordcredentialdata-origin"><code><c- g>origin</c-></code></dfn>;
-  <c- b>required</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString" id="ref-for-idl-USVString①②"><c- b>USVString</c-></a> <dfn class="dfn-paneled idl-code" data-dfn-for="PasswordCredentialData" data-dfn-type="dict-member" data-export data-type="USVString " id="dom-passwordcredentialdata-password"><code><c- g>password</c-></code></dfn>;
-};
-
-<c- b>typedef</c-> (<a data-link-type="idl-name" href="#dictdef-passwordcredentialdata" id="ref-for-dictdef-passwordcredentialdata③"><c- n>PasswordCredentialData</c-></a> <c- b>or</c-> <a data-link-type="idl-name" href="https://html.spec.whatwg.org/multipage/forms.html#htmlformelement" id="ref-for-htmlformelement⑤"><c- n>HTMLFormElement</c-></a>) <dfn class="dfn-paneled idl-code" data-dfn-type="typedef" data-export id="typedefdef-passwordcredentialinit"><code><c- g>PasswordCredentialInit</c-></code></dfn>;
-
-<c- b>partial</c-> <c- b>dictionary</c-> <a class="idl-code" data-link-type="dictionary" href="#dictdef-credentialcreationoptions" id="ref-for-dictdef-credentialcreationoptions⑨"><c- g>CredentialCreationOptions</c-></a> {
-  <a data-link-type="idl-name" href="#typedefdef-passwordcredentialinit" id="ref-for-typedefdef-passwordcredentialinit"><c- n>PasswordCredentialInit</c-></a> <dfn class="dfn-paneled idl-code" data-dfn-for="CredentialCreationOptions" data-dfn-type="dict-member" data-export data-type="PasswordCredentialInit " id="dom-credentialcreationoptions-password"><code><c- g>password</c-></code></dfn>;
-};
-</pre>
-    <p><code class="idl"><a data-link-type="idl" href="#passwordcredential" id="ref-for-passwordcredential①①">PasswordCredential</a></code> objects are <a data-link-type="dfn" href="#credential-origin-bound" id="ref-for-credential-origin-bound">origin bound</a>.</p>
-    <p><code class="idl"><a data-link-type="idl" href="#passwordcredential" id="ref-for-passwordcredential①②">PasswordCredential</a></code>'s <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-object" id="ref-for-dfn-interface-object①③">interface object</a> inherits <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential④③">Credential</a></code>'s implementation of <code class="idl"><a data-link-type="idl" href="#dom-credential-discoverfromexternalsource-slot" id="ref-for-dom-credential-discoverfromexternalsource-slot②">[[DiscoverFromExternalSource]](origin, options, sameOriginWithAncestors)</a></code>, and defines
-  its own implementation of <code class="idl"><a data-link-type="idl" href="#dom-passwordcredential-collectfromcredentialstore-slot" id="ref-for-dom-passwordcredential-collectfromcredentialstore-slot">[[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)</a></code>, <code class="idl"><a data-link-type="idl" href="#dom-passwordcredential-create-slot" id="ref-for-dom-passwordcredential-create-slot">[[Create]](origin, options, sameOriginWithAncestors)</a></code>, and <code class="idl"><a data-link-type="idl" href="#dom-passwordcredential-store-slot" id="ref-for-dom-passwordcredential-store-slot">[[Store]](credential, sameOriginWithAncestors)</a></code>.</p>
-    <h3 class="heading settled" data-level="3.3" id="passwordcredential-algorithms"><span class="secno">3.3. </span><span class="content">Algorithms</span><a class="self-link" href="#passwordcredential-algorithms"></a></h3>
-    <h4 class="heading settled algorithm" data-algorithm="PasswordCredential’s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)" data-level="3.3.1" id="collectfromcredentialstore-passwordcredential"><span class="secno">3.3.1. </span><span class="content"> <code>PasswordCredential</code>’s <code>[[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)</code> </span><a class="self-link" href="#collectfromcredentialstore-passwordcredential"></a></h4>
-    <p><dfn class="dfn-paneled idl-code" data-dfn-for="PasswordCredential" data-dfn-type="method" data-export id="dom-passwordcredential-collectfromcredentialstore-slot"><code>[[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)</code></dfn> is called with an <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/origin.html#concept-origin" id="ref-for-concept-origin⑤">origin</a> (<var>origin</var>), a <code class="idl"><a data-link-type="idl" href="#dictdef-credentialrequestoptions" id="ref-for-dictdef-credentialrequestoptions①④">CredentialRequestOptions</a></code> (<var>options</var>),
-  and a boolean which is <code>true</code> iff the calling context is <a data-link-type="dfn" href="#same-origin-with-its-ancestors" id="ref-for-same-origin-with-its-ancestors⑧">same-origin with its ancestors</a> (<var>sameOriginWithAncestors</var>).
-  The algorithm returns a set of <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential④④">Credential</a></code> objects from
-  the <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store①③">credential store</a>. If no matching <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential④⑤">Credential</a></code> objects are available, the returned set
-  will be empty.</p>
-    <p>The algorithm will throw a <code>NotAllowedError</code> if <var>sameOriginWithAncestors</var> is not <code>true</code>.</p>
-    <ol class="algorithm">
-     <li data-md>
-      <p class="assertion">Assert: <var>options</var>["<code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-password" id="ref-for-dom-credentialrequestoptions-password②">password</a></code>"] <a data-link-type="dfn" href="https://infra.spec.whatwg.org/#map-exists" id="ref-for-map-exists③">exists</a>.</p>
-     <li data-md>
-      <p>If <var>sameOriginWithAncestors</var> is <code>false</code>, throw a "<code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#notallowederror" id="ref-for-notallowederror⑥">NotAllowedError</a></code>" <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#idl-DOMException" id="ref-for-idl-DOMException⑦">DOMException</a></code>.</p>
-      <p class="note" role="note"><span class="marker">Note:</span> This restriction aims to address the concern raised in <a href="#security-origin-confusion">§ 6.4 Origin Confusion</a>.</p>
-     <li data-md>
-      <p>Return the empty set if <var>options</var>["<code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-password" id="ref-for-dom-credentialrequestoptions-password③">password</a></code>"] is not <code>true</code>.</p>
-     <li data-md>
-      <p>Return the result of <a data-link-type="abstract-op" href="#abstract-opdef-credential-store-retrieve-a-list-of-credentials" id="ref-for-abstract-opdef-credential-store-retrieve-a-list-of-credentials">retrieving</a> credentials from the <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store①④">credential store</a> that match the following filter:</p>
-      <ol>
-       <li data-md>
-        <p>The credential is a <code class="idl"><a data-link-type="idl" href="#passwordcredential" id="ref-for-passwordcredential①③">PasswordCredential</a></code></p>
-       <li data-md>
-        <p>The credential’s <code class="idl"><a data-link-type="idl" href="#dom-credential-origin-slot" id="ref-for-dom-credential-origin-slot">[[origin]]</a></code> is the <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/browsers.html#same-origin" id="ref-for-same-origin①">same origin</a> as <var>origin</var>.</p>
-      </ol>
-    </ol>
-    <h4 class="heading settled algorithm" data-algorithm="PasswordCredential’s [[Create]](origin, options, sameOriginWithAncestors)" data-level="3.3.2" id="create-passwordcredential"><span class="secno">3.3.2. </span><span class="content"> <code>PasswordCredential</code>’s <code>[[Create]](origin, options, sameOriginWithAncestors)</code> </span><a class="self-link" href="#create-passwordcredential"></a></h4>
-    <p><dfn class="dfn-paneled idl-code" data-dfn-for="PasswordCredential" data-dfn-type="method" data-export id="dom-passwordcredential-create-slot"><code>[[Create]](origin, options, sameOriginWithAncestors)</code></dfn> is called with an <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/origin.html#concept-origin" id="ref-for-concept-origin⑥">origin</a> (<var>origin</var>), a <code class="idl"><a data-link-type="idl" href="#dictdef-credentialcreationoptions" id="ref-for-dictdef-credentialcreationoptions①⓪">CredentialCreationOptions</a></code> (<var>options</var>), and a boolean which is <code>true</code> iff the calling
-  context is <a data-link-type="dfn" href="#same-origin-with-its-ancestors" id="ref-for-same-origin-with-its-ancestors⑨">same-origin with its ancestors</a> (<var>sameOriginWithAncestors</var>).
-  The algorithm returns a <code class="idl"><a data-link-type="idl" href="#passwordcredential" id="ref-for-passwordcredential①④">PasswordCredential</a></code> if one can be created, <code>null</code> otherwise. The <code class="idl"><a data-link-type="idl" href="#dictdef-credentialcreationoptions" id="ref-for-dictdef-credentialcreationoptions①①">CredentialCreationOptions</a></code> dictionary must have a <code>password</code> member which
-  holds either an <code class="idl"><a data-link-type="idl" href="https://html.spec.whatwg.org/multipage/forms.html#htmlformelement" id="ref-for-htmlformelement⑥">HTMLFormElement</a></code> or a <code class="idl"><a data-link-type="idl" href="#dictdef-passwordcredentialdata" id="ref-for-dictdef-passwordcredentialdata④">PasswordCredentialData</a></code>. If that member’s value cannot be
-  used to create a <code class="idl"><a data-link-type="idl" href="#passwordcredential" id="ref-for-passwordcredential①⑤">PasswordCredential</a></code>, this algorithm will throw a <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#exceptiondef-typeerror" id="ref-for-exceptiondef-typeerror③">TypeError</a></code> <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-exception" id="ref-for-dfn-exception①⓪">exception</a>.</p>
-    <ol class="algorithm">
-     <li data-md>
-      <p class="assertion">Assert: <var>options</var>["<code class="idl"><a data-link-type="idl" href="#dom-credentialcreationoptions-password" id="ref-for-dom-credentialcreationoptions-password">password</a></code>"] <a data-link-type="dfn" href="https://infra.spec.whatwg.org/#map-exists" id="ref-for-map-exists④">exists</a>, and <var>sameOriginWithAncestors</var> is unused.</p>
-     <li data-md>
-      <p>If <var>options</var>["<code class="idl"><a data-link-type="idl" href="#dom-credentialcreationoptions-password" id="ref-for-dom-credentialcreationoptions-password①">password</a></code>"] is an <code class="idl"><a data-link-type="idl" href="https://html.spec.whatwg.org/multipage/forms.html#htmlformelement" id="ref-for-htmlformelement⑦">HTMLFormElement</a></code>, return the
-  result of executing <a data-link-type="abstract-op" href="#abstract-opdef-create-a-passwordcredential-from-an-htmlformelement" id="ref-for-abstract-opdef-create-a-passwordcredential-from-an-htmlformelement①">Create a <code>PasswordCredential</code> from an <code>HTMLFormElement</code></a> given <var>options</var>["<code class="idl"><a data-link-type="idl" href="#dom-credentialcreationoptions-password" id="ref-for-dom-credentialcreationoptions-password②">password</a></code>"] and <var>origin</var>.
-  Rethrow any exceptions.</p>
-     <li data-md>
-      <p>If <var>options</var>["<code class="idl"><a data-link-type="idl" href="#dom-credentialcreationoptions-password" id="ref-for-dom-credentialcreationoptions-password③">password</a></code>"] is a <code class="idl"><a data-link-type="idl" href="#dictdef-passwordcredentialdata" id="ref-for-dictdef-passwordcredentialdata⑤">PasswordCredentialData</a></code>, return
-  the result of executing <a data-link-type="abstract-op" href="#abstract-opdef-create-a-passwordcredential-from-passwordcredentialdata" id="ref-for-abstract-opdef-create-a-passwordcredential-from-passwordcredentialdata①">Create a <code>PasswordCredential</code> from <code>PasswordCredentialData</code></a> given <var>options</var>["<code class="idl"><a data-link-type="idl" href="#dom-credentialcreationoptions-password" id="ref-for-dom-credentialcreationoptions-password④">password</a></code>"].
-  Rethrow any exceptions.</p>
-     <li data-md>
-      <p>Throw a <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#exceptiondef-typeerror" id="ref-for-exceptiondef-typeerror④">TypeError</a></code> <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-exception" id="ref-for-dfn-exception①①">exception</a>.</p>
-    </ol>
-    <h4 class="heading settled algorithm" data-algorithm="PasswordCredential’s [[Store]](credential, sameOriginWithAncestors)" data-level="3.3.3" id="store-passwordcredential"><span class="secno">3.3.3. </span><span class="content"> <code>PasswordCredential</code>’s <code>[[Store]](credential, sameOriginWithAncestors)</code> </span><a class="self-link" href="#store-passwordcredential"></a></h4>
-    <p><dfn class="dfn-paneled idl-code" data-dfn-for="PasswordCredential" data-dfn-type="method" data-export id="dom-passwordcredential-store-slot"><code>[[Store]](credential, sameOriginWithAncestors)</code></dfn> is
-  called with a <code class="idl"><a data-link-type="idl" href="#passwordcredential" id="ref-for-passwordcredential①⑥">PasswordCredential</a></code> (<var>credential</var>), and a boolean which is <code>true</code> iff the calling
-  context is <a data-link-type="dfn" href="#same-origin-with-its-ancestors" id="ref-for-same-origin-with-its-ancestors①⓪">same-origin with its ancestors</a> (<var>sameOriginWithAncestors</var>). The algorithm returns <code>undefined</code> once <var>credential</var> is persisted to the <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store①⑤">credential store</a>.</p>
-    <p>The algorithm will return a <code>NotAllowedError</code> if <var>sameOriginWithAncestors</var> is not <code>true</code>.</p>
-    <ol class="algorithm">
-     <li data-md>
-      <p>Throw a "<code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#notallowederror" id="ref-for-notallowederror⑦">NotAllowedError</a></code>" <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#idl-DOMException" id="ref-for-idl-DOMException⑧">DOMException</a></code> without altering the user agent’s <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store①⑥">credential store</a> if <var>sameOriginWithAncestors</var> is <code>false</code>.</p>
-      <p class="note" role="note"><span class="marker">Note:</span> This restriction aims to address the concern raised in <a href="#security-origin-confusion">§ 6.4 Origin Confusion</a>.</p>
-     <li data-md>
-      <p>If the user agent’s <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store①⑦">credential store</a> contains a <code class="idl"><a data-link-type="idl" href="#passwordcredential" id="ref-for-passwordcredential①⑦">PasswordCredential</a></code> (<var>stored</var>)
-  whose <code class="idl"><a data-link-type="idl" href="#dom-credential-id" id="ref-for-dom-credential-id①">id</a></code> attribute is <var>credential</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credential-id" id="ref-for-dom-credential-id②">id</a></code> and whose <code class="idl"><a data-link-type="idl" href="#dom-credential-origin-slot" id="ref-for-dom-credential-origin-slot①">[[origin]]</a></code> slot is the <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/browsers.html#same-origin" id="ref-for-same-origin②">same origin</a> as <var>credential</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credential-origin-slot" id="ref-for-dom-credential-origin-slot②">[[origin]]</a></code>,
-  then:</p>
-      <ol>
-       <li data-md>
-        <p>If the user grants permission to update credentials (as discussed when defining <a data-link-type="dfn" href="#user-mediated" id="ref-for-user-mediated⑧">user mediation</a>), then:</p>
-        <ol>
-         <li data-md>
-          <p>Set <var>stored</var>’s <a class="idl-code" data-link-type="attribute" href="#dom-passwordcredential-password" id="ref-for-dom-passwordcredential-password①"><code>password</code></a> to <var>credential</var>’s <a class="idl-code" data-link-type="attribute" href="#dom-passwordcredential-password" id="ref-for-dom-passwordcredential-password②"><code>password</code></a>.</p>
-         <li data-md>
-          <p>Set <var>stored</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credentialuserdata-name" id="ref-for-dom-credentialuserdata-name①">name</a></code> to <var>credential</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credentialuserdata-name" id="ref-for-dom-credentialuserdata-name②">name</a></code>.</p>
-         <li data-md>
-          <p>Set <var>stored</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credentialuserdata-iconurl" id="ref-for-dom-credentialuserdata-iconurl①">iconURL</a></code> to <var>credential</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credentialuserdata-iconurl" id="ref-for-dom-credentialuserdata-iconurl②">iconURL</a></code>.</p>
-        </ol>
-      </ol>
-      <p>Otherwise, if the user grants permission to store credentials (as discussed when
-  defining <a data-link-type="dfn" href="#user-mediated" id="ref-for-user-mediated⑨">user mediation</a>, then:</p>
-      <ol>
-       <li data-md>
-        <p>Store a <code class="idl"><a data-link-type="idl" href="#passwordcredential" id="ref-for-passwordcredential①⑧">PasswordCredential</a></code> in the <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store①⑧">credential store</a> with the following
-  properties:</p>
-        <dl>
-         <dt data-md><code class="idl"><a data-link-type="idl" href="#dom-credential-id" id="ref-for-dom-credential-id③">id</a></code>
-         <dd data-md>
-          <p><var>credential</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credential-id" id="ref-for-dom-credential-id④">id</a></code></p>
-         <dt data-md><code class="idl"><a data-link-type="idl" href="#dom-credentialuserdata-name" id="ref-for-dom-credentialuserdata-name③">name</a></code>,
-         <dd data-md>
-          <p><var>credential</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credentialuserdata-name" id="ref-for-dom-credentialuserdata-name④">name</a></code></p>
-         <dt data-md><code class="idl"><a data-link-type="idl" href="#dom-credentialuserdata-iconurl" id="ref-for-dom-credentialuserdata-iconurl③">iconURL</a></code>
-         <dd data-md>
-          <p><var>credential</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credentialuserdata-iconurl" id="ref-for-dom-credentialuserdata-iconurl④">iconURL</a></code></p>
-         <dt data-md><code class="idl"><a data-link-type="idl" href="#dom-credential-origin-slot" id="ref-for-dom-credential-origin-slot③">[[origin]]</a></code>
-         <dd data-md>
-          <p><var>credential</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credential-origin-slot" id="ref-for-dom-credential-origin-slot④">[[origin]]</a></code></p>
-         <dt data-md><a class="idl-code" data-link-type="attribute" href="#dom-passwordcredential-password" id="ref-for-dom-passwordcredential-password③"><code>password</code></a>
-         <dd data-md>
-          <p><var>credential</var>’s <a class="idl-code" data-link-type="attribute" href="#dom-passwordcredential-password" id="ref-for-dom-passwordcredential-password④"><code>password</code></a></p>
-        </dl>
-      </ol>
-    </ol>
-    <h4 class="heading settled algorithm" data-algorithm="Create a PasswordCredential from an HTMLFormElement" data-level="3.3.4" id="construct-passwordcredential-form"><span class="secno">3.3.4. </span><span class="content"> Create a <code>PasswordCredential</code> from an <code>HTMLFormElement</code> </span><a class="self-link" href="#construct-passwordcredential-form"></a></h4>
-    <p>To <dfn class="dfn-paneled" data-dfn-type="abstract-op" data-export id="abstract-opdef-create-a-passwordcredential-from-an-htmlformelement">Create a <code>PasswordCredential</code> from an <code>HTMLFormElement</code></dfn>, given an <code class="idl"><a data-link-type="idl" href="https://html.spec.whatwg.org/multipage/forms.html#htmlformelement" id="ref-for-htmlformelement⑧">HTMLFormElement</a></code> (<var>form</var>) and an <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/origin.html#concept-origin" id="ref-for-concept-origin⑦">origin</a> (<var>origin</var>), run these steps.</p>
-    <p class="note" role="note"><span class="marker">Note:</span> <a href="#examples-post-signin">§ 3.1.2 Post-sign-in Confirmation</a> and <a href="#examples-change-password">§ 3.1.3 Change Password</a> provide examples of the intended
-  usage.</p>
-    <ol class="algorithm">
-     <li data-md>
-      <p>Let <var>data</var> be a new <code class="idl"><a data-link-type="idl" href="#dictdef-passwordcredentialdata" id="ref-for-dictdef-passwordcredentialdata⑥">PasswordCredentialData</a></code> dictionary.</p>
-     <li data-md>
-      <p>Set <var>data</var>’s <code class="idl"><a data-link-type="idl" href="#dom-passwordcredentialdata-origin" id="ref-for-dom-passwordcredentialdata-origin">origin</a></code> member’s value to <var>origin</var>’s value.</p>
-     <li data-md>
-      <p>Let <var>formData</var> be the result of executing the <code class="idl"><a data-link-type="idl" href="https://xhr.spec.whatwg.org/#interface-formdata" id="ref-for-interface-formdata">FormData</a></code> constructor
-  on <var>form</var>.</p>
-     <li data-md>
-      <p>Let <var>elements</var> be a list of all the <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/forms.html#category-submit" id="ref-for-category-submit①">submittable elements</a> whose <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/form-control-infrastructure.html#form-owner" id="ref-for-form-owner">form owner</a> is <var>form</var>, in <a data-link-type="dfn" href="https://dom.spec.whatwg.org/#concept-tree-order" id="ref-for-concept-tree-order">tree order</a>.</p>
-     <li data-md>
-      <p>Let <var>newPasswordObserved</var> be <code>false</code>.</p>
-     <li data-md>
-      <p>For each <var>field</var> in <var>elements</var>, run the following steps:</p>
-      <ol>
-       <li data-md>
-        <p>If <var>field</var> does not have an <code><a data-link-type="element-sub" href="https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete" id="ref-for-attr-fe-autocomplete⑦">autocomplete</a></code> attribute, then skip to the next <var>field</var>.</p>
-       <li data-md>
-        <p>Let <var>name</var> be the value of <var>field</var>’s <code><a data-link-type="element-sub" href="https://html.spec.whatwg.org/multipage/forms.html#attr-fe-name" id="ref-for-attr-fe-name">name</a></code> attribute.</p>
-       <li data-md>
-        <p>If <var>formData</var>’s <code class="idl"><a data-link-type="idl" href="https://xhr.spec.whatwg.org/#dom-formdata-has" id="ref-for-dom-formdata-has">has()</a></code> method returns <code>false</code> when executed on <var>name</var>, then
-  skip to the next <var>field</var>.</p>
-       <li data-md>
-        <p>If <var>field</var>’s <code><a data-link-type="element-sub" href="https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete" id="ref-for-attr-fe-autocomplete⑧">autocomplete</a></code> attribute’s value contains one or more <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/form-control-infrastructure.html#autofill-detail-tokens" id="ref-for-autofill-detail-tokens">autofill
-  detail tokens</a> (<var>tokens</var>), then:</p>
-        <ol>
-         <li data-md>
-          <p>For each <var>token</var> in <var>tokens</var>:</p>
-          <ol>
-           <li data-md>
-            <p>If <var>token</var> is an <a data-link-type="dfn" href="https://infra.spec.whatwg.org/#ascii-case-insensitive" id="ref-for-ascii-case-insensitive">ASCII case-insensitive</a> match for one
-  of the following strings, run the associated steps:</p>
-            <dl>
-             <dt data-md>"<a data-link-type="attr-value" href="https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-new-password" id="ref-for-attr-fe-autocomplete-new-password①"><code>new-password</code></a>"
-             <dd data-md>
-              <p>Set <var>data</var>’s <code class="idl"><a data-link-type="idl" href="#dom-passwordcredentialdata-password" id="ref-for-dom-passwordcredentialdata-password">password</a></code> member’s
-  value to the result of executing <var>formData</var>’s <code class="idl"><a data-link-type="idl" href="https://xhr.spec.whatwg.org/#dom-formdata-get" id="ref-for-dom-formdata-get">get()</a></code> method on <var>name</var>, and <var>newPasswordObserved</var> to <code>true</code>.</p>
-             <dt data-md>"<a data-link-type="attr-value" href="https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-current-password" id="ref-for-attr-fe-autocomplete-current-password①"><code>current-password</code></a>"
-             <dd data-md>
-              <p>If <var>newPasswordObserved</var> is <code>false</code>,
-  set <var>data</var>’s <code class="idl"><a data-link-type="idl" href="#dom-passwordcredentialdata-password" id="ref-for-dom-passwordcredentialdata-password①">password</a></code> member’s
-  value to the result of executing <var>formData</var>’s <code class="idl"><a data-link-type="idl" href="https://xhr.spec.whatwg.org/#dom-formdata-get" id="ref-for-dom-formdata-get①">get()</a></code> method on <var>name</var>.</p>
-              <p class="note" role="note"><span class="marker">Note:</span> By checking that <var>newPasswordObserved</var> is <code>false</code>, <code>new-password</code> fields take precedence over <code>current-password</code> fields.</p>
-             <dt data-md>"<a data-link-type="attr-value" href="https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-photo" id="ref-for-attr-fe-autocomplete-photo"><code>photo</code></a>"
-             <dd data-md>
-              <p>Set <var>data</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credentialuserdata-iconurl" id="ref-for-dom-credentialuserdata-iconurl⑤">iconURL</a></code> member’s
-  value to the result of executing <var>formData</var>’s <code class="idl"><a data-link-type="idl" href="https://xhr.spec.whatwg.org/#dom-formdata-get" id="ref-for-dom-formdata-get②">get()</a></code> method on <var>name</var>.</p>
-             <dt data-md>"<a data-link-type="attr-value" href="https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-name" id="ref-for-attr-fe-autocomplete-name"><code>name</code></a>"
-             <dt data-md>"<a data-link-type="attr-value" href="https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-nickname" id="ref-for-attr-fe-autocomplete-nickname"><code>nickname</code></a>"
-             <dd data-md>
-              <p>Set <var>data</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credentialuserdata-name" id="ref-for-dom-credentialuserdata-name⑤">name</a></code> member’s
-  value to the result of executing <var>formData</var>’s <code class="idl"><a data-link-type="idl" href="https://xhr.spec.whatwg.org/#dom-formdata-get" id="ref-for-dom-formdata-get③">get()</a></code> method on <var>name</var>.</p>
-             <dt data-md>"<a data-link-type="attr-value" href="https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-username" id="ref-for-attr-fe-autocomplete-username②"><code>username</code></a>"
-             <dd data-md>
-              <p>Set <var>data</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credentialdata-id" id="ref-for-dom-credentialdata-id">id</a></code> member’s value to the
-  result of executing <var>formData</var>’s <code class="idl"><a data-link-type="idl" href="https://xhr.spec.whatwg.org/#dom-formdata-get" id="ref-for-dom-formdata-get④">get()</a></code> method
-  on <var>name</var>.</p>
-            </dl>
-          </ol>
-        </ol>
-      </ol>
-     <li data-md>
-      <p>Let <var>c</var> be the result of executing <a data-link-type="abstract-op" href="#abstract-opdef-create-a-passwordcredential-from-passwordcredentialdata" id="ref-for-abstract-opdef-create-a-passwordcredential-from-passwordcredentialdata②">Create a <code>PasswordCredential</code> from <code>PasswordCredentialData</code></a> on <var>data</var>. If that threw an <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-exception" id="ref-for-dfn-exception①②">exception</a>, rethrow that
-  exception.</p>
-     <li data-md>
-      <p class="assertion">Assert: <var>c</var> is a <code class="idl"><a data-link-type="idl" href="#passwordcredential" id="ref-for-passwordcredential①⑨">PasswordCredential</a></code>.</p>
-     <li data-md>
-      <p>Return <var>c</var>.</p>
-    </ol>
-    <h4 class="heading settled algorithm" data-algorithm="Create a PasswordCredential from PasswordCredentialData" data-level="3.3.5" id="construct-passwordcredential-data"><span class="secno">3.3.5. </span><span class="content"> Create a <code>PasswordCredential</code> from <code>PasswordCredentialData</code> </span><a class="self-link" href="#construct-passwordcredential-data"></a></h4>
-    <p>To <dfn class="dfn-paneled" data-dfn-type="abstract-op" data-export id="abstract-opdef-create-a-passwordcredential-from-passwordcredentialdata">Create a <code>PasswordCredential</code> from <code>PasswordCredentialData</code></dfn>, given an <code class="idl"><a data-link-type="idl" href="#dictdef-passwordcredentialdata" id="ref-for-dictdef-passwordcredentialdata⑦">PasswordCredentialData</a></code> (<var>data</var>), run these steps.</p>
-    <ol class="algorithm">
-     <li data-md>
-      <p>Let <var>c</var> be a new <code class="idl"><a data-link-type="idl" href="#passwordcredential" id="ref-for-passwordcredential②⓪">PasswordCredential</a></code> object.</p>
-     <li data-md>
-      <p>If any of the following are the empty string, throw a <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#exceptiondef-typeerror" id="ref-for-exceptiondef-typeerror⑤">TypeError</a></code> <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-exception" id="ref-for-dfn-exception①③">exception</a>:</p>
-      <ul>
-       <li data-md>
-        <p><var>data</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credentialdata-id" id="ref-for-dom-credentialdata-id①">id</a></code> member’s value</p>
-       <li data-md>
-        <p><var>data</var>’s <code class="idl"><a data-link-type="idl" href="#dom-passwordcredentialdata-origin" id="ref-for-dom-passwordcredentialdata-origin①">origin</a></code> member’s value</p>
-       <li data-md>
-        <p><var>data</var>’s <code class="idl"><a data-link-type="idl" href="#dom-passwordcredentialdata-password" id="ref-for-dom-passwordcredentialdata-password②">password</a></code> member’s value</p>
-      </ul>
-     <li data-md>
-      <p>Set <var>c</var>’s properties as follows:</p>
-      <dl>
-       <dt data-md><a class="idl-code" data-link-type="attribute" href="#dom-passwordcredential-password" id="ref-for-dom-passwordcredential-password⑤"><code>password</code></a>
-       <dd data-md>
-        <p><var>data</var>’s <code class="idl"><a data-link-type="idl" href="#dom-passwordcredentialdata-password" id="ref-for-dom-passwordcredentialdata-password③">password</a></code> member’s value</p>
-       <dt data-md><code class="idl"><a data-link-type="idl" href="#dom-credential-id" id="ref-for-dom-credential-id⑤">id</a></code>
-       <dd data-md>
-        <p><var>data</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credentialdata-id" id="ref-for-dom-credentialdata-id②">id</a></code> member’s value</p>
-       <dt data-md><code class="idl"><a data-link-type="idl" href="#dom-credentialuserdata-iconurl" id="ref-for-dom-credentialuserdata-iconurl⑥">iconURL</a></code>
-       <dd data-md>
-        <p><var>data</var>’s <code class="idl"><a data-link-type="idl" href="#dom-passwordcredentialdata-iconurl" id="ref-for-dom-passwordcredentialdata-iconurl">iconURL</a></code> member’s value</p>
-       <dt data-md><code class="idl"><a data-link-type="idl" href="#dom-credentialuserdata-name" id="ref-for-dom-credentialuserdata-name⑥">name</a></code>
-       <dd data-md>
-        <p><var>data</var>’s <code class="idl"><a data-link-type="idl" href="#dom-passwordcredentialdata-name" id="ref-for-dom-passwordcredentialdata-name">name</a></code> member’s value</p>
-       <dt data-md><code class="idl"><a data-link-type="idl" href="#dom-credential-origin-slot" id="ref-for-dom-credential-origin-slot⑤">[[origin]]</a></code>
-       <dd data-md>
-        <p><var>data</var>’s <code class="idl"><a data-link-type="idl" href="#dom-passwordcredentialdata-origin" id="ref-for-dom-passwordcredentialdata-origin②">origin</a></code> member’s value.</p>
-      </dl>
-     <li data-md>
-      <p>Return <var>c</var>.</p>
-    </ol>
-    <h4 class="heading settled algorithm" data-algorithm="CredentialRequestOptions Matching for PasswordCredential" data-level="3.3.6" id="passwordcredential-matching"><span class="secno">3.3.6. </span><span class="content"> <code>CredentialRequestOptions</code> Matching for <code>PasswordCredential</code> </span><a class="self-link" href="#passwordcredential-matching"></a></h4>
-    <p>Given a <code class="idl"><a data-link-type="idl" href="#dictdef-credentialrequestoptions" id="ref-for-dictdef-credentialrequestoptions①⑤">CredentialRequestOptions</a></code> (<var>options</var>), the following algorithm returns "<code>Matches</code>" if
-  the <code class="idl"><a data-link-type="idl" href="#passwordcredential" id="ref-for-passwordcredential②①">PasswordCredential</a></code> should be available as a response to a <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get②①">get()</a></code> request, and "<code>Does Not Match</code>" otherwise.</p>
-    <ol>
-     <li data-md>
-      <p>If <var>options</var> has a <code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-password" id="ref-for-dom-credentialrequestoptions-password④">password</a></code> member whose value is <code>true</code>, then
-  return "<code>Matches</code>".</p>
-     <li data-md>
-      <p>Return "<code>Does Not Match</code>".</p>
-    </ol>
-   </section>
-   <section>
-    <h2 class="heading settled" data-level="4" id="federated"><span class="secno">4. </span><span class="content">Federated Credentials</span><a class="self-link" href="#federated"></a></h2>
-    <h3 class="heading settled" data-level="4.1" id="federatedcredential-interface"><span class="secno">4.1. </span><span class="content">The <code>FederatedCredential</code> Interface</span><a class="self-link" href="#federatedcredential-interface"></a></h3>
-<pre class="idl highlight def">[<a class="idl-code" data-link-type="extended-attribute" href="https://webidl.spec.whatwg.org/#Exposed" id="ref-for-Exposed③"><c- g>Exposed</c-></a>=<c- n>Window</c->,
- <a class="idl-code" data-link-type="extended-attribute" href="https://webidl.spec.whatwg.org/#SecureContext" id="ref-for-SecureContext⑤"><c- g>SecureContext</c-></a>]
-<c- b>interface</c-> <dfn class="dfn-paneled idl-code" data-dfn-type="interface" data-export id="federatedcredential"><code><c- g>FederatedCredential</c-></code></dfn> : <a data-link-type="idl-name" href="#credential" id="ref-for-credential④⑥"><c- n>Credential</c-></a> {
-  <a class="idl-code" data-link-type="constructor" href="#dom-federatedcredential-federatedcredential" id="ref-for-dom-federatedcredential-federatedcredential"><c- g>constructor</c-></a>(<a data-link-type="idl-name" href="#dictdef-federatedcredentialinit" id="ref-for-dictdef-federatedcredentialinit"><c- n>FederatedCredentialInit</c-></a> <dfn class="dfn-paneled idl-code" data-dfn-for="FederatedCredential/FederatedCredential(data), FederatedCredential/constructor(data)" data-dfn-type="argument" data-export id="dom-federatedcredential-federatedcredential-data-data"><code><c- g>data</c-></code></dfn>);
-  <c- b>readonly</c-> <c- b>attribute</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString" id="ref-for-idl-USVString①③"><c- b>USVString</c-></a> <a class="idl-code" data-link-type="attribute" data-readonly data-type="USVString" href="#dom-federatedcredential-provider" id="ref-for-dom-federatedcredential-provider"><c- g>provider</c-></a>;
-  <c- b>readonly</c-> <c- b>attribute</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-DOMString" id="ref-for-idl-DOMString②"><c- b>DOMString</c-></a>? <a class="idl-code" data-link-type="attribute" data-readonly data-type="DOMString?" href="#dom-federatedcredential-protocol" id="ref-for-dom-federatedcredential-protocol"><c- g>protocol</c-></a>;
-};
-<a data-link-type="idl-name" href="#federatedcredential" id="ref-for-federatedcredential②"><c- n>FederatedCredential</c-></a> <c- b>includes</c-> <a data-link-type="idl-name" href="#credentialuserdata" id="ref-for-credentialuserdata①"><c- n>CredentialUserData</c-></a>;
-
-<c- b>dictionary</c-> <dfn class="dfn-paneled idl-code" data-dfn-type="dictionary" data-export id="dictdef-federatedcredentialrequestoptions"><code><c- g>FederatedCredentialRequestOptions</c-></code></dfn> {
-  <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#idl-sequence" id="ref-for-idl-sequence"><c- b>sequence</c-></a>&lt;<a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString" id="ref-for-idl-USVString①④"><c- b>USVString</c-></a>> <dfn class="dfn-paneled idl-code" data-dfn-for="FederatedCredentialRequestOptions" data-dfn-type="dict-member" data-export data-type="sequence<USVString> " id="dom-federatedcredentialrequestoptions-providers"><code><c- g>providers</c-></code></dfn>;
-  <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#idl-sequence" id="ref-for-idl-sequence①"><c- b>sequence</c-></a>&lt;<a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-DOMString" id="ref-for-idl-DOMString③"><c- b>DOMString</c-></a>> <dfn class="dfn-paneled idl-code" data-dfn-for="FederatedCredentialRequestOptions" data-dfn-type="dict-member" data-export data-type="sequence<DOMString> " id="dom-federatedcredentialrequestoptions-protocols"><code><c- g>protocols</c-></code></dfn>;
-};
-
-<c- b>partial</c-> <c- b>dictionary</c-> <a class="idl-code" data-link-type="dictionary" href="#dictdef-credentialrequestoptions" id="ref-for-dictdef-credentialrequestoptions①⑥"><c- g>CredentialRequestOptions</c-></a> {
-  <a data-link-type="idl-name" href="#dictdef-federatedcredentialrequestoptions" id="ref-for-dictdef-federatedcredentialrequestoptions"><c- n>FederatedCredentialRequestOptions</c-></a> <dfn class="dfn-paneled idl-code" data-dfn-for="CredentialRequestOptions" data-dfn-type="dict-member" data-export data-type="FederatedCredentialRequestOptions " id="dom-credentialrequestoptions-federated"><code><c- g>federated</c-></code></dfn>;
-};
-</pre>
-    <div>
-     <dl>
-      <dt data-md><dfn class="dfn-paneled idl-code" data-dfn-for="FederatedCredential" data-dfn-type="attribute" data-export id="dom-federatedcredential-provider"><code>provider</code></dfn>, <span> of type <a data-link-type="idl-name" href="https://webidl.spec.whatwg.org/#idl-USVString" id="ref-for-idl-USVString①⑤">USVString</a>, readonly</span>
-      <dd data-md>
-       <p>The credential’s federated identity provider. See <a href="#provider-identification">§ 4.1.1 Identifying Providers</a> for
-  details regarding valid formats.</p>
-      <dt data-md><dfn class="dfn-paneled idl-code" data-dfn-for="FederatedCredential" data-dfn-type="attribute" data-export id="dom-federatedcredential-protocol"><code>protocol</code></dfn>, <span> of type <a data-link-type="idl-name" href="https://webidl.spec.whatwg.org/#idl-DOMString" id="ref-for-idl-DOMString④">DOMString</a>, readonly, nullable</span>
-      <dd data-md>
-       <p>The credential’s federated identity provider’s protocol (e.g. "<code>openidconnect</code>"). If the
-  value is <code>null</code>, then the protocol can be inferred from the <code class="idl"><a data-link-type="idl" href="#dom-federatedcredential-provider" id="ref-for-dom-federatedcredential-provider①">provider</a></code>.</p>
-      <dt data-md><code class="idl"><a data-link-type="idl" href="#dom-credential-type-slot" id="ref-for-dom-credential-type-slot①②">[[type]]</a></code>
-      <dd data-md>
-       <p>The <code class="idl"><a data-link-type="idl" href="#federatedcredential" id="ref-for-federatedcredential③">FederatedCredential</a></code> <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-object" id="ref-for-dfn-interface-object①④">interface object</a> has an internal slot named <code>[[type]]</code> whose
-  value is "<dfn class="dfn-paneled idl-code" data-dfn-for="FederatedCredential" data-dfn-type="const" data-export id="dom-federatedcredential-federated"><code>federated</code></dfn>".</p>
-      <dt data-md><code class="idl"><a data-link-type="idl" href="#dom-credential-discovery-slot" id="ref-for-dom-credential-discovery-slot②">[[discovery]]</a></code>
-      <dd data-md>
-       <p>The <code class="idl"><a data-link-type="idl" href="#federatedcredential" id="ref-for-federatedcredential④">FederatedCredential</a></code> <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-object" id="ref-for-dfn-interface-object①⑤">interface object</a> has an internal slot named <code>[[discovery]]</code> whose value is "<code class="idl"><a data-link-type="idl" href="#dom-credential-discovery-credential-store" id="ref-for-dom-credential-discovery-credential-store②">credential store</a></code>".</p>
-      <dt data-md><dfn class="dfn-paneled idl-code" data-dfn-for="FederatedCredential" data-dfn-type="constructor" data-export data-lt="FederatedCredential(data)|constructor(data)" id="dom-federatedcredential-federatedcredential"><code>FederatedCredential(data)</code></dfn>
-      <dd data-md>
-       <p>This constructor accepts a <code class="idl"><a data-link-type="idl" href="#dictdef-federatedcredentialinit" id="ref-for-dictdef-federatedcredentialinit①">FederatedCredentialInit</a></code> (<var>data</var>), and runs the following steps:</p>
-       <ol>
-        <li data-md>
-         <p>Let <var>r</var> be the result of executing <a data-link-type="abstract-op" href="#abstract-opdef-create-a-federatedcredential-from-federatedcredentialinit" id="ref-for-abstract-opdef-create-a-federatedcredential-from-federatedcredentialinit">Create a <code>FederatedCredential</code> from <code>FederatedCredentialInit</code></a> on <var>data</var>. If that threw an <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-exception" id="ref-for-dfn-exception①④">exception</a>, rethrow that
-  exception.</p>
-        <li data-md>
-         <p>Return <var>r</var>.</p>
-       </ol>
-     </dl>
-    </div>
-    <p><code class="idl"><a data-link-type="idl" href="#federatedcredential" id="ref-for-federatedcredential⑤">FederatedCredential</a></code> objects can be created by passing a <code class="idl"><a data-link-type="idl" href="#dictdef-federatedcredentialinit" id="ref-for-dictdef-federatedcredentialinit②">FederatedCredentialInit</a></code> dictionary
-  into <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-create" id="ref-for-dom-credentialscontainer-create⑥">navigator.credentials.create()</a></code>.</p>
-<pre class="idl highlight def"><c- b>dictionary</c-> <dfn class="dfn-paneled idl-code" data-dfn-type="dictionary" data-export id="dictdef-federatedcredentialinit"><code><c- g>FederatedCredentialInit</c-></code></dfn> : <a data-link-type="idl-name" href="#dictdef-credentialdata" id="ref-for-dictdef-credentialdata①"><c- n>CredentialData</c-></a> {
-  <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString" id="ref-for-idl-USVString①⑥"><c- b>USVString</c-></a> <dfn class="dfn-paneled idl-code" data-dfn-for="FederatedCredentialInit" data-dfn-type="dict-member" data-export data-type="USVString " id="dom-federatedcredentialinit-name"><code><c- g>name</c-></code></dfn>;
-  <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString" id="ref-for-idl-USVString①⑦"><c- b>USVString</c-></a> <dfn class="dfn-paneled idl-code" data-dfn-for="FederatedCredentialInit" data-dfn-type="dict-member" data-export data-type="USVString " id="dom-federatedcredentialinit-iconurl"><code><c- g>iconURL</c-></code></dfn>;
-  <c- b>required</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString" id="ref-for-idl-USVString①⑧"><c- b>USVString</c-></a> <dfn class="dfn-paneled idl-code" data-dfn-for="FederatedCredentialInit" data-dfn-type="dict-member" data-export data-type="USVString " id="dom-federatedcredentialinit-origin"><code><c- g>origin</c-></code></dfn>;
-  <c- b>required</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString" id="ref-for-idl-USVString①⑨"><c- b>USVString</c-></a> <dfn class="dfn-paneled idl-code" data-dfn-for="FederatedCredentialInit" data-dfn-type="dict-member" data-export data-type="USVString " id="dom-federatedcredentialinit-provider"><code><c- g>provider</c-></code></dfn>;
-  <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-DOMString" id="ref-for-idl-DOMString⑤"><c- b>DOMString</c-></a> <dfn class="dfn-paneled idl-code" data-dfn-for="FederatedCredentialInit" data-dfn-type="dict-member" data-export data-type="DOMString " id="dom-federatedcredentialinit-protocol"><code><c- g>protocol</c-></code></dfn>;
-};
-
-<c- b>partial</c-> <c- b>dictionary</c-> <a class="idl-code" data-link-type="dictionary" href="#dictdef-credentialcreationoptions" id="ref-for-dictdef-credentialcreationoptions①②"><c- g>CredentialCreationOptions</c-></a> {
-  <a data-link-type="idl-name" href="#dictdef-federatedcredentialinit" id="ref-for-dictdef-federatedcredentialinit③"><c- n>FederatedCredentialInit</c-></a> <dfn class="dfn-paneled idl-code" data-dfn-for="CredentialCreationOptions" data-dfn-type="dict-member" data-export data-type="FederatedCredentialInit " id="dom-credentialcreationoptions-federated"><code><c- g>federated</c-></code></dfn>;
-};
-</pre>
-    <p><code class="idl"><a data-link-type="idl" href="#federatedcredential" id="ref-for-federatedcredential⑥">FederatedCredential</a></code> objects are <a data-link-type="dfn" href="#credential-origin-bound" id="ref-for-credential-origin-bound①">origin bound</a>.</p>
-    <p><code class="idl"><a data-link-type="idl" href="#federatedcredential" id="ref-for-federatedcredential⑦">FederatedCredential</a></code>'s <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-object" id="ref-for-dfn-interface-object①⑥">interface object</a> inherits <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential④⑦">Credential</a></code>'s implementation of <code class="idl"><a data-link-type="idl" href="#dom-credential-discoverfromexternalsource-slot" id="ref-for-dom-credential-discoverfromexternalsource-slot③">[[DiscoverFromExternalSource]](origin, options, sameOriginWithAncestors)</a></code>,
-  and defines its own implementation of <code class="idl"><a data-link-type="idl" href="#dom-federatedcredential-collectfromcredentialstore-slot" id="ref-for-dom-federatedcredential-collectfromcredentialstore-slot">[[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)</a></code>, <code class="idl"><a data-link-type="idl" href="#dom-federatedcredential-create-slot" id="ref-for-dom-federatedcredential-create-slot">[[Create]](origin, options, sameOriginWithAncestors)</a></code>, and <code class="idl"><a data-link-type="idl" href="#dom-federatedcredential-store-slot" id="ref-for-dom-federatedcredential-store-slot">[[Store]](credential, sameOriginWithAncestors)</a></code>.</p>
-    <p class="note" role="note"><span class="marker">Note:</span> If, in the future, we teach the user agent to obtain authentication tokens on a user’s
-  behalf, we could do so by building an implementation of <code>[[DiscoverFromExternalSource]](origin, options, sameOriginWithAncestors)</code>.</p>
-    <h4 class="heading settled" data-level="4.1.1" id="provider-identification"><span class="secno">4.1.1. </span><span class="content">Identifying Providers</span><a class="self-link" href="#provider-identification"></a></h4>
-    <p>Every site should use the same identifier when referring to a specific federated identity
-  provider. For example, <a href="https://developers.facebook.com/docs/facebook-login/v2.0">Facebook Login</a> shouldn’t be referred to as "Facebook" and "Facebook Login" and "FB" and "FBL" and "Facebook.com"
-  and so on. It should have a canonical identifier which everyone can make use of, as consistent
-  identification makes it possible for user agents to be helpful.</p>
-    <p>For consistency, federations passed into the APIs defined in this document (e.g. <code class="idl"><a data-link-type="idl" href="#dictdef-federatedcredentialrequestoptions" id="ref-for-dictdef-federatedcredentialrequestoptions①">FederatedCredentialRequestOptions</a></code>'s <code class="idl"><a data-link-type="idl" href="#dom-federatedcredentialrequestoptions-providers" id="ref-for-dom-federatedcredentialrequestoptions-providers">providers</a></code> array, or <code class="idl"><a data-link-type="idl" href="#federatedcredential" id="ref-for-federatedcredential⑧">FederatedCredential</a></code>'s <code class="idl"><a data-link-type="idl" href="#dom-federatedcredential-provider" id="ref-for-dom-federatedcredential-provider②">provider</a></code> property) MUST be identified by the <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/browsers.html#ascii-serialisation-of-an-origin" id="ref-for-ascii-serialisation-of-an-origin">ASCII serialization</a> of the origin the provider uses
-  for sign in. That is, Facebook would be represented by <code>https://www.facebook.com</code> and Google by <code>https://accounts.google.com</code>.</p>
-    <p>This serialization of an <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/origin.html#concept-origin" id="ref-for-concept-origin⑧">origin</a> does _not_ include a trailing U+002F SOLIDUS ("<code>/</code>"), but
-  user agents SHOULD accept them silently: <code>https://accounts.google.com/</code> is clearly
-  intended to be the same as <code>https://accounts.google.com</code>.</p>
-    <h3 class="heading settled" data-level="4.2" id="federatedcredential-algorithms"><span class="secno">4.2. </span><span class="content">Algorithms</span><a class="self-link" href="#federatedcredential-algorithms"></a></h3>
-    <h4 class="heading settled algorithm" data-algorithm="FederatedCredential’s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)" data-level="4.2.1" id="collectfromcredentialstore-federatedcredential"><span class="secno">4.2.1. </span><span class="content"> <code>FederatedCredential</code>’s <code>[[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)</code> </span><a class="self-link" href="#collectfromcredentialstore-federatedcredential"></a></h4>
-    <p><dfn class="dfn-paneled idl-code" data-dfn-for="FederatedCredential" data-dfn-type="method" data-export id="dom-federatedcredential-collectfromcredentialstore-slot"><code>[[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)</code></dfn> is called with an <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/origin.html#concept-origin" id="ref-for-concept-origin⑨">origin</a> (<var>origin</var>), a <code class="idl"><a data-link-type="idl" href="#dictdef-credentialrequestoptions" id="ref-for-dictdef-credentialrequestoptions①⑦">CredentialRequestOptions</a></code> (<var>options</var>),
-  and a boolean which is <code>true</code> iff the calling context is <a data-link-type="dfn" href="#same-origin-with-its-ancestors" id="ref-for-same-origin-with-its-ancestors①①">same-origin with its ancestors</a> (<var>sameOriginWithAncestors</var>).
-  The algorithm returns a set of <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential④⑧">Credential</a></code> objects from
-  the <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store①⑨">credential store</a>. If no matching <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential④⑨">Credential</a></code> objects are available, the returned set
-  will be empty.</p>
-    <ol class="algorithm">
-     <li data-md>
-      <p class="assertion">Assert: <var>options</var>["<code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-federated" id="ref-for-dom-credentialrequestoptions-federated">federated</a></code>"] <a data-link-type="dfn" href="https://infra.spec.whatwg.org/#map-exists" id="ref-for-map-exists⑤">exists</a>.</p>
-     <li data-md>
-      <p>If <var>sameOriginWithAncestors</var> is <code>false</code>, throw a "<code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#notallowederror" id="ref-for-notallowederror⑧">NotAllowedError</a></code>" <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#idl-DOMException" id="ref-for-idl-DOMException⑨">DOMException</a></code>.</p>
-      <p class="note" role="note"><span class="marker">Note:</span> This restriction aims to address the concern raised in <a href="#security-origin-confusion">§ 6.4 Origin Confusion</a>.</p>
-     <li data-md>
-      <p>Return the empty set if <var>options</var>["<code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-federated" id="ref-for-dom-credentialrequestoptions-federated①">federated</a></code>"] is not <code>true</code>.</p>
-     <li data-md>
-      <p>Return the result of <a data-link-type="abstract-op" href="#abstract-opdef-credential-store-retrieve-a-list-of-credentials" id="ref-for-abstract-opdef-credential-store-retrieve-a-list-of-credentials①">retrieving</a> credentials from the <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store②⓪">credential store</a> that match the following filter:</p>
-      <ol>
-       <li data-md>
-        <p>The credential is a <code class="idl"><a data-link-type="idl" href="#federatedcredential" id="ref-for-federatedcredential⑨">FederatedCredential</a></code></p>
-       <li data-md>
-        <p>The credential’s <code class="idl"><a data-link-type="idl" href="#dom-credential-origin-slot" id="ref-for-dom-credential-origin-slot⑥">[[origin]]</a></code> is the <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/browsers.html#same-origin" id="ref-for-same-origin③">same origin</a> as <var>origin</var>.</p>
-       <li data-md>
-        <p>If <var>options</var>["<code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-federated" id="ref-for-dom-credentialrequestoptions-federated②">federated</a></code>"]["<code class="idl"><a data-link-type="idl" href="#dom-federatedcredentialrequestoptions-providers" id="ref-for-dom-federatedcredentialrequestoptions-providers①">providers</a></code>"] <a data-link-type="dfn" href="https://infra.spec.whatwg.org/#map-exists" id="ref-for-map-exists⑥">exists</a>, its value <a data-link-type="dfn" href="https://infra.spec.whatwg.org/#list-contain" id="ref-for-list-contain③">contains</a> the credentials’s <code class="idl"><a data-link-type="idl" href="#dom-federatedcredential-provider" id="ref-for-dom-federatedcredential-provider③">provider</a></code>.</p>
-       <li data-md>
-        <p>If <var>options</var>["<code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-federated" id="ref-for-dom-credentialrequestoptions-federated③">federated</a></code>"]["<code class="idl"><a data-link-type="idl" href="#dom-federatedcredentialrequestoptions-protocols" id="ref-for-dom-federatedcredentialrequestoptions-protocols">protocols</a></code>"] <a data-link-type="dfn" href="https://infra.spec.whatwg.org/#map-exists" id="ref-for-map-exists⑦">exists</a>, its value <a data-link-type="dfn" href="https://infra.spec.whatwg.org/#list-contain" id="ref-for-list-contain④">contains</a> the credentials’s <code class="idl"><a data-link-type="idl" href="#dom-federatedcredential-protocol" id="ref-for-dom-federatedcredential-protocol①">protocol</a></code>.</p>
-      </ol>
-    </ol>
-    <h4 class="heading settled algorithm" data-algorithm="FederatedCredential’s [[Create]](origin, options, sameOriginWithAncestors)" data-level="4.2.2" id="create-federatedcredential"><span class="secno">4.2.2. </span><span class="content"> <code>FederatedCredential</code>’s <code>[[Create]](origin, options, sameOriginWithAncestors)</code> </span><a class="self-link" href="#create-federatedcredential"></a></h4>
-    <p><dfn class="dfn-paneled idl-code" data-dfn-for="FederatedCredential" data-dfn-type="method" data-export id="dom-federatedcredential-create-slot"><code>[[Create]](origin, options, sameOriginWithAncestors)</code></dfn> is called with an <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/origin.html#concept-origin" id="ref-for-concept-origin①⓪">origin</a> (<var>origin</var>), a <code class="idl"><a data-link-type="idl" href="#dictdef-credentialcreationoptions" id="ref-for-dictdef-credentialcreationoptions①③">CredentialCreationOptions</a></code> (<var>options</var>), and a boolean which is <code>true</code> iff the
-  calling context is <a data-link-type="dfn" href="#same-origin-with-its-ancestors" id="ref-for-same-origin-with-its-ancestors①②">same-origin with its ancestors</a> (<var>sameOriginWithAncestors</var>).
-  The algorithm returns a <code class="idl"><a data-link-type="idl" href="#federatedcredential" id="ref-for-federatedcredential①⓪">FederatedCredential</a></code> if one can be created, <code>null</code> otherwise, or throws an <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-exception" id="ref-for-dfn-exception①⑤">exception</a> in exceptional circumstances:</p>
-    <ol class="algorithm">
-     <li data-md>
-      <p class="assertion">Assert: <var>options</var>["<code class="idl"><a data-link-type="idl" href="#dom-credentialcreationoptions-federated" id="ref-for-dom-credentialcreationoptions-federated">federated</a></code>"] <a data-link-type="dfn" href="https://infra.spec.whatwg.org/#map-exists" id="ref-for-map-exists⑧">exists</a>, and <var>sameOriginWithAncestors</var> is unused.</p>
-     <li data-md>
-      <p>Set <var>options</var>["<code class="idl"><a data-link-type="idl" href="#dom-credentialcreationoptions-federated" id="ref-for-dom-credentialcreationoptions-federated①">federated</a></code>"]'s <code class="idl"><a data-link-type="idl" href="#dom-federatedcredentialinit-origin" id="ref-for-dom-federatedcredentialinit-origin">origin</a></code> member’s value to <var>origin</var>’s value.</p>
-     <li data-md>
-      <p>Return the result of executing <a data-link-type="abstract-op" href="#abstract-opdef-create-a-federatedcredential-from-federatedcredentialinit" id="ref-for-abstract-opdef-create-a-federatedcredential-from-federatedcredentialinit①">Create a <code>FederatedCredential</code> from <code>FederatedCredentialInit</code></a> given <var>options</var>["<code class="idl"><a data-link-type="idl" href="#dom-credentialcreationoptions-federated" id="ref-for-dom-credentialcreationoptions-federated②">federated</a></code>"].
-  If that threw an <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-exception" id="ref-for-dfn-exception①⑥">exception</a>, then rethrow that exception.</p>
-    </ol>
-    <h4 class="heading settled algorithm" data-algorithm="FederatedCredential’s [[Store]](credential, sameOriginWithAncestors)" data-level="4.2.3" id="store-federatedcredential"><span class="secno">4.2.3. </span><span class="content"> <code>FederatedCredential</code>’s <code>[[Store]](credential, sameOriginWithAncestors)</code> </span><a class="self-link" href="#store-federatedcredential"></a></h4>
-    <p><dfn class="dfn-paneled idl-code" data-dfn-for="FederatedCredential" data-dfn-type="method" data-export id="dom-federatedcredential-store-slot"><code>[[Store]](credential, sameOriginWithAncestors)</code></dfn> is
-  called with a <code class="idl"><a data-link-type="idl" href="#federatedcredential" id="ref-for-federatedcredential①①">FederatedCredential</a></code> (<var>credential</var>), and a boolean which is <code>true</code> iff the
-  calling context is <a data-link-type="dfn" href="#same-origin-with-its-ancestors" id="ref-for-same-origin-with-its-ancestors①③">same-origin with its ancestors</a> (<var>sameOriginWithAncestors</var>). The algorithm
-  returns <code>undefined</code> once <var>credential</var> is persisted to the <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store②①">credential store</a>.</p>
-    <p>The algorithm will return a <code>NotAllowedError</code> if <var>sameOriginWithAncestors</var> is not <code>true</code>.</p>
-    <ol class="algorithm">
-     <li data-md>
-      <p>Throw a "<code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#notallowederror" id="ref-for-notallowederror⑨">NotAllowedError</a></code>" <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#idl-DOMException" id="ref-for-idl-DOMException①⓪">DOMException</a></code> without altering the user agent’s <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store②②">credential store</a> if <var>sameOriginWithAncestors</var> is <code>false</code>.</p>
-      <p class="note" role="note"><span class="marker">Note:</span> This restriction aims to address the concern raised in <a href="#security-origin-confusion">§ 6.4 Origin Confusion</a>.</p>
-     <li data-md>
-      <p>If the user agent’s <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store②③">credential store</a> contains a <code class="idl"><a data-link-type="idl" href="#federatedcredential" id="ref-for-federatedcredential①②">FederatedCredential</a></code> whose <code class="idl"><a data-link-type="idl" href="#dom-credential-id" id="ref-for-dom-credential-id⑥">id</a></code> attribute is <var>credential</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credential-id" id="ref-for-dom-credential-id⑦">id</a></code> and whose <code class="idl"><a data-link-type="idl" href="#dom-credential-origin-slot" id="ref-for-dom-credential-origin-slot⑦">[[origin]]</a></code> slot is the <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/browsers.html#same-origin" id="ref-for-same-origin④">same origin</a> as <var>credential</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credential-origin-slot" id="ref-for-dom-credential-origin-slot⑧">[[origin]]</a></code>, and
-  whose <code class="idl"><a data-link-type="idl" href="#dom-federatedcredential-provider" id="ref-for-dom-federatedcredential-provider④">provider</a></code> is <var>credential</var>’s <code class="idl"><a data-link-type="idl" href="#dom-federatedcredential-provider" id="ref-for-dom-federatedcredential-provider⑤">provider</a></code>, then return.</p>
-     <li data-md>
-      <p>If the user grants permission to store credentials (as discussed when defining <a data-link-type="dfn" href="#user-mediated" id="ref-for-user-mediated①⓪">user mediation</a>), then store a <code class="idl"><a data-link-type="idl" href="#federatedcredential" id="ref-for-federatedcredential①③">FederatedCredential</a></code> in the <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store②④">credential store</a> with
-  the following properties:</p>
-      <dl>
-       <dt data-md><code class="idl"><a data-link-type="idl" href="#dom-credential-id" id="ref-for-dom-credential-id⑧">id</a></code>
-       <dd data-md>
-        <p><var>credential</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credential-id" id="ref-for-dom-credential-id⑨">id</a></code></p>
-       <dt data-md><code class="idl"><a data-link-type="idl" href="#dom-credentialuserdata-name" id="ref-for-dom-credentialuserdata-name⑦">name</a></code>,
-       <dd data-md>
-        <p><var>credential</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credentialuserdata-name" id="ref-for-dom-credentialuserdata-name⑧">name</a></code></p>
-       <dt data-md><code class="idl"><a data-link-type="idl" href="#dom-credentialuserdata-iconurl" id="ref-for-dom-credentialuserdata-iconurl⑦">iconURL</a></code>
-       <dd data-md>
-        <p><var>credential</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credentialuserdata-iconurl" id="ref-for-dom-credentialuserdata-iconurl⑧">iconURL</a></code></p>
-       <dt data-md><code class="idl"><a data-link-type="idl" href="#dom-credential-origin-slot" id="ref-for-dom-credential-origin-slot⑨">[[origin]]</a></code>
-       <dd data-md>
-        <p><var>credential</var>’s <code class="idl"><a data-link-type="idl" href="#dom-credential-origin-slot" id="ref-for-dom-credential-origin-slot①⓪">[[origin]]</a></code></p>
-       <dt data-md><code class="idl"><a data-link-type="idl" href="#dom-federatedcredential-provider" id="ref-for-dom-federatedcredential-provider⑥">provider</a></code>
-       <dd data-md>
-        <p><var>credential</var>’s <code class="idl"><a data-link-type="idl" href="#dom-federatedcredential-provider" id="ref-for-dom-federatedcredential-provider⑦">provider</a></code></p>
-       <dt data-md><code class="idl"><a data-link-type="idl" href="#dom-federatedcredential-protocol" id="ref-for-dom-federatedcredential-protocol②">protocol</a></code>
-       <dd data-md>
-        <p><var>credential</var>’s <code class="idl"><a data-link-type="idl" href="#dom-federatedcredential-protocol" id="ref-for-dom-federatedcredential-protocol③">protocol</a></code></p>
-      </dl>
-    </ol>
-    <h4 class="heading settled algorithm" data-algorithm="Create a FederatedCredential from FederatedCredentialInit" data-level="4.2.4" id="construct-federatedcredential-data"><span class="secno">4.2.4. </span><span class="content"> Create a <code>FederatedCredential</code> from <code>FederatedCredentialInit</code> </span><a class="self-link" href="#construct-federatedcredential-data"></a></h4>
-    <p>To <dfn class="dfn-paneled" data-dfn-type="abstract-op" data-export id="abstract-opdef-create-a-federatedcredential-from-federatedcredentialinit">Create a <code>FederatedCredential</code> from <code>FederatedCredentialInit</code></dfn>, given a <code class="idl"><a data-link-type="idl" href="#dictdef-federatedcredentialinit" id="ref-for-dictdef-federatedcredentialinit④">FederatedCredentialInit</a></code> (<var>init</var>), run these steps.</p>
-    <ol class="algorithm">
-     <li data-md>
-      <p>Let <var>c</var> be a new <code class="idl"><a data-link-type="idl" href="#federatedcredential" id="ref-for-federatedcredential①④">FederatedCredential</a></code> object.</p>
-     <li data-md>
-      <p>If any of the following are the empty string, throw a <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#exceptiondef-typeerror" id="ref-for-exceptiondef-typeerror⑥">TypeError</a></code> <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-exception" id="ref-for-dfn-exception①⑦">exception</a>:</p>
-      <ul>
-       <li data-md>
-        <p><var>init</var>.<code class="idl"><a data-link-type="idl" href="#dom-credentialdata-id" id="ref-for-dom-credentialdata-id③">id</a></code>'s value</p>
-       <li data-md>
-        <p><var>init</var>.<code class="idl"><a data-link-type="idl" href="#dom-federatedcredentialinit-provider" id="ref-for-dom-federatedcredentialinit-provider">provider</a></code>'s value</p>
-      </ul>
-     <li data-md>
-      <p>Set <var>c</var>’s properties as follows:</p>
-      <dl>
-       <dt data-md><code class="idl"><a data-link-type="idl" href="#dom-credential-id" id="ref-for-dom-credential-id①⓪">id</a></code>
-       <dd data-md>
-        <p><var>init</var>.<code class="idl"><a data-link-type="idl" href="#dom-credentialdata-id" id="ref-for-dom-credentialdata-id④">id</a></code>'s value</p>
-       <dt data-md><code class="idl"><a data-link-type="idl" href="#dom-federatedcredential-provider" id="ref-for-dom-federatedcredential-provider⑧">provider</a></code>
-       <dd data-md>
-        <p><var>init</var>.<code class="idl"><a data-link-type="idl" href="#dom-federatedcredentialinit-provider" id="ref-for-dom-federatedcredentialinit-provider①">provider</a></code>'s value</p>
-       <dt data-md><code class="idl"><a data-link-type="idl" href="#dom-credentialuserdata-iconurl" id="ref-for-dom-credentialuserdata-iconurl⑨">iconURL</a></code>
-       <dd data-md>
-        <p><var>init</var>.<code class="idl"><a data-link-type="idl" href="#dom-credentialuserdata-iconurl" id="ref-for-dom-credentialuserdata-iconurl①⓪">iconURL</a></code>'s value</p>
-       <dt data-md><code class="idl"><a data-link-type="idl" href="#dom-credentialuserdata-name" id="ref-for-dom-credentialuserdata-name⑨">name</a></code>
-       <dd data-md>
-        <p><var>init</var>.<code class="idl"><a data-link-type="idl" href="#dom-credentialuserdata-name" id="ref-for-dom-credentialuserdata-name①⓪">name</a></code>'s value</p>
-       <dt data-md><code class="idl"><a data-link-type="idl" href="#dom-credential-origin-slot" id="ref-for-dom-credential-origin-slot①①">[[origin]]</a></code>
-       <dd data-md>
-        <p><var>init</var>.<code class="idl"><a data-link-type="idl" href="#dom-federatedcredentialinit-origin" id="ref-for-dom-federatedcredentialinit-origin①">origin</a></code>'s value.</p>
-      </dl>
-     <li data-md>
-      <p>Return <var>c</var>.</p>
-    </ol>
-   </section>
-   <section>
-    <h2 class="heading settled" data-level="5" id="user-mediation"><span class="secno">5. </span><span class="content">User Mediation</span><a class="self-link" href="#user-mediation"></a></h2>
-    <p>Exposing credential information to the web via an API has a number of potential impacts on user
-  privacy. The user agent, therefore, MUST involve the user in a number of cases in order to ensure
-  that they clearly understands what’s going on, and with whom their credentials are being shared.</p>
-    <p>We call a particular action <dfn class="dfn-paneled" data-dfn-type="dfn" data-export data-lt="user mediated|user mediation" id="user-mediated">user mediated</dfn> if
-  it takes place after gaining a user’s explicit consent. Consent might be expressed through a
-  user’s direct interaction with a <a data-link-type="dfn" href="#credential-chooser" id="ref-for-credential-chooser⑧">credential chooser</a> interface, for example. In general, <a data-link-type="dfn" href="#user-mediated" id="ref-for-user-mediated①①">user
-  mediated</a> actions will involve presenting the user some sort of UI, and asking them to make a
-  decision.</p>
-    <p>An action is unmediated if it takes place silently, without explicit user consent. For example,
-  if a user configures their browser to grant persistent credential access to a particular origin,
-  credentials may be provided without presenting the user with a UI requesting a decision.</p>
-    <p>Here we’ll spell out a few requirements that hold for all <a data-link-type="dfn" href="#credential-type-registry-credential-type" id="ref-for-credential-type-registry-credential-type①①">credential types</a>, but note that there’s
-  a good deal of latitude left up to the user agent (which is in a priviliged position to assist
-  the user). Moreover, specific credential types may have distinct requirements that exceed the
-  requirements laid out more generally here.</p>
-    <h3 class="heading settled" data-level="5.1" id="user-mediated-storage"><span class="secno">5.1. </span><span class="content">Storing and Updating Credentials</span><a class="self-link" href="#user-mediated-storage"></a></h3>
-    <p>Credential information is sensitive data, and users MUST remain in control of that information’s
-  storage. Inadvertent credential storage could, for instance, unexpectedly link a user’s local
-  profile on a particular device to a specific online persona. To mitigate the risk of surprise:</p>
-    <ol>
-     <li data-md>
-      <p>Credential information SHOULD NOT be stored or updated without <a data-link-type="dfn" href="#user-mediated" id="ref-for-user-mediated①②">user mediation</a>. For
-  example, the user agent could display a "Save this credential?" dialog box to the user in
-  response to each call to <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-store" id="ref-for-dom-credentialscontainer-store①②">store()</a></code>.</p>
-      <p>User consent MAY be inferred if a user agent chooses to offer a persistant grant of consent
-  in the form of an "Always save passwords" option (though we’d suggest that user agents should
-  err on the side of something more narrowly scoped: perhaps "Always save _generated_
-  passwords.", or "Always save passwords for this site.").</p>
-     <li data-md>
-      <p>User agents SHOULD notify users when credentials are stored. This might take the form of an
-  icon in the address bar, or some similar location.</p>
-     <li data-md>
-      <p>User agents MUST allow users to manually remove stored credentials. This functionality might
-  be implemented as a settings page, or via interaction with a notification as described above.</p>
-    </ol>
-    <h3 class="heading settled" data-level="5.2" id="user-mediation-requirement"><span class="secno">5.2. </span><span class="content">Requiring User Mediation</span><a class="self-link" href="#user-mediation-requirement"></a></h3>
-    <p>By default, <a data-link-type="dfn" href="#user-mediated" id="ref-for-user-mediated①③">user mediation</a> is required for all <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/origin.html#concept-origin" id="ref-for-concept-origin①①">origins</a>, as the relevant <a data-link-type="dfn" href="#origin-prevent-silent-access-flag" id="ref-for-origin-prevent-silent-access-flag⑤">prevent silent
-  access flag</a> in the <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store②⑤">credential store</a> is set to <code>true</code>. Users MAY choose to grant an
-  origin persistent access to credentials (perhaps in the form of a "Stay signed into this site."
-  option), which would set this flag to <code>false</code>. In this case, the user would always be signed into
-  that site, which is desirable from the perspective of usability and convinience, but which
-  might nevertheless have surprising implications (consider a user agent which syncs this flag’s
-  state across devices, for instance).</p>
-    <p>To mitigate the risk of surprise:</p>
-    <ol>
-     <li data-md>
-      <p>User agents MUST allow users to require <a data-link-type="dfn" href="#user-mediated" id="ref-for-user-mediated①④">user mediation</a> for a given origin or for all
-  origins. This functionality might be implemented as a global toggle that overrides each
-  origin’s <a data-link-type="dfn" href="#origin-prevent-silent-access-flag" id="ref-for-origin-prevent-silent-access-flag⑥"><code>prevent silent access</code> flag</a> to return <code>false</code>, or via more granular
-  settings for specific origins (or specific credentials on specific origins).</p>
-     <li data-md>
-      <p>User agents MUST NOT set an <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/origin.html#concept-origin" id="ref-for-concept-origin①②">origin</a>'s <a data-link-type="dfn" href="#origin-prevent-silent-access-flag" id="ref-for-origin-prevent-silent-access-flag⑦"><code>prevent silent access</code> flag</a> to <code>false</code> without <a data-link-type="dfn" href="#user-mediated" id="ref-for-user-mediated①⑤">user mediation</a>. For example, the <a data-link-type="dfn" href="#credential-chooser" id="ref-for-credential-chooser⑨">credential chooser</a> described in <a href="#user-mediated-selection">§ 5.3 Credential Selection</a> could have a checkbox which the user could toggle to mark a
-  credential as available without mediation for the origin, or the user agent could have an
-  onboarding process for its credential manager which asked a user for a default setting.</p>
-     <li data-md>
-      <p>User agents MUST notify users when credentials are provided to an origin. This could take the
-  form of an icon in the address bar, or some similar location.</p>
-     <li data-md>
-      <p>If a user clears her browsing data for an origin (cookies, localStorage, and so on), the user
-  agent MUST set the <a data-link-type="dfn" href="#origin-prevent-silent-access-flag" id="ref-for-origin-prevent-silent-access-flag⑧"><code>prevent silent access</code> flag</a> to <code>true</code> for that origin.</p>
-    </ol>
-    <h3 class="heading settled" data-level="5.3" id="user-mediated-selection"><span class="secno">5.3. </span><span class="content">Credential Selection</span><a class="self-link" href="#user-mediated-selection"></a></h3>
-    <p>When responding to a call to <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get②②">get()</a></code> on an origin which requires <a data-link-type="dfn" href="#user-mediated" id="ref-for-user-mediated①⑥">user mediation</a>, user agents MUST ask the user for permission to share credential information.
-  This SHOULD take the form of a <dfn class="dfn-paneled" data-dfn-type="dfn" data-export id="credential-chooser">credential chooser</dfn> which presents the user with a
-  list of credentials that are available for use on a site, allowing them to select one which should
-  be provided to the website, or to reject the request entirely.</p>
-    <p>The chooser interface SHOULD be implemented in such a way as to be distinguishable from UI which a
-  website could produce. For example, the chooser might overlap the user agent’s UI in some
-  unspoofable way.</p>
-    <p>The chooser interface MUST include an indication of the origin which is requesting credentials.</p>
-    <p>The chooser interface SHOULD include all <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential⑤⓪">Credential</a></code> objects associated with the origin that
-  requested credentials.</p>
-    <p>User agents MAY internally associate information with each <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential⑤①">Credential</a></code> object beyond the
-  attributes specified in this document in order to enhance the utility of such a chooser. For
-  example, favicons could help disambiguate identity providers, etc. Any additional information
-  stored MUST not be exposed directly to the web.</p>
-    <p>The chooser’s behavior is not defined here: user agents are encouraged to experiment with UI
-  treatments that educate users about their authentication options, and guide them through the
-  process of choosing a credential to present. That said, the interface to the chooser is as
-  follows:</p>
-    <section class="algorithm" data-algorithm="ask the user to choose">
-      The user agent can <dfn class="dfn-paneled" data-dfn-type="abstract-op" data-export data-local-lt="ask to choose" data-lt="ask the user to choose a Credential" id="abstract-opdef-ask-the-user-to-choose-a-credential">ask the user to choose a <code>Credential</code></dfn>, given a <code class="idl"><a data-link-type="idl" href="#dictdef-credentialrequestoptions" id="ref-for-dictdef-credentialrequestoptions①⑧">CredentialRequestOptions</a></code> (<var>options</var>), and a set of <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential⑤②">Credential</a></code> objects from the <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store②⑥">credential store</a> (<var>locally discovered credentials</var>). 
-     <p>This algorithm returns either <code>null</code> if the user chose not to share a credential with the site,
-    a <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential⑤③">Credential</a></code> object if the user chose a specific credential, or a <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential⑤④">Credential</a></code> <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-object" id="ref-for-dfn-interface-object①⑦">interface
-    object</a> if the user chose a type of credential.</p>
-     <div class="note" role="note">
-       It seems reasonable for the chooser interface to display the list of <var>locally discovered
-      credentials</var> to the user, perhaps something like this exceptionally non-normative mock: 
-      <p><img alt="A mockup of what a chooser might look like." height="400" src="./mock-chooser.png" width="450"></p>
-      <p>If the <var>options</var> provided is not <a data-link-type="dfn" href="#credentialrequestoptions-matchable-a-priori" id="ref-for-credentialrequestoptions-matchable-a-priori②">matchable <i lang="la">a priori</i></a>, then it might
-      also make sense for the chooser interface to list the <a data-link-type="dfn" href="#credentialrequestoptions-relevant-credential-interface-objects" id="ref-for-credentialrequestoptions-relevant-credential-interface-objects⑨">relevant credential interface
-      objects</a> for <var>options</var> that aren’t covered by the list of explicit credentials. If, for
-      instance, a site accepts webauthn-style authenticators, then "Security Key" might show up
-      in the chooser list with an appropriate icon.</p>
-      <p>Also, note that in some cases the user agent may skip the chooser entirely. For example, if
-      the only <a data-link-type="dfn" href="#credentialrequestoptions-relevant-credential-interface-objects" id="ref-for-credentialrequestoptions-relevant-credential-interface-objects①⓪">relevant credential interface objects</a> is one that itself requires user
-      interaction, the user agent may return that interface directly, and rely on its internal
-      mediation flow for user consent.</p>
-     </div>
-    </section>
-   </section>
-   <section>
-    <h2 class="heading settled" data-level="6" id="security-considerations"><span class="secno">6. </span><span class="content">Security Considerations</span><a class="self-link" href="#security-considerations"></a></h2>
-    <p>The following sections represent guidelines for various security and privacy considerations.
-  Individual credential types may enforce stricter or more relaxed versions of these guidelines.</p>
-    <h3 class="heading settled" data-level="6.1" id="security-credential-access"><span class="secno">6.1. </span><span class="content">Cross-domain credential access</span><a class="self-link" href="#security-credential-access"></a></h3>
-    <p>Credentials are sensitive information, and user agents need to exercise caution in determining
-  when they can be safely shared with a website. The safest option is to restrict credential
-  sharing to the exact origin on which they were saved. That is likely too restrictive for the
-  web, however: consider sites which divide functionality into subdomains like <code>example.com</code> vs <code>admin.example.com</code>.</p>
-    <p>As a compromise between annoying users, and securing their credentials, user agents:</p>
-    <ol>
-     <li data-md>
-      <p>MUST NOT share credentials between origins whose scheme components represent a downgrade in
-  security. That is, it may make sense to allow credentials saved on <code>http://example.com/</code> to
-  be made available to <code>https://example.com/</code> (in order to encourage developers to migrate to
-  secure transport), but the inverse would be dangerous.</p>
-     <li data-md>
-      <p>MAY use the Public Suffix List <a data-link-type="biblio" href="#biblio-psl" title="Public Suffix List">[PSL]</a> to determine the effective scope of a credential by
-  comparing the <a data-link-type="dfn" href="https://publicsuffix.org/list/#" id="ref-for-something">registerable domain</a> of the credential’s <code class="idl"><a data-link-type="idl" href="#dom-credential-origin-slot" id="ref-for-dom-credential-origin-slot①②">[[origin]]</a></code> with the
-  origin in which <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get②③">get()</a></code> is called. That is: credentials saved on <code>https://admin.example.com/</code> and <code>https://example.com/</code> MAY be offered to users when <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get②④">get()</a></code> is called from <code>https://www.example.com/</code>, and vice versa.</p>
-     <li data-md>
-      <p>MUST NOT offer credentials to an origin in response to <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get②⑤">get()</a></code> without <a data-link-type="dfn" href="#user-mediated" id="ref-for-user-mediated①⑦">user mediation</a> if the credential’s origin is not an exact match for the calling origin.
-  That is, <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential⑤⑤">Credential</a></code> objects for <code>https://example.com</code> would not be returned directly to <code>https://www.example.com</code>, but could be offered to the user via the chooser.</p>
-    </ol>
-    <h3 class="heading settled" data-level="6.2" id="security-leakage"><span class="secno">6.2. </span><span class="content">Credential Leakage</span><a class="self-link" href="#security-leakage"></a></h3>
-    <p>Developers are well-advised to take
-  some precautions to mitigate the risk that a cross-site scripting attack could turn into
-  persistent access to a user’s account by setting a reasonable Content Security Policy <a data-link-type="biblio" href="#biblio-csp" title="Content Security Policy Level 3">[CSP]</a> which restricts the endpoints to which data can be sent. In particular, developers should ensure
-  that the following directives are set, explicitly or implicitly, in their pages' policies:</p>
-    <ul>
-     <li data-md>
-      <p><a data-link-type="dfn" href="https://www.w3.org/TR/CSP3/#script-src" id="ref-for-script-src"><code>script-src</code></a> and <a data-link-type="dfn" href="https://www.w3.org/TR/CSP3/#object-src" id="ref-for-object-src"><code>object-src</code></a> both restrict script execution on a page, making
-  it less likely that a cross-site scripting attack will succeed in the first place. If sites
-  are populating <code><a data-link-type="element" href="https://html.spec.whatwg.org/multipage/forms.html#the-form-element" id="ref-for-the-form-element②">form</a></code> elements, also <a data-link-type="dfn" href="https://www.w3.org/TR/CSP3/#form-action" id="ref-for-form-action"><code>form-action</code></a> directives should be set.</p>
-     <li data-md>
-      <p><a data-link-type="dfn" href="https://www.w3.org/TR/CSP3/#connect-src" id="ref-for-connect-src"><code>connect-src</code></a> restricts the origins to which <a data-link-type="functionish" href="https://fetch.spec.whatwg.org/#dom-global-fetch" id="ref-for-dom-global-fetch①"><code>fetch()</code></a> may submit data (which mitigates the risk that credentials could be exfiltrated to <code>evil.com</code>.</p>
-     <li data-md>
-      <p><a data-link-type="dfn" href="https://www.w3.org/TR/CSP3/#child-src" id="ref-for-child-src"><code>child-src</code></a> restricts the nested browsing contexts which may be embedded in a page,
-  making it more difficult to inject a malicious <code>postMessage()</code> target. <a data-link-type="biblio" href="#biblio-html" title="HTML Standard">[HTML]</a></p>
-    </ul>
-    <p>Developers should, of course, also properly escape input and output, and consider using other
-  layers of defense, such as Subresource Integrity <a data-link-type="biblio" href="#biblio-sri" title="Subresource Integrity">[SRI]</a> to further reduce risk.</p>
-    <p>When defining specific credential types, specific credential types SHOULD give due consideration
-  to the ways in which credential data can be transmitted over the wire. It might be reasonable,
-  for example, to define transmission mechanisms which are restricted to same-origin endpoints.</p>
-    <h3 class="heading settled" data-level="6.3" id="insecure-sites"><span class="secno">6.3. </span><span class="content">Insecure Sites</span><a class="self-link" href="#insecure-sites"></a></h3>
-    <p>User agents MUST NOT expose the APIs defined here to environments which are not <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#secure-context" id="ref-for-secure-context④">secure
-  contexts</a>. User agents might implement autofill mechanisms which store user credentials and fill
-  sign-in forms on non-<a data-link-type="dfn" href="https://www.w3.org/TR/mixed-content/#a-priori-authenticated-url" id="ref-for-a-priori-authenticated-url①"><i lang="la">a priori</i> authenticated URLs</a>, but those sites cannot
-  be trusted to interact directly with the credential manager in any meaningful way, and those sites
-  MUST NOT have access to credentials saved in <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#secure-context" id="ref-for-secure-context⑤">secure contexts</a>.</p>
-    <h3 class="heading settled" data-level="6.4" id="security-origin-confusion"><span class="secno">6.4. </span><span class="content">Origin Confusion</span><a class="self-link" href="#security-origin-confusion"></a></h3>
-    <p>If framed pages have access to the APIs defined here, it might be possible to confuse a user into
-  granting access to credentials for an origin other than the <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/document-sequences.html#top-level-browsing-context" id="ref-for-top-level-browsing-context">top-level browsing context</a>,
-  which is the only security origin which users can reasonably be expected to understand.</p>
-    <p>This document exposes the Credential Management APIs to those contexts, as it’s likely that some
-  credential types will be straightforward to make available if user agents put enough thought and
-  context into their UI.</p>
-    <p>Specific credential types, however, will be difficult to expose in those contexts without risk.
-  Those credential types are restricted via checks in their <code class="idl"><a data-link-type="idl" href="#dom-credential-create-slot" id="ref-for-dom-credential-create-slot②">[[Create]](origin, options, sameOriginWithAncestors)</a></code>, <code class="idl"><a data-link-type="idl" href="#dom-credential-collectfromcredentialstore-slot" id="ref-for-dom-credential-collectfromcredentialstore-slot②">[[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)</a></code>, <code class="idl"><a data-link-type="idl" href="#dom-credential-discoverfromexternalsource-slot" id="ref-for-dom-credential-discoverfromexternalsource-slot④">[[DiscoverFromExternalSource]](origin, options, sameOriginWithAncestors)</a></code>, and <code class="idl"><a data-link-type="idl" href="#dom-credential-store-slot" id="ref-for-dom-credential-store-slot②">[[Store]](credential, sameOriginWithAncestors)</a></code> methods, as appropriate.</p>
-    <p>For example <code class="idl"><a data-link-type="idl" href="#passwordcredential" id="ref-for-passwordcredential②②">PasswordCredential</a></code>'s <code class="idl"><a data-link-type="idl" href="#dom-passwordcredential-collectfromcredentialstore-slot" id="ref-for-dom-passwordcredential-collectfromcredentialstore-slot①">[[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)</a></code> method
-  will immedietely return an empty set if called from inside a <code class="idl"><a data-link-type="idl" href="https://html.spec.whatwg.org/multipage/workers.html#worker" id="ref-for-worker">Worker</a></code>, or a non-<a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/document-sequences.html#top-level-browsing-context" id="ref-for-top-level-browsing-context①">top-level
-  browsing context</a>.</p>
-    <h3 class="heading settled" data-level="6.5" id="security-signout"><span class="secno">6.5. </span><span class="content">Signing-Out</span><a class="self-link" href="#security-signout"></a></h3>
-    <p>If a user has chosen to automatically sign-in to websites, as discussed in <a href="#user-mediation-requirement">§ 5.2 Requiring User Mediation</a>, then the user agent will provide credentials to an origin
-  whenever it asks for them. The website can instruct the user agent to suppress this behavior by
-  calling <code class="idl"><a data-link-type="idl" href="#credentialscontainer" id="ref-for-credentialscontainer⑤">CredentialsContainer</a></code>'s <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-preventsilentaccess" id="ref-for-dom-credentialscontainer-preventsilentaccess③">preventSilentAccess()</a></code> method, which
-  will turn off automatic sign-in for a given origin.</p>
-    <p>The user agent relies on the website to do the right thing; an inattentive (or malicious) website
-  could simply neglect to call this method, causing the user agent to continue providing credentials
-  against the user’s apparent intention. This is marginally worse than the status-quo of a site that
-  doesn’t clear user credentials when they click "Sign-out", as the user agent becomes complicit in
-  the authentication.</p>
-    <p>The user MUST have some control over this behavior. As noted in <a href="#user-mediation-requirement">§ 5.2 Requiring User Mediation</a>,
-  clearing cookies for an origin will also reset that origin’s <a data-link-type="dfn" href="#origin-prevent-silent-access-flag" id="ref-for-origin-prevent-silent-access-flag⑨"><code>prevent silent access</code> flag</a> the <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store②⑦">credential store</a> to <code>true</code>. Additionally, the user agent SHOULD provide some UI affordance
-  for disabling automatic sign-in for a particular origin. This could be tied to the notification
-  that credentials have been provided to an origin, for example.</p>
-   </section>
-   <section>
-    <h2 class="heading settled" data-level="7" id="privacy-considerations"><span class="secno">7. </span><span class="content">Privacy Considerations</span><a class="self-link" href="#privacy-considerations"></a></h2>
-    <h3 class="heading settled" data-level="7.1" id="security-timing"><span class="secno">7.1. </span><span class="content">Timing Attacks</span><a class="self-link" href="#security-timing"></a></h3>
-    <p>If the user has no credentials for an origin, a call to <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get②⑥">get()</a></code> will
-  resolve very quickly indeed. A malicious website could distinguish between a user with no
-  credentials and a user with credentials who chooses not to share them.</p>
-    <p>User agents SHOULD also rate-limit credential requests. It’s almost certainly abusive for a page
-  to request credentials more than a few times in a short period.</p>
-    <h3 class="heading settled" data-level="7.2" id="security-chooser-leakage"><span class="secno">7.2. </span><span class="content">Chooser Leakage</span><a class="self-link" href="#security-chooser-leakage"></a></h3>
-    <p>If a user agent’s <a data-link-type="dfn" href="#credential-chooser" id="ref-for-credential-chooser①⓪">credential chooser</a> displays images supplied by an origin (for example, if a <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential⑤⑥">Credential</a></code> displays a site’s favicon), then, requests for these images MUST NOT be directly
-  tied to instantiating the chooser in order to avoid leaking chooser usage. One option would be to
-  fetch the images in the background when saving or updating a <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential⑤⑦">Credential</a></code>, and to cache them for
-  the lifetime of the <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential⑤⑧">Credential</a></code>.</p>
-    <p>These images MUST be fetched with the <a data-link-type="dfn" href="https://fetch.spec.whatwg.org/#concept-request-credentials-mode" id="ref-for-concept-request-credentials-mode">credentials mode</a> set to "<code>omit</code>", the <a data-link-type="dfn" href="https://fetch.spec.whatwg.org/#request-service-workers-mode" id="ref-for-request-service-workers-mode">service-workers mode</a> set to "<code>none</code>", the <a data-link-type="dfn" href="https://fetch.spec.whatwg.org/#concept-request-client" id="ref-for-concept-request-client">client</a> set to <code>null</code>, the <a data-link-type="dfn" href="https://fetch.spec.whatwg.org/#concept-request-initiator" id="ref-for-concept-request-initiator">initiator</a> set to the empty string, and the <a data-link-type="dfn" href="https://fetch.spec.whatwg.org/#concept-request-destination" id="ref-for-concept-request-destination">destination</a> "<code>subresource</code>".</p>
-    <p>Moreover, if the user agent allows the user to change either the name or icon associated with the
-  credential, the alterations to the data SHOULD NOT be exposed to the website (consider a user who
-  names two credentials for an origin "My fake account" and "My real account", for instance).</p>
-    <h3 class="heading settled" data-level="7.3" id="security-local-data"><span class="secno">7.3. </span><span class="content">Locally Stored Data</span><a class="self-link" href="#security-local-data"></a></h3>
-    <p>This API offers an <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/origin.html#concept-origin" id="ref-for-concept-origin①③">origin</a> the ability to store data persistently along with a user’s profile.
-  Since most user agents treat credential data differently than "browsing data" (cookies, etc.)
-  this might have the side effect of surprising a user who might believe that all traces of an
-  origin have been wiped out when they clear their cookies.</p>
-    <p>User agents SHOULD provide UI that makes it clear to a user that credential data is stored for an
-  origin, and SHOULD make it easy for users to remove such data when they’re no longer interested in
-  keeping it around.</p>
-   </section>
-   <section class="non-normative">
-    <h2 class="heading settled" data-level="8" id="implementation"><span class="secno">8. </span><span class="content">Implementation Considerations</span><a class="self-link" href="#implementation"></a></h2>
-    <p><em>This section is non-normative.</em></p>
-    <h3 class="heading settled" data-level="8.1" id="implementation-authors"><span class="secno">8.1. </span><span class="content">Website Authors</span><a class="self-link" href="#implementation-authors"></a></h3>
-    <p class="issue" id="issue-84808a53"><a class="self-link" href="#issue-84808a53"></a> Add some thoughts here about when and how the API
-  should be used, especially with regard to <code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-mediation" id="ref-for-dom-credentialrequestoptions-mediation①⑧">mediation</a></code>. <a href="https://github.com/w3c/webappsec/issues/290">[Issue #w3c/webappsec#290]</a></p>
-    <p class="issue" id="issue-19b3ffaf"><a class="self-link" href="#issue-19b3ffaf"></a> Describe encoding restrictions of submitting credentials by <a data-link-type="functionish" href="https://fetch.spec.whatwg.org/#dom-global-fetch" id="ref-for-dom-global-fetch②"><code>fetch()</code></a> with a <code class="idl"><a data-link-type="idl" href="https://xhr.spec.whatwg.org/#interface-formdata" id="ref-for-interface-formdata①">FormData</a></code> body.</p>
-    <p>When performing feature detection for a given credential type, developers are encouraged to verify
-  that the relevant <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential⑤⑨">Credential</a></code> specialization is present, rather than relying on the presence of <code>navigator.credentals</code>. The latter verifies the existence of the API itself, but does not ensure
-  that the specific kind of credential necessary for a given site is supported. For example, if a
-  given site requires passwords, checking <code>if (window.PasswordCredential)</code> is the most effective
-  verification of support.</p>
-    <h3 class="heading settled" data-level="8.2" id="implementation-extension"><span class="secno">8.2. </span><span class="content">Extension Points</span><a class="self-link" href="#implementation-extension"></a></h3>
-    <p>This document provides a generic, high-level API that’s meant to be extended with specific types
-  of <a data-link-type="dfn" href="#concept-credential" id="ref-for-concept-credential①⑥">credentials</a> that serve specific authentication needs. Doing so is, hopefully,
-  straightforward:</p>
-    <ol>
-     <li data-md>
-      <p>Define a new interface that inherits from <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential⑥⓪">Credential</a></code>:</p>
-      <div class="example" id="example-99055e03">
-       <a class="self-link" href="#example-99055e03"></a> 
-<pre>[Exposed=Window,
- SecureContext]
-interface ExampleCredential : Credential {
-  // Definition goes here.
-};
-</pre>
-      </div>
-     <li data-md>
-      <p>Define appropriate <code class="idl"><a data-link-type="idl" href="#dom-credential-create-slot" id="ref-for-dom-credential-create-slot③">[[Create]](origin, options, sameOriginWithAncestors)</a></code>, <code class="idl"><a data-link-type="idl" href="#dom-credential-collectfromcredentialstore-slot" id="ref-for-dom-credential-collectfromcredentialstore-slot③">[[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)</a></code>, <code class="idl"><a data-link-type="idl" href="#dom-credential-discoverfromexternalsource-slot" id="ref-for-dom-credential-discoverfromexternalsource-slot⑤">[[DiscoverFromExternalSource]](origin, options, sameOriginWithAncestors)</a></code>, and <code class="idl"><a data-link-type="idl" href="#dom-credential-store-slot" id="ref-for-dom-credential-store-slot③">[[Store]](credential, sameOriginWithAncestors)</a></code> methods on <code>ExampleCredential</code>’s <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-object" id="ref-for-dfn-interface-object①⑧">interface object</a>. <code class="idl"><a data-link-type="idl" href="#dom-credential-collectfromcredentialstore-slot" id="ref-for-dom-credential-collectfromcredentialstore-slot④">[[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)</a></code> is appropriate for <a data-link-type="dfn" href="#concept-credential" id="ref-for-concept-credential①⑦">credentials</a> that remain <a data-link-type="dfn" href="#credential-effective" id="ref-for-credential-effective③">effective</a> forever and
-  can therefore simply be copied out of the <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store②⑧">credential store</a>, while <code class="idl"><a data-link-type="idl" href="#dom-credential-discoverfromexternalsource-slot" id="ref-for-dom-credential-discoverfromexternalsource-slot⑥">[[DiscoverFromExternalSource]](origin, options, sameOriginWithAncestors)</a></code> is appropriate for <a data-link-type="dfn" href="#concept-credential" id="ref-for-concept-credential①⑧">credentials</a> that need to be re-generated from a <a data-link-type="dfn" href="#credential-source" id="ref-for-credential-source①">credential source</a>.</p>
-      <p>Long-running operations, like those in <code class="idl"><a data-link-type="idl" href="https://www.w3.org/TR/webauthn-3/#publickeycredential" id="ref-for-publickeycredential①">PublicKeyCredential</a></code>'s <code class="idl"><a data-link-type="idl" href="https://www.w3.org/TR/webauthn-3/#dom-publickeycredential-create-slot" id="ref-for-dom-publickeycredential-create-slot">[[Create]](origin, options, sameOriginWithAncestors)</a></code> and <code class="idl"><a data-link-type="idl" href="https://www.w3.org/TR/webauthn-3/#dom-publickeycredential-discoverfromexternalsource-slot" id="ref-for-dom-publickeycredential-discoverfromexternalsource-slot">[[DiscoverFromExternalSource]](origin, options, sameOriginWithAncestors)</a></code> operations are encouraged to use <code>options.signal</code> to allow developers to abort
-  the operation. See <a href="https://dom.spec.whatwg.org/#abortcontroller-api-integration"><cite>DOM</cite> § 3.3 Using AbortController and AbortSignal objects in APIs</a> for detailed instructions.</p>
-      <div class="example" id="example-48cb4547">
-       <a class="self-link" href="#example-48cb4547"></a> <code>ExampleCredential</code>’s <code>[[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)</code> internal method is called
-    with an <a data-link-type="dfn" href="https://html.spec.whatwg.org/multipage/webappapis.html#concept-settings-object-origin" id="ref-for-concept-settings-object-origin⑨">origin</a> (<code>origin</code>), a CredentialRequestOptions
-    object (<code>options</code>), and a boolean which is <code>true</code> iff the calling context is <a data-link-type="dfn" href="#same-origin-with-its-ancestors" id="ref-for-same-origin-with-its-ancestors①④">same-origin with its ancestors</a>.
-    The algorithm returns a set of <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential⑥①">Credential</a></code> objects that match the options provided. If no matching <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential⑥②">Credential</a></code> objects are
-    available, the returned set will be empty. 
-       <ol>
-        <li data-md>
-         <p class="assertion">Assert: <code>options</code>[<code>example</code>] exists.</p>
-        <li data-md>
-         <p>If <code>options</code>[<code>example</code>] is not truthy, return the empty set.</p>
-        <li data-md>
-         <p>For each <i>credential</i> in the <a data-link-type="dfn" href="#concept-credential-store" id="ref-for-concept-credential-store②⑨">credential store</a>:</p>
-         <ol>
-          <li data-md>
-           <p>...</p>
-         </ol>
-       </ol>
-      </div>
-     <li data-md>
-      <p>Define the value of the <code>ExampleCredential</code> <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-object" id="ref-for-dfn-interface-object①⑨">interface object</a>'s <code class="idl"><a data-link-type="idl" href="#dom-credential-type-slot" id="ref-for-dom-credential-type-slot①③">[[type]]</a></code> slot:</p>
-      <div class="example" id="example-b9aa85d8"><a class="self-link" href="#example-b9aa85d8"></a> The <code>ExampleCredential</code> <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-object" id="ref-for-dfn-interface-object②⓪">interface object</a> has an internal slot named <code>[[type]]</code> whose
-    value is the string "<code>example</code>". </div>
-     <li data-md>
-      <p>Define the value of the <code>ExampleCredential</code> <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-object" id="ref-for-dfn-interface-object②①">interface object</a>'s <code class="idl"><a data-link-type="idl" href="#dom-credential-discovery-slot" id="ref-for-dom-credential-discovery-slot③">[[discovery]]</a></code> slot:</p>
-      <div class="example" id="example-4fc96e36"><a class="self-link" href="#example-4fc96e36"></a> The <code>ExampleCredential</code> <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-object" id="ref-for-dfn-interface-object②②">interface object</a> has an internal slot named <code>[[discovery]]</code> whose
-    value is "<code class="idl"><a data-link-type="idl" href="#dom-credential-discovery-credential-store" id="ref-for-dom-credential-discovery-credential-store③">credential store</a></code>". </div>
-     <li data-md>
-      <p>Extend <code class="idl"><a data-link-type="idl" href="#dictdef-credentialrequestoptions" id="ref-for-dictdef-credentialrequestoptions①⑨">CredentialRequestOptions</a></code> with the options the new credential type needs to respond
-  reasonably to <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get②⑦">get()</a></code>:</p>
-      <div class="example" id="example-b76ecbfb">
-       <a class="self-link" href="#example-b76ecbfb"></a> 
-<pre>dictionary ExampleCredentialRequestOptions {
-  // Definition goes here.
-};
-
-partial dictionary CredentialRequestOptions {
-  ExampleCredentialRequestOptions example;
-};
-</pre>
-      </div>
-     <li data-md>
-      <p>Extend <code class="idl"><a data-link-type="idl" href="#dictdef-credentialcreationoptions" id="ref-for-dictdef-credentialcreationoptions①④">CredentialCreationOptions</a></code> with the data the new credential type needs to create <code>Credential</code> objects in response to <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-create" id="ref-for-dom-credentialscontainer-create⑦">create()</a></code>:</p>
-      <div class="example" id="example-a3c18cc7">
-       <a class="self-link" href="#example-a3c18cc7"></a> 
-<pre>dictionary ExampleCredentialInit {
-  // Definition goes here.
-};
-
-partial dictionary CredentialCreationOptions {
-  ExampleCredentialInit example;
-};
-</pre>
-      </div>
-     <li data-md>
-      <p>If the new credential type supports <code class="idl"><a data-link-type="idl" href="#dom-credentialmediationrequirement-conditional" id="ref-for-dom-credentialmediationrequirement-conditional①①">conditional</a></code> <a data-link-type="dfn" href="#user-mediated" id="ref-for-user-mediated①⑧">user
-  mediation</a>, define <code>ExampleCredential/isConditionalMediationAvailable()</code> to return a new <code class="idl"><a data-link-type="idl" href="https://webidl.spec.whatwg.org/#idl-promise" id="ref-for-idl-promise①④">Promise</a></code> that <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#resolve" id="ref-for-resolve①①">resolves</a> with <code>true</code>.</p>
-     <li data-md>
-      <p>Following the procedure in <a href="#sctn-registry-requirements">§ 2.1.2.1 Registration Entry Requirements and Update Process</a>, add an entry to the <a href="#sctn-cred-type-registry">Credential Type Registry</a> for the new
-  "example" <a data-link-type="dfn" href="#credential-type-registry-credential-type" id="ref-for-credential-type-registry-credential-type①②">credential type</a> and its corresponding:</p>
-      <ul>
-       <li data-md>
-        <p><code class="idl"><a data-link-type="idl" href="#dictdef-credentialcreationoptions" id="ref-for-dictdef-credentialcreationoptions①⑤">CredentialCreationOptions</a></code>' and <code class="idl"><a data-link-type="idl" href="#dictdef-credentialrequestoptions" id="ref-for-dictdef-credentialrequestoptions②⓪">CredentialRequestOptions</a></code>' <a data-link-type="dfn" href="#credential-type-registry-options-member-identifier" id="ref-for-credential-type-registry-options-member-identifier④">Options Member Identifier</a> (in this case it is "example"), and</p>
-       <li data-md>
-        <p><a data-link-type="dfn" href="#credential-type-registry-appropriate-interface-object" id="ref-for-credential-type-registry-appropriate-interface-object②">Appropriate Interface Object</a> <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-identifier" id="ref-for-dfn-identifier④">identifier</a> (in this case it is <code>ExampleCredential</code>).</p>
-      </ul>
-      <p class="note" role="note"><span class="marker">Note:</span> The <a data-link-type="dfn" href="#credential-type-registry-credential-type" id="ref-for-credential-type-registry-credential-type①③">credential type</a>'s options dictionaries' <a data-link-type="dfn" href="#credential-type-registry-options-member-identifier" id="ref-for-credential-type-registry-options-member-identifier⑤">Options Member Identifier</a> must be the
-  same in both <code class="idl"><a data-link-type="idl" href="#dictdef-credentialcreationoptions" id="ref-for-dictdef-credentialcreationoptions①⑥">CredentialCreationOptions</a></code> and <code class="idl"><a data-link-type="idl" href="#dictdef-credentialrequestoptions" id="ref-for-dictdef-credentialrequestoptions②①">CredentialRequestOptions</a></code>, and should be
-  the same as the <a data-link-type="dfn" href="#credential-credential-type" id="ref-for-credential-credential-type⑤">credential type</a> value in the <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential⑥③">Credential</a></code> <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-object" id="ref-for-dfn-interface-object②③">interface object</a>'s <code class="idl"><a data-link-type="idl" href="#dom-credential-type-slot" id="ref-for-dom-credential-type-slot①④">[[type]]</a></code> slot.</p>
-    </ol>
-    <p>You might also find that new primitives are necessary. For instance, you might want to return
-  many <code class="idl"><a data-link-type="idl" href="#credential" id="ref-for-credential⑥④">Credential</a></code> objects rather than just one in some sort of complicated, multi-factor
-  sign-in process. That might be accomplished in a generic fashion by adding a <code>getAll()</code> method to <code class="idl"><a data-link-type="idl" href="#credentialscontainer" id="ref-for-credentialscontainer⑥">CredentialsContainer</a></code> which returned a <code>sequence&lt;Credential></code>, and defining a reasonable
-  mechanism for dealing with requesting credentials of distinct types.</p>
-    <p>For any such extension, we recommend getting in touch with <a href="mailto:public-webappsec@w3.org">public-webappsec@</a> for consultation and review.</p>
-    <h3 class="heading settled" data-level="8.3" id="browser-extensions"><span class="secno">8.3. </span><span class="content">Browser Extensions</span><a class="self-link" href="#browser-extensions"></a></h3>
-    <p>Ideally, user agents that implement an extension system of some sort will
-  allow third-parties to hook into these API endpoints in order to improve
-  the behavior of third party credential management software in the same way
-  that user agents can improve their own via this imperative approach.</p>
-    <p>This could range from a complex new API that the user agent mediates, or
-  simply by allowing extensions to overwrite the <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-get" id="ref-for-dom-credentialscontainer-get②⑧">get()</a></code> and <code class="idl"><a data-link-type="idl" href="#dom-credentialscontainer-store" id="ref-for-dom-credentialscontainer-store①③">store()</a></code> endpoints for their own purposes.</p>
-   </section>
-   <section>
-    <h2 class="heading settled" data-level="9" id="teh-futur"><span class="secno">9. </span><span class="content">Future Work</span><a class="self-link" href="#teh-futur"></a></h2>
-    <p><em>This section is non-normative.</em></p>
-    <p>The API defined here does the bare minimum to expose user agent’s credential managers to the web,
-  and allows the web to help those credential managers understand when federated identity providers
-  are in use. The next logical step will be along the lines sketched in documents like <a data-link-type="biblio" href="#biblio-web-login" title="web-login">[WEB-LOGIN]</a> (and, to some extent, Mozilla’s BrowserID <a data-link-type="biblio" href="#biblio-browserid" title="BrowserID">[BROWSERID]</a>).</p>
-    <p>The user agent is in the unique position of being able to effectively mediate the relationship
-  between users, identity providers, and websites. If the user agent can remove some of the risk and
-  confusion associated with the typical authentication flows, users will be in a significantly
-  better position than today.</p>
-    <p>A natural way to expose this information might be to extend the <code class="idl"><a data-link-type="idl" href="#federatedcredential" id="ref-for-federatedcredential①⑤">FederatedCredential</a></code> interface
-  with properties like authentication tokens, and possibly to add some form of manifest format with
-  properties that declare the authentication type which the provider supports.</p>
-    <p>The API described here is designed to be extensible enough to support use cases that require user
-  interaction, perhaps with websites other than the one which requested credentials. We hope that
-  the Promise-based system we’ve settled on is extensible enough to support these kinds of
-  asynchronous flows which could require some level of interaction between multiple browsing
-  contexts (e.g. mediated activity on <code>idp.com</code> might resolve a Promise handed back to <code>rp.com</code>) or between devices and user agents (e.g. <a data-link-type="biblio" href="#biblio-webauthn" title="Web Authentication:An API for accessing Public Key Credentials Level 1">[WEBAUTHN]</a>) in the future without
-  redesigning the API from the ground up.</p>
-    <p>Baby steps.</p>
-   </section>
-  </main>
-<script src="https://www.w3.org/scripts/TR/2021/fixup.js"></script>
-  <h2 class="no-num no-ref heading settled" id="index"><span class="content">Index</span><a class="self-link" href="#index"></a></h2>
-  <h3 class="no-num no-ref heading settled" id="index-defined-here"><span class="content">Terms defined by this specification</span><a class="self-link" href="#index-defined-here"></a></h3>
-  <ul class="index">
-   <li><a href="#active-credential-types">active credential types</a><span>, in § 2.1</span>
-   <li><a href="#credential-type-registry-appropriate-interface-object">Appropriate Interface Object</a><span>, in § 2.1.2</span>
-   <li><a href="#abstract-opdef-ask-the-user-to-choose-a-credential">ask the user to choose a Credential</a><span>, in § 5.3</span>
-   <li><a href="#abstract-opdef-ask-the-user-to-choose-a-credential">ask to choose</a><span>, in § 5.3</span>
-   <li><a href="#abstract-opdef-collect-credentials-from-the-credential-store">collect Credentials from the credential store</a><span>, in § 2.5.2</span>
-   <li>
-    [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)
-    <ul>
-     <li><a href="#dom-credential-collectfromcredentialstore-slot">method for Credential</a><span>, in § 2.2.1.1</span>
-     <li><a href="#dom-federatedcredential-collectfromcredentialstore-slot">method for FederatedCredential</a><span>, in § 4.2.1</span>
-     <li><a href="#dom-passwordcredential-collectfromcredentialstore-slot">method for PasswordCredential</a><span>, in § 3.3.1</span>
-    </ul>
-   <li><a href="#abstract-opdef-collect-credentials-from-the-credential-store">collect local</a><span>, in § 2.5.2</span>
-   <li><a href="#dom-credentialmediationrequirement-conditional">"conditional"</a><span>, in § 2.3.2</span>
-   <li><a href="#dom-credentialmediationrequirement-conditional">conditional</a><span>, in § 2.3.2</span>
-   <li>
-    constructor(data)
-    <ul>
-     <li><a href="#dom-federatedcredential-federatedcredential">constructor for FederatedCredential</a><span>, in § 4.1</span>
-     <li><a href="#dom-passwordcredential-passwordcredential-data">constructor for PasswordCredential</a><span>, in § 3.2</span>
-    </ul>
-   <li><a href="#dom-passwordcredential-passwordcredential">constructor(form)</a><span>, in § 3.2</span>
-   <li><a href="#dom-credentialscontainer-create">create()</a><span>, in § 2.3</span>
-   <li><a href="#abstract-opdef-create-a-credential">Create a Credential</a><span>, in § 2.5.4</span>
-   <li><a href="#abstract-opdef-create-a-federatedcredential-from-federatedcredentialinit">Create a FederatedCredential from FederatedCredentialInit</a><span>, in § 4.2.4</span>
-   <li><a href="#abstract-opdef-create-a-passwordcredential-from-an-htmlformelement">Create a PasswordCredential from an HTMLFormElement</a><span>, in § 3.3.4</span>
-   <li><a href="#abstract-opdef-create-a-passwordcredential-from-passwordcredentialdata">Create a PasswordCredential from PasswordCredentialData</a><span>, in § 3.3.5</span>
-   <li><a href="#dom-credentialscontainer-create">create(options)</a><span>, in § 2.3</span>
-   <li>
-    [[Create]](origin, options, sameOriginWithAncestors)
-    <ul>
-     <li><a href="#dom-credential-create-slot">method for Credential</a><span>, in § 2.2.1.4</span>
-     <li><a href="#dom-federatedcredential-create-slot">method for FederatedCredential</a><span>, in § 4.2.2</span>
-     <li><a href="#dom-passwordcredential-create-slot">method for PasswordCredential</a><span>, in § 3.3.2</span>
-    </ul>
-   <li><a href="#credential">Credential</a><span>, in § 2.2</span>
-   <li><a href="#concept-credential">credential</a><span>, in § 2</span>
-   <li><a href="#credential-chooser">credential chooser</a><span>, in § 5.3</span>
-   <li><a href="#dictdef-credentialcreationoptions">CredentialCreationOptions</a><span>, in § 2.4</span>
-   <li><a href="#dictdef-credentialdata">CredentialData</a><span>, in § 2.3</span>
-   <li><a href="#enumdef-credentialmediationrequirement">CredentialMediationRequirement</a><span>, in § 2.3.2</span>
-   <li><a href="#dictdef-credentialrequestoptions">CredentialRequestOptions</a><span>, in § 2.3.1</span>
-   <li><a href="#dom-navigator-credentials">credentials</a><span>, in § 2.3</span>
-   <li><a href="#credentialscontainer">CredentialsContainer</a><span>, in § 2.3</span>
-   <li><a href="#credential-source">credential source</a><span>, in § 2</span>
-   <li>
-    credential store
-    <ul>
-     <li><a href="#concept-credential-store">definition of</a><span>, in § 2.1</span>
-     <li><a href="#dom-credential-discovery-credential-store">enum-value for Credential/[[discovery]]</a><span>, in § 2.2</span>
-    </ul>
-   <li><a href="#credential-type-registry-credential-type">Credential Type</a><span>, in § 2.1.2</span>
-   <li><a href="#credential-credential-type">credential type</a><span>, in § 2.2</span>
-   <li><a href="#credentialuserdata">CredentialUserData</a><span>, in § 2.2.2</span>
-   <li><a href="#dom-credential-discoverfromexternalsource-slot">[[DiscoverFromExternalSource]](origin, options, sameOriginWithAncestors)</a><span>, in § 2.2.1.2</span>
-   <li><a href="#dom-credential-discovery-slot">[[discovery]]</a><span>, in § 2.2</span>
-   <li><a href="#credential-effective">effective</a><span>, in § 2</span>
-   <li>
-    federated
-    <ul>
-     <li><a href="#dom-federatedcredential-federated">const for FederatedCredential</a><span>, in § 4.1</span>
-     <li><a href="#dom-credentialcreationoptions-federated">dict-member for CredentialCreationOptions</a><span>, in § 4.1</span>
-     <li><a href="#dom-credentialrequestoptions-federated">dict-member for CredentialRequestOptions</a><span>, in § 4.1</span>
-    </ul>
-   <li><a href="#federatedcredential">FederatedCredential</a><span>, in § 4.1</span>
-   <li><a href="#dom-federatedcredential-federatedcredential">FederatedCredential(data)</a><span>, in § 4.1</span>
-   <li><a href="#dictdef-federatedcredentialinit">FederatedCredentialInit</a><span>, in § 4.1</span>
-   <li><a href="#dictdef-federatedcredentialrequestoptions">FederatedCredentialRequestOptions</a><span>, in § 4.1</span>
-   <li><a href="#dom-credentialscontainer-get">get()</a><span>, in § 2.3</span>
-   <li><a href="#dom-credentialscontainer-get">get(options)</a><span>, in § 2.3</span>
-   <li>
-    iconURL
-    <ul>
-     <li><a href="#dom-credentialuserdata-iconurl">attribute for CredentialUserData</a><span>, in § 2.2.2</span>
-     <li><a href="#dom-federatedcredentialinit-iconurl">dict-member for FederatedCredentialInit</a><span>, in § 4.1</span>
-     <li><a href="#dom-passwordcredentialdata-iconurl">dict-member for PasswordCredentialData</a><span>, in § 3.2</span>
-    </ul>
-   <li>
-    id
-    <ul>
-     <li><a href="#dom-credential-id">attribute for Credential</a><span>, in § 2.2</span>
-     <li><a href="#dom-credentialdata-id">dict-member for CredentialData</a><span>, in § 2.3</span>
-    </ul>
-   <li><a href="#dom-credential-isconditionalmediationavailable">isConditionalMediationAvailable()</a><span>, in § 2.2</span>
-   <li><a href="#credentialrequestoptions-matchable-a-priori">matchable a priori</a><span>, in § 2.3.1</span>
-   <li><a href="#dom-credentialrequestoptions-mediation">mediation</a><span>, in § 2.3.1</span>
-   <li><a href="#abstract-opdef-credential-store-modify-a-credential">Modify a credential</a><span>, in § 2.1</span>
-   <li>
-    name
-    <ul>
-     <li><a href="#dom-credentialuserdata-name">attribute for CredentialUserData</a><span>, in § 2.2.2</span>
-     <li><a href="#dom-federatedcredentialinit-name">dict-member for FederatedCredentialInit</a><span>, in § 4.1</span>
-     <li><a href="#dom-passwordcredentialdata-name">dict-member for PasswordCredentialData</a><span>, in § 3.2</span>
-    </ul>
-   <li><a href="#dom-credentialmediationrequirement-optional">"optional"</a><span>, in § 2.3.2</span>
-   <li><a href="#dom-credentialmediationrequirement-optional">optional</a><span>, in § 2.3.2</span>
-   <li><a href="#credential-type-registry-options-member-identifier">Options Member Identifier</a><span>, in § 2.1.2</span>
-   <li><a href="#dom-credential-origin-slot">[[origin]]</a><span>, in § 2.2</span>
-   <li>
-    origin
-    <ul>
-     <li><a href="#dom-federatedcredentialinit-origin">dict-member for FederatedCredentialInit</a><span>, in § 4.1</span>
-     <li><a href="#dom-passwordcredentialdata-origin">dict-member for PasswordCredentialData</a><span>, in § 3.2</span>
-    </ul>
-   <li><a href="#credential-origin-bound">origin bound</a><span>, in § 2.2</span>
-   <li>
-    password
-    <ul>
-     <li><a href="#dom-passwordcredential-password">attribute for PasswordCredential</a><span>, in § 3.2</span>
-     <li><a href="#dom-credential-type-password">const for Credential/[[type]]</a><span>, in § 3.2</span>
-     <li><a href="#dom-credentialcreationoptions-password">dict-member for CredentialCreationOptions</a><span>, in § 3.2</span>
-     <li><a href="#dom-credentialrequestoptions-password">dict-member for CredentialRequestOptions</a><span>, in § 3.2</span>
-     <li><a href="#dom-passwordcredentialdata-password">dict-member for PasswordCredentialData</a><span>, in § 3.2</span>
-    </ul>
-   <li><a href="#passwordcredential">PasswordCredential</a><span>, in § 3.2</span>
-   <li><a href="#dom-passwordcredential-passwordcredential-data">PasswordCredential(data)</a><span>, in § 3.2</span>
-   <li><a href="#dictdef-passwordcredentialdata">PasswordCredentialData</a><span>, in § 3.2</span>
-   <li><a href="#dom-passwordcredential-passwordcredential">PasswordCredential(form)</a><span>, in § 3.2</span>
-   <li><a href="#typedefdef-passwordcredentialinit">PasswordCredentialInit</a><span>, in § 3.2</span>
-   <li><a href="#abstract-opdef-prevent-silent-access">Prevent Silent Access</a><span>, in § 2.5.5</span>
-   <li><a href="#dom-credentialscontainer-preventsilentaccess">preventSilentAccess()</a><span>, in § 2.3</span>
-   <li><a href="#origin-prevent-silent-access-flag">prevent silent access flag</a><span>, in § 2.1</span>
-   <li>
-    protocol
-    <ul>
-     <li><a href="#dom-federatedcredential-protocol">attribute for FederatedCredential</a><span>, in § 4.1</span>
-     <li><a href="#dom-federatedcredentialinit-protocol">dict-member for FederatedCredentialInit</a><span>, in § 4.1</span>
-    </ul>
-   <li><a href="#dom-federatedcredentialrequestoptions-protocols">protocols</a><span>, in § 4.1</span>
-   <li>
-    provider
-    <ul>
-     <li><a href="#dom-federatedcredential-provider">attribute for FederatedCredential</a><span>, in § 4.1</span>
-     <li><a href="#dom-federatedcredentialinit-provider">dict-member for FederatedCredentialInit</a><span>, in § 4.1</span>
-    </ul>
-   <li><a href="#dom-federatedcredentialrequestoptions-providers">providers</a><span>, in § 4.1</span>
-   <li><a href="#credentialrequestoptions-relevant-credential-interface-objects">relevant credential interface objects</a><span>, in § 2.3.1</span>
-   <li><a href="#dom-credential-discovery-remote">remote</a><span>, in § 2.2</span>
-   <li><a href="#abstract-opdef-request-a-credential">Request a Credential</a><span>, in § 2.5.1</span>
-   <li><a href="#dom-credentialmediationrequirement-required">"required"</a><span>, in § 2.3.2</span>
-   <li><a href="#dom-credentialmediationrequirement-required">required</a><span>, in § 2.3.2</span>
-   <li><a href="#origin-requires-user-mediation">requires user mediation</a><span>, in § 2.1</span>
-   <li><a href="#abstract-opdef-credential-store-retrieve-a-list-of-credentials">Retrieve a list of credentials</a><span>, in § 2.1</span>
-   <li><a href="#same-origin-with-its-ancestors">same-origin with its ancestors</a><span>, in § 2.1.1.1</span>
-   <li>
-    signal
-    <ul>
-     <li><a href="#dom-credentialcreationoptions-signal">dict-member for CredentialCreationOptions</a><span>, in § 2.4</span>
-     <li><a href="#dom-credentialrequestoptions-signal">dict-member for CredentialRequestOptions</a><span>, in § 2.3.1</span>
-    </ul>
-   <li><a href="#dom-credentialmediationrequirement-silent">"silent"</a><span>, in § 2.3.2</span>
-   <li><a href="#dom-credentialmediationrequirement-silent">silent</a><span>, in § 2.3.2</span>
-   <li><a href="#dom-credentialscontainer-store">store()</a><span>, in § 2.3</span>
-   <li><a href="#abstract-opdef-store-a-credential">Store a Credential</a><span>, in § 2.5.3</span>
-   <li><a href="#abstract-opdef-credential-store-store-a-credential">Store a credential</a><span>, in § 2.1</span>
-   <li><a href="#dom-credentialscontainer-store">store(credential)</a><span>, in § 2.3</span>
-   <li>
-    [[Store]](credential, sameOriginWithAncestors)
-    <ul>
-     <li><a href="#dom-credential-store-slot">method for Credential</a><span>, in § 2.2.1.3</span>
-     <li><a href="#dom-federatedcredential-store-slot">method for FederatedCredential</a><span>, in § 4.2.3</span>
-     <li><a href="#dom-passwordcredential-store-slot">method for PasswordCredential</a><span>, in § 3.3.3</span>
-    </ul>
-   <li><a href="#dom-credential-type-slot">[[type]]</a><span>, in § 2.2</span>
-   <li><a href="#dom-credential-type">type</a><span>, in § 2.2</span>
-   <li><a href="#user-mediated">user mediated</a><span>, in § 5</span>
-   <li><a href="#user-mediated">user mediation</a><span>, in § 5</span>
-  </ul>
-  <h3 class="no-num no-ref heading settled" id="index-defined-elsewhere"><span class="content">Terms defined by reference</span><a class="self-link" href="#index-defined-elsewhere"></a></h3>
-  <ul class="index">
-   <li>
-    <a data-link-type="biblio">[CSP]</a> defines the following terms:
-    <ul>
-     <li><span class="dfn-paneled" id="6c533d1d">child-src</span>
-     <li><span class="dfn-paneled" id="2698cdfd">connect-src</span>
-     <li><span class="dfn-paneled" id="add6d4c9">form-action</span>
-     <li><span class="dfn-paneled" id="dcaad25f">object-src</span>
-     <li><span class="dfn-paneled" id="a9685319">script-src</span>
-    </ul>
-   <li>
-    <a data-link-type="biblio">[DOM]</a> defines the following terms:
-    <ul>
-     <li><span class="dfn-paneled" id="cca3cdb2">AbortSignal</span>
-     <li><span class="dfn-paneled" id="28e64574">abort reason</span>
-     <li><span class="dfn-paneled" id="535dd335">aborted</span>
-     <li><span class="dfn-paneled" id="25538777">tree order</span>
-    </ul>
-   <li>
-    <a data-link-type="biblio">[ECMA262]</a> defines the following terms:
-    <ul>
-     <li><span class="dfn-paneled" id="60a270ef">internal method</span>
-    </ul>
-   <li>
-    <a data-link-type="biblio">[FEDCM]</a> defines the following terms:
-    <ul>
-     <li><span class="dfn-paneled" id="bb70ff96">IdentityCredential</span>
-     <li><span class="dfn-paneled" id="f4647c65">identity</span>
-     <li><span class="dfn-paneled" id="9e7a10fb">identity-credentials-get</span>
-    </ul>
-   <li>
-    <a data-link-type="biblio">[FETCH]</a> defines the following terms:
-    <ul>
-     <li><span class="dfn-paneled" id="08a12aad">Response</span>
-     <li><span class="dfn-paneled" id="857d5516">client</span>
-     <li><span class="dfn-paneled" id="902380f7">credentials mode</span>
-     <li><span class="dfn-paneled" id="3ae34c95">destination</span>
-     <li><span class="dfn-paneled" id="2ce6f6bb">fetch(input)</span>
-     <li><span class="dfn-paneled" id="fa4ea124">initiator</span>
-     <li><span class="dfn-paneled" id="6d1db60d">service-workers mode</span>
-    </ul>
-   <li>
-    <a data-link-type="biblio">[HTML]</a> defines the following terms:
-    <ul>
-     <li><span class="dfn-paneled" id="18c65a7a">HTMLFormElement</span>
-     <li><span class="dfn-paneled" id="be0c27b2">Navigator</span>
-     <li><span class="dfn-paneled" id="bfc1c271">Worker</span>
-     <li><span class="dfn-paneled" id="35972864">active document</span>
-     <li><span class="dfn-paneled" id="3610bd67">allowed to use</span>
-     <li><span class="dfn-paneled" id="b410a6ef">ascii serialization of an origin</span>
-     <li><span class="dfn-paneled" id="3349d69f">associated document</span>
-     <li><span class="dfn-paneled" id="26f2cdf1">autocomplete</span>
-     <li><span class="dfn-paneled" id="ff35f08f">autofill detail tokens</span>
-     <li><span class="dfn-paneled" id="e0ab744a">browsing context</span>
-     <li><span class="dfn-paneled" id="12b8dfc0">current settings object</span>
-     <li><span class="dfn-paneled" id="614d8334">current-password</span>
-     <li><span class="dfn-paneled" id="e10e7eb7">dom manipulation task source</span>
-     <li><span class="dfn-paneled" id="3e12e042">environment settings object</span>
-     <li><span class="dfn-paneled" id="946a9318">form</span>
-     <li><span class="dfn-paneled" id="917cf127">form owner</span>
-     <li><span class="dfn-paneled" id="8a30477b">global object</span>
-     <li><span class="dfn-paneled" id="a72449dd">in parallel</span>
-     <li><span class="dfn-paneled" id="960bacf5">name <small>(for autocomplete)</small></span>
-     <li><span class="dfn-paneled" id="0d4537e4">name <small>(for input)</small></span>
-     <li><span class="dfn-paneled" id="4c0407e7">new-password</span>
-     <li><span class="dfn-paneled" id="19866964">nickname</span>
-     <li><span class="dfn-paneled" id="13dd6cae">node navigable</span>
-     <li><span class="dfn-paneled" id="43ac8374">origin <small>(for environment settings object)</small></span>
-     <li><span class="dfn-paneled" id="a944ac4c">origin <small>(for html-origin-def)</small></span>
-     <li><span class="dfn-paneled" id="1bba3db7">parent</span>
-     <li><span class="dfn-paneled" id="3e24d694">photo</span>
-     <li><span class="dfn-paneled" id="9a517a7d">queue a task</span>
-     <li><span class="dfn-paneled" id="e99bd18e">relevant global object</span>
-     <li><span class="dfn-paneled" id="5991ccfb">relevant realm</span>
-     <li><span class="dfn-paneled" id="7393da89">same origin</span>
-     <li><span class="dfn-paneled" id="65181da8">secure context</span>
-     <li><span class="dfn-paneled" id="72cc882c">submit()</span>
-     <li><span class="dfn-paneled" id="0e57571b">submittable elements</span>
-     <li><span class="dfn-paneled" id="e270bd2a">task</span>
-     <li><span class="dfn-paneled" id="ae2a6342">top-level browsing context</span>
-     <li><span class="dfn-paneled" id="4880f66f">username</span>
-    </ul>
-   <li>
-    <a data-link-type="biblio">[INFRA]</a> defines the following terms:
-    <ul>
-     <li><span class="dfn-paneled" id="a3b18719">append</span>
-     <li><span class="dfn-paneled" id="7f9469b5">ascii case-insensitive</span>
-     <li><span class="dfn-paneled" id="ae8def21">contain</span>
-     <li><span class="dfn-paneled" id="03afaf9c">empty</span>
-     <li><span class="dfn-paneled" id="1243a891">exist</span>
-     <li><span class="dfn-paneled" id="45209803">for each</span>
-     <li><span class="dfn-paneled" id="99c988d6">remove</span>
-     <li><span class="dfn-paneled" id="15e48c39">set</span>
-     <li><span class="dfn-paneled" id="0204d188">size</span>
-    </ul>
-   <li>
-    <a data-link-type="biblio">[MIXED-CONTENT]</a> defines the following terms:
-    <ul>
-     <li><span class="dfn-paneled" id="fab13602">a priori authenticated url</span>
-    </ul>
-   <li>
-    <a data-link-type="biblio">[PERMISSIONS-POLICY-1]</a> defines the following terms:
-    <ul>
-     <li><span class="dfn-paneled" id="4ed2f1ff">policy-controlled feature</span>
-    </ul>
-   <li>
-    <a data-link-type="biblio">[PROMISES-GUIDE]</a> defines the following terms:
-    <ul>
-     <li><span class="dfn-paneled" id="e8353b84">promise-calling</span>
-    </ul>
-   <li>
-    <a data-link-type="biblio">[PSL]</a> defines the following terms:
-    <ul>
-     <li><span class="dfn-paneled" id="5dbcc6ec">registerable domain</span>
-    </ul>
-   <li>
-    <a data-link-type="biblio">[WEB-OTP]</a> defines the following terms:
-    <ul>
-     <li><span class="dfn-paneled" id="26cd4086">OTPCredential</span>
-    </ul>
-   <li>
-    <a data-link-type="biblio">[WEBAUTHN-3]</a> defines the following terms:
-    <ul>
-     <li><span class="dfn-paneled" id="3955f290">PublicKeyCredential</span>
-     <li><span class="dfn-paneled" id="fedc36f2">[[Create]](origin, options, sameOriginWithAncestors)</span>
-     <li><span class="dfn-paneled" id="6ee1791f">[[DiscoverFromExternalSource]](origin, options, sameOriginWithAncestors)</span>
-     <li><span class="dfn-paneled" id="e8126328">publicKey <small>(for CredentialCreationOptions)</small></span>
-     <li><span class="dfn-paneled" id="9b39aa25">publicKey <small>(for CredentialRequestOptions)</small></span>
-     <li><span class="dfn-paneled" id="8e19bb11">publickey-credentials-create-feature</span>
-     <li><span class="dfn-paneled" id="4fe2b69f">publickey-credentials-get-feature</span>
-    </ul>
-   <li>
-    <a data-link-type="biblio">[WEBIDL]</a> defines the following terms:
-    <ul>
-     <li><span class="dfn-paneled" id="dca2de17">DOMException</span>
-     <li><span class="dfn-paneled" id="8855a9aa">DOMString</span>
-     <li><span class="dfn-paneled" id="889e932f">Exposed</span>
-     <li><span class="dfn-paneled" id="ba556545">NotAllowedError</span>
-     <li><span class="dfn-paneled" id="bdbd19d1">Promise</span>
-     <li><span class="dfn-paneled" id="a5c91173">SameObject</span>
-     <li><span class="dfn-paneled" id="b75bb3bd">SecureContext</span>
-     <li><span class="dfn-paneled" id="82ca3efc">TypeError</span>
-     <li><span class="dfn-paneled" id="b0d7f3c3">USVString</span>
-     <li><span class="dfn-paneled" id="dacde8b5">a new promise</span>
-     <li><span class="dfn-paneled" id="d0b4a948">a promise rejected with</span>
-     <li><span class="dfn-paneled" id="5372cca8">boolean</span>
-     <li><span class="dfn-paneled" id="6d8611a2">dictionary members</span>
-     <li><span class="dfn-paneled" id="cd787c3f">exception</span>
-     <li><span class="dfn-paneled" id="980252f2">identifier</span>
-     <li><span class="dfn-paneled" id="eab3771a">inherit</span>
-     <li><span class="dfn-paneled" id="4197ac46">interface object</span>
-     <li><span class="dfn-paneled" id="a7bf924a">interface prototype object</span>
-     <li><span class="dfn-paneled" id="750a2f08">react</span>
-     <li><span class="dfn-paneled" id="b262501e">reject</span>
-     <li><span class="dfn-paneled" id="3b90bdcd">resolve</span>
-     <li><span class="dfn-paneled" id="9cce47fd">sequence</span>
-     <li><span class="dfn-paneled" id="b4cfa5ce">throw</span>
-     <li><span class="dfn-paneled" id="5f90bbfb">undefined</span>
-    </ul>
-   <li>
-    <a data-link-type="biblio">[XHR]</a> defines the following terms:
-    <ul>
-     <li><span class="dfn-paneled" id="ca7a77c0">FormData</span>
-     <li><span class="dfn-paneled" id="d06b2b8c">XMLHttpRequest</span>
-     <li><span class="dfn-paneled" id="119e5118">get(name)</span>
-     <li><span class="dfn-paneled" id="1465b9a4">has(name)</span>
-    </ul>
-  </ul>
-  <h2 class="no-num no-ref heading settled" id="references"><span class="content">References</span><a class="self-link" href="#references"></a></h2>
-  <h3 class="no-num no-ref heading settled" id="normative"><span class="content">Normative References</span><a class="self-link" href="#normative"></a></h3>
-  <dl>
-   <dt id="biblio-csp">[CSP]
-   <dd>Mike West; Antonio Sartori. <a href="https://www.w3.org/TR/CSP3/"><cite>Content Security Policy Level 3</cite></a>. 23 January 2024. WD. URL: <a href="https://www.w3.org/TR/CSP3/">https://www.w3.org/TR/CSP3/</a>
-   <dt id="biblio-dom">[DOM]
-   <dd>Anne van Kesteren. <a href="https://dom.spec.whatwg.org/"><cite>DOM Standard</cite></a>. Living Standard. URL: <a href="https://dom.spec.whatwg.org/">https://dom.spec.whatwg.org/</a>
-   <dt id="biblio-fedcm">[FEDCM]
-   <dd>Sam Goto. <a href="https://fedidcg.github.io/FedCM/"><cite>FedCM API</cite></a>. URL: <a href="https://fedidcg.github.io/FedCM/">https://fedidcg.github.io/FedCM/</a>
-   <dt id="biblio-fetch">[FETCH]
-   <dd>Anne van Kesteren. <a href="https://fetch.spec.whatwg.org/"><cite>Fetch Standard</cite></a>. Living Standard. URL: <a href="https://fetch.spec.whatwg.org/">https://fetch.spec.whatwg.org/</a>
-   <dt id="biblio-html">[HTML]
-   <dd>Anne van Kesteren; et al. <a href="https://html.spec.whatwg.org/multipage/"><cite>HTML Standard</cite></a>. Living Standard. URL: <a href="https://html.spec.whatwg.org/multipage/">https://html.spec.whatwg.org/multipage/</a>
-   <dt id="biblio-infra">[INFRA]
-   <dd>Anne van Kesteren; Domenic Denicola. <a href="https://infra.spec.whatwg.org/"><cite>Infra Standard</cite></a>. Living Standard. URL: <a href="https://infra.spec.whatwg.org/">https://infra.spec.whatwg.org/</a>
-   <dt id="biblio-mixed-content">[MIXED-CONTENT]
-   <dd>Emily Stark; Mike West; Carlos IbarraLopez. <a href="https://www.w3.org/TR/mixed-content/"><cite>Mixed Content</cite></a>. 23 February 2023. CR. URL: <a href="https://www.w3.org/TR/mixed-content/">https://www.w3.org/TR/mixed-content/</a>
-   <dt id="biblio-permissions-policy-1">[PERMISSIONS-POLICY-1]
-   <dd>Ian Clelland. <a href="https://www.w3.org/TR/permissions-policy-1/"><cite>Permissions Policy</cite></a>. 18 December 2023. WD. URL: <a href="https://www.w3.org/TR/permissions-policy-1/">https://www.w3.org/TR/permissions-policy-1/</a>
-   <dt id="biblio-promises-guide">[PROMISES-GUIDE]
-   <dd>Domenic Denicola. <a href="https://www.w3.org/2001/tag/doc/promises-guide"><cite>Writing Promise-Using Specifications</cite></a>. 9 November 2018. TAG Finding. URL: <a href="https://www.w3.org/2001/tag/doc/promises-guide">https://www.w3.org/2001/tag/doc/promises-guide</a>
-   <dt id="biblio-psl">[PSL]
-   <dd><cite><a href="https://publicsuffix.org/">Public Suffix List</a></cite>.    Mozilla Foundation.
-   <dt id="biblio-web-otp">[WEB-OTP]
-   <dd>Sam Goto. <a href="https://wicg.github.io/web-otp/"><cite>WebOTP API</cite></a>. URL: <a href="https://wicg.github.io/web-otp/">https://wicg.github.io/web-otp/</a>
-   <dt id="biblio-webauthn-3">[WEBAUTHN-3]
-   <dd>Michael Jones; Akshay Kumar; Emil Lundberg. <a href="https://www.w3.org/TR/webauthn-3/"><cite>Web Authentication: An API for accessing Public Key Credentials - Level 3</cite></a>. 27 September 2023. WD. URL: <a href="https://www.w3.org/TR/webauthn-3/">https://www.w3.org/TR/webauthn-3/</a>
-   <dt id="biblio-webidl">[WEBIDL]
-   <dd>Edgar Chen; Timothy Gu. <a href="https://webidl.spec.whatwg.org/"><cite>Web IDL Standard</cite></a>. Living Standard. URL: <a href="https://webidl.spec.whatwg.org/">https://webidl.spec.whatwg.org/</a>
-   <dt id="biblio-xhr">[XHR]
-   <dd>Anne van Kesteren. <a href="https://xhr.spec.whatwg.org/"><cite>XMLHttpRequest Standard</cite></a>. Living Standard. URL: <a href="https://xhr.spec.whatwg.org/">https://xhr.spec.whatwg.org/</a>
-  </dl>
-  <h3 class="no-num no-ref heading settled" id="informative"><span class="content">Informative References</span><a class="self-link" href="#informative"></a></h3>
-  <dl>
-   <dt id="biblio-browserid">[BROWSERID]
-   <dd>Ben Adida; et al. <a href="https://github.com/mozilla/id-specs/blob/prod/browserid/index.md"><cite>BrowserID</cite></a>. 26 February 2013. URL: <a href="https://github.com/mozilla/id-specs/blob/prod/browserid/index.md">https://github.com/mozilla/id-specs/blob/prod/browserid/index.md</a>
-   <dt id="biblio-sri">[SRI]
-   <dd>Devdatta Akhawe; et al. <a href="https://www.w3.org/TR/SRI/"><cite>Subresource Integrity</cite></a>. 23 June 2016. REC. URL: <a href="https://www.w3.org/TR/SRI/">https://www.w3.org/TR/SRI/</a>
-   <dt id="biblio-web-login">[WEB-LOGIN]
-   <dd>Jason Denizac; Robin Berjon; Anne van Kesteren. <a href="https://github.com/jden/web-login"><cite>web-login</cite></a>. URL: <a href="https://github.com/jden/web-login">https://github.com/jden/web-login</a>
-   <dt id="biblio-webauthn">[WEBAUTHN]
-   <dd>Dirk Balfanz; et al. <a href="https://www.w3.org/TR/webauthn-1/"><cite>Web Authentication:An API for accessing Public Key Credentials Level 1</cite></a>. 4 March 2019. REC. URL: <a href="https://www.w3.org/TR/webauthn-1/">https://www.w3.org/TR/webauthn-1/</a>
-   <dt id="biblio-xmlhttprequest">[XMLHTTPREQUEST]
-   <dd>Anne van Kesteren; et al. <a href="https://www.w3.org/TR/XMLHttpRequest/"><cite>XMLHttpRequest Level 1</cite></a>. 6 October 2016. NOTE. URL: <a href="https://www.w3.org/TR/XMLHttpRequest/">https://www.w3.org/TR/XMLHttpRequest/</a>
-  </dl>
-  <h2 class="no-num no-ref heading settled" id="idl-index"><span class="content">IDL Index</span><a class="self-link" href="#idl-index"></a></h2>
-<pre class="idl highlight def">[<a class="idl-code" data-link-type="extended-attribute" href="https://webidl.spec.whatwg.org/#Exposed"><c- g>Exposed</c-></a>=<c- n>Window</c->, <a class="idl-code" data-link-type="extended-attribute" href="https://webidl.spec.whatwg.org/#SecureContext"><c- g>SecureContext</c-></a>]
-<c- b>interface</c-> <a href="#credential"><code><c- g>Credential</c-></code></a> {
-  <c- b>readonly</c-> <c- b>attribute</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString"><c- b>USVString</c-></a> <a class="idl-code" data-link-type="attribute" data-readonly data-type="USVString" href="#dom-credential-id"><c- g>id</c-></a>;
-  <c- b>readonly</c-> <c- b>attribute</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-DOMString"><c- b>DOMString</c-></a> <a class="idl-code" data-link-type="attribute" data-readonly data-type="DOMString" href="#dom-credential-type"><c- g>type</c-></a>;
-  <c- b>static</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-promise"><c- b>Promise</c-></a>&lt;<a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-boolean"><c- b>boolean</c-></a>> <a class="idl-code" data-link-type="method" href="#dom-credential-isconditionalmediationavailable"><c- g>isConditionalMediationAvailable</c-></a>();
-};
-
-[<a class="idl-code" data-link-type="extended-attribute" href="https://webidl.spec.whatwg.org/#SecureContext"><c- g>SecureContext</c-></a>]
-<c- b>interface</c-> <c- b>mixin</c-> <a href="#credentialuserdata"><code><c- g>CredentialUserData</c-></code></a> {
-  <c- b>readonly</c-> <c- b>attribute</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString"><c- b>USVString</c-></a> <a class="idl-code" data-link-type="attribute" data-readonly data-type="USVString" href="#dom-credentialuserdata-name"><c- g>name</c-></a>;
-  <c- b>readonly</c-> <c- b>attribute</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString"><c- b>USVString</c-></a> <a class="idl-code" data-link-type="attribute" data-readonly data-type="USVString" href="#dom-credentialuserdata-iconurl"><c- g>iconURL</c-></a>;
-};
-
-<c- b>partial</c-> <c- b>interface</c-> <a class="idl-code" data-link-type="interface" href="https://html.spec.whatwg.org/multipage/system-state.html#navigator"><c- g>Navigator</c-></a> {
-  [<a class="idl-code" data-link-type="extended-attribute" href="https://webidl.spec.whatwg.org/#SecureContext"><c- g>SecureContext</c-></a>, <a class="idl-code" data-link-type="extended-attribute" href="https://webidl.spec.whatwg.org/#SameObject"><c- g>SameObject</c-></a>] <c- b>readonly</c-> <c- b>attribute</c-> <a data-link-type="idl-name" href="#credentialscontainer"><c- n>CredentialsContainer</c-></a> <a class="idl-code" data-link-type="attribute" data-readonly data-type="CredentialsContainer" href="#dom-navigator-credentials"><c- g>credentials</c-></a>;
-};
-
-[<a class="idl-code" data-link-type="extended-attribute" href="https://webidl.spec.whatwg.org/#Exposed"><c- g>Exposed</c-></a>=<c- n>Window</c->, <a class="idl-code" data-link-type="extended-attribute" href="https://webidl.spec.whatwg.org/#SecureContext"><c- g>SecureContext</c-></a>]
-<c- b>interface</c-> <a href="#credentialscontainer"><code><c- g>CredentialsContainer</c-></code></a> {
-  <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-promise"><c- b>Promise</c-></a>&lt;<a data-link-type="idl-name" href="#credential"><c- n>Credential</c-></a>?> <a class="idl-code" data-link-type="method" href="#dom-credentialscontainer-get"><c- g>get</c-></a>(<c- b>optional</c-> <a data-link-type="idl-name" href="#dictdef-credentialrequestoptions"><c- n>CredentialRequestOptions</c-></a> <a class="idl-code" data-link-type="argument" href="#dom-credentialscontainer-get-options-options"><c- g>options</c-></a> = {});
-  <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-promise"><c- b>Promise</c-></a>&lt;<a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-undefined"><c- b>undefined</c-></a>> <a class="idl-code" data-link-type="method" href="#dom-credentialscontainer-store"><c- g>store</c-></a>(<a data-link-type="idl-name" href="#credential"><c- n>Credential</c-></a> <a class="idl-code" data-link-type="argument" href="#dom-credentialscontainer-store-credential-credential"><c- g>credential</c-></a>);
-  <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-promise"><c- b>Promise</c-></a>&lt;<a data-link-type="idl-name" href="#credential"><c- n>Credential</c-></a>?> <a class="idl-code" data-link-type="method" href="#dom-credentialscontainer-create"><c- g>create</c-></a>(<c- b>optional</c-> <a data-link-type="idl-name" href="#dictdef-credentialcreationoptions"><c- n>CredentialCreationOptions</c-></a> <a class="idl-code" data-link-type="argument" href="#dom-credentialscontainer-create-options-options"><c- g>options</c-></a> = {});
-  <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-promise"><c- b>Promise</c-></a>&lt;<a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-undefined"><c- b>undefined</c-></a>> <a class="idl-code" data-link-type="method" href="#dom-credentialscontainer-preventsilentaccess"><c- g>preventSilentAccess</c-></a>();
-};
-
-<c- b>dictionary</c-> <a href="#dictdef-credentialdata"><code><c- g>CredentialData</c-></code></a> {
-  <c- b>required</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString"><c- b>USVString</c-></a> <a data-type="USVString " href="#dom-credentialdata-id"><code><c- g>id</c-></code></a>;
-};
-
-<c- b>dictionary</c-> <a href="#dictdef-credentialrequestoptions"><code><c- g>CredentialRequestOptions</c-></code></a> {
-  <a data-link-type="idl-name" href="#enumdef-credentialmediationrequirement"><c- n>CredentialMediationRequirement</c-></a> <a class="idl-code" data-default="&quot;optional&quot;" data-link-type="dict-member" data-type="CredentialMediationRequirement " href="#dom-credentialrequestoptions-mediation"><c- g>mediation</c-></a> = "optional";
-  <a data-link-type="idl-name" href="https://dom.spec.whatwg.org/#abortsignal"><c- n>AbortSignal</c-></a> <a class="idl-code" data-link-type="dict-member" data-type="AbortSignal " href="#dom-credentialrequestoptions-signal"><c- g>signal</c-></a>;
-};
-
-<c- b>enum</c-> <a href="#enumdef-credentialmediationrequirement"><code><c- g>CredentialMediationRequirement</c-></code></a> {
-  <a class="idl-code" data-link-type="enum-value" href="#dom-credentialmediationrequirement-silent"><c- s>"silent"</c-></a>,
-  <a class="idl-code" data-link-type="enum-value" href="#dom-credentialmediationrequirement-optional"><c- s>"optional"</c-></a>,
-  <a class="idl-code" data-link-type="enum-value" href="#dom-credentialmediationrequirement-conditional"><c- s>"conditional"</c-></a>,
-  <a class="idl-code" data-link-type="enum-value" href="#dom-credentialmediationrequirement-required"><c- s>"required"</c-></a>
-};
-
-<c- b>dictionary</c-> <a href="#dictdef-credentialcreationoptions"><code><c- g>CredentialCreationOptions</c-></code></a> {
-  <a data-link-type="idl-name" href="https://dom.spec.whatwg.org/#abortsignal"><c- n>AbortSignal</c-></a> <a class="idl-code" data-link-type="dict-member" data-type="AbortSignal " href="#dom-credentialcreationoptions-signal"><c- g>signal</c-></a>;
-};
-
-[<a class="idl-code" data-link-type="extended-attribute" href="https://webidl.spec.whatwg.org/#Exposed"><c- g>Exposed</c-></a>=<c- n>Window</c->,
- <a class="idl-code" data-link-type="extended-attribute" href="https://webidl.spec.whatwg.org/#SecureContext"><c- g>SecureContext</c-></a>]
-<c- b>interface</c-> <a href="#passwordcredential"><code><c- g>PasswordCredential</c-></code></a> : <a data-link-type="idl-name" href="#credential"><c- n>Credential</c-></a> {
-  <a class="idl-code" data-link-type="constructor" href="#dom-passwordcredential-passwordcredential"><c- g>constructor</c-></a>(<a data-link-type="idl-name" href="https://html.spec.whatwg.org/multipage/forms.html#htmlformelement"><c- n>HTMLFormElement</c-></a> <a href="#dom-passwordcredential-passwordcredential-form-form"><code><c- g>form</c-></code></a>);
-  <a class="idl-code" data-link-type="constructor" href="#dom-passwordcredential-passwordcredential-data"><c- g>constructor</c-></a>(<a data-link-type="idl-name" href="#dictdef-passwordcredentialdata"><c- n>PasswordCredentialData</c-></a> <a href="#dom-passwordcredential-passwordcredential-data-data"><code><c- g>data</c-></code></a>);
-  <c- b>readonly</c-> <c- b>attribute</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString"><c- b>USVString</c-></a> <a class="idl-code" data-link-type="attribute" data-readonly data-type="USVString" href="#dom-passwordcredential-password"><c- g>password</c-></a>;
-};
-<a data-link-type="idl-name" href="#passwordcredential"><c- n>PasswordCredential</c-></a> <c- b>includes</c-> <a data-link-type="idl-name" href="#credentialuserdata"><c- n>CredentialUserData</c-></a>;
-
-<c- b>partial</c-> <c- b>dictionary</c-> <a class="idl-code" data-link-type="dictionary" href="#dictdef-credentialrequestoptions"><c- g>CredentialRequestOptions</c-></a> {
-  <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-boolean"><c- b>boolean</c-></a> <a data-default="false" data-type="boolean " href="#dom-credentialrequestoptions-password"><code><c- g>password</c-></code></a> = <c- b>false</c->;
-};
-
-<c- b>dictionary</c-> <a href="#dictdef-passwordcredentialdata"><code><c- g>PasswordCredentialData</c-></code></a> : <a data-link-type="idl-name" href="#dictdef-credentialdata"><c- n>CredentialData</c-></a> {
-  <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString"><c- b>USVString</c-></a> <a data-type="USVString " href="#dom-passwordcredentialdata-name"><code><c- g>name</c-></code></a>;
-  <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString"><c- b>USVString</c-></a> <a data-type="USVString " href="#dom-passwordcredentialdata-iconurl"><code><c- g>iconURL</c-></code></a>;
-  <c- b>required</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString"><c- b>USVString</c-></a> <a data-type="USVString " href="#dom-passwordcredentialdata-origin"><code><c- g>origin</c-></code></a>;
-  <c- b>required</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString"><c- b>USVString</c-></a> <a data-type="USVString " href="#dom-passwordcredentialdata-password"><code><c- g>password</c-></code></a>;
-};
-
-<c- b>typedef</c-> (<a data-link-type="idl-name" href="#dictdef-passwordcredentialdata"><c- n>PasswordCredentialData</c-></a> <c- b>or</c-> <a data-link-type="idl-name" href="https://html.spec.whatwg.org/multipage/forms.html#htmlformelement"><c- n>HTMLFormElement</c-></a>) <a href="#typedefdef-passwordcredentialinit"><code><c- g>PasswordCredentialInit</c-></code></a>;
-
-<c- b>partial</c-> <c- b>dictionary</c-> <a class="idl-code" data-link-type="dictionary" href="#dictdef-credentialcreationoptions"><c- g>CredentialCreationOptions</c-></a> {
-  <a data-link-type="idl-name" href="#typedefdef-passwordcredentialinit"><c- n>PasswordCredentialInit</c-></a> <a data-type="PasswordCredentialInit " href="#dom-credentialcreationoptions-password"><code><c- g>password</c-></code></a>;
-};
-
-[<a class="idl-code" data-link-type="extended-attribute" href="https://webidl.spec.whatwg.org/#Exposed"><c- g>Exposed</c-></a>=<c- n>Window</c->,
- <a class="idl-code" data-link-type="extended-attribute" href="https://webidl.spec.whatwg.org/#SecureContext"><c- g>SecureContext</c-></a>]
-<c- b>interface</c-> <a href="#federatedcredential"><code><c- g>FederatedCredential</c-></code></a> : <a data-link-type="idl-name" href="#credential"><c- n>Credential</c-></a> {
-  <a class="idl-code" data-link-type="constructor" href="#dom-federatedcredential-federatedcredential"><c- g>constructor</c-></a>(<a data-link-type="idl-name" href="#dictdef-federatedcredentialinit"><c- n>FederatedCredentialInit</c-></a> <a href="#dom-federatedcredential-federatedcredential-data-data"><code><c- g>data</c-></code></a>);
-  <c- b>readonly</c-> <c- b>attribute</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString"><c- b>USVString</c-></a> <a class="idl-code" data-link-type="attribute" data-readonly data-type="USVString" href="#dom-federatedcredential-provider"><c- g>provider</c-></a>;
-  <c- b>readonly</c-> <c- b>attribute</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-DOMString"><c- b>DOMString</c-></a>? <a class="idl-code" data-link-type="attribute" data-readonly data-type="DOMString?" href="#dom-federatedcredential-protocol"><c- g>protocol</c-></a>;
-};
-<a data-link-type="idl-name" href="#federatedcredential"><c- n>FederatedCredential</c-></a> <c- b>includes</c-> <a data-link-type="idl-name" href="#credentialuserdata"><c- n>CredentialUserData</c-></a>;
-
-<c- b>dictionary</c-> <a href="#dictdef-federatedcredentialrequestoptions"><code><c- g>FederatedCredentialRequestOptions</c-></code></a> {
-  <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#idl-sequence"><c- b>sequence</c-></a>&lt;<a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString"><c- b>USVString</c-></a>> <a data-type="sequence<USVString> " href="#dom-federatedcredentialrequestoptions-providers"><code><c- g>providers</c-></code></a>;
-  <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#idl-sequence"><c- b>sequence</c-></a>&lt;<a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-DOMString"><c- b>DOMString</c-></a>> <a data-type="sequence<DOMString> " href="#dom-federatedcredentialrequestoptions-protocols"><code><c- g>protocols</c-></code></a>;
-};
-
-<c- b>partial</c-> <c- b>dictionary</c-> <a class="idl-code" data-link-type="dictionary" href="#dictdef-credentialrequestoptions"><c- g>CredentialRequestOptions</c-></a> {
-  <a data-link-type="idl-name" href="#dictdef-federatedcredentialrequestoptions"><c- n>FederatedCredentialRequestOptions</c-></a> <a data-type="FederatedCredentialRequestOptions " href="#dom-credentialrequestoptions-federated"><code><c- g>federated</c-></code></a>;
-};
-
-<c- b>dictionary</c-> <a href="#dictdef-federatedcredentialinit"><code><c- g>FederatedCredentialInit</c-></code></a> : <a data-link-type="idl-name" href="#dictdef-credentialdata"><c- n>CredentialData</c-></a> {
-  <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString"><c- b>USVString</c-></a> <a data-type="USVString " href="#dom-federatedcredentialinit-name"><code><c- g>name</c-></code></a>;
-  <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString"><c- b>USVString</c-></a> <a data-type="USVString " href="#dom-federatedcredentialinit-iconurl"><code><c- g>iconURL</c-></code></a>;
-  <c- b>required</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString"><c- b>USVString</c-></a> <a data-type="USVString " href="#dom-federatedcredentialinit-origin"><code><c- g>origin</c-></code></a>;
-  <c- b>required</c-> <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-USVString"><c- b>USVString</c-></a> <a data-type="USVString " href="#dom-federatedcredentialinit-provider"><code><c- g>provider</c-></code></a>;
-  <a class="idl-code" data-link-type="interface" href="https://webidl.spec.whatwg.org/#idl-DOMString"><c- b>DOMString</c-></a> <a data-type="DOMString " href="#dom-federatedcredentialinit-protocol"><code><c- g>protocol</c-></code></a>;
-};
-
-<c- b>partial</c-> <c- b>dictionary</c-> <a class="idl-code" data-link-type="dictionary" href="#dictdef-credentialcreationoptions"><c- g>CredentialCreationOptions</c-></a> {
-  <a data-link-type="idl-name" href="#dictdef-federatedcredentialinit"><c- n>FederatedCredentialInit</c-></a> <a data-type="FederatedCredentialInit " href="#dom-credentialcreationoptions-federated"><code><c- g>federated</c-></code></a>;
-};
-
-</pre>
-  <h2 class="no-num no-ref heading settled" id="issues-index"><span class="content">Issues Index</span><a class="self-link" href="#issues-index"></a></h2>
-  <div style="counter-reset:issue">
-   <div class="issue"> Talk to Tobie/Dominic about the <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-object">interface object</a> bits, here and in <a href="#algorithm-request">§ 2.5.1 Request a Credential</a>, etc. I’m not sure I’ve gotten the terminology right. <a data-link-type="dfn" href="https://webidl.spec.whatwg.org/#dfn-interface-prototype-object">interface prototype
-  object</a>, maybe? <a class="issue-return" href="#issue-47fed4d0" title="Jump to section">↵</a></div>
-   <div class="issue"> This might be the wrong model. It would be nice to support a site that wished
-  to accept either username/passwords or webauthn-style credentials without forcing
-  a chooser for those users who use the former, and who wish to remain signed in. <a class="issue-return" href="#issue-e720ed3b" title="Jump to section">↵</a></div>
-   <div class="issue"> Add some thoughts here about when and how the API
-  should be used, especially with regard to <code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-mediation">mediation</a></code>. <a href="https://github.com/w3c/webappsec/issues/290">[Issue #w3c/webappsec#290]</a> <a class="issue-return" href="#issue-84808a53" title="Jump to section">↵</a></div>
-   <div class="issue"> Describe encoding restrictions of submitting credentials by <a data-link-type="functionish" href="https://fetch.spec.whatwg.org/#dom-global-fetch"><code>fetch()</code></a> with a <code class="idl"><a data-link-type="idl" href="https://xhr.spec.whatwg.org/#interface-formdata">FormData</a></code> body. <a class="issue-return" href="#issue-19b3ffaf" title="Jump to section">↵</a></div>
-  </div>
-  <details class="mdn-anno unpositioned" data-anno-for="dom-credential-id">
-   <summary><b class="all-engines-flag" title="This feature is in all current engines.">✔</b><span>MDN</span></summary>
-   <div class="feature">
-    <p><a href="https://developer.mozilla.org/en-US/docs/Web/API/Credential/id" title="The id property of the Credential interface returns a string containing the credential&apos;s identifier. This might be any one of a GUID, username, or email address.">Credential/id</a></p>
-    <p class="all-engines-text">In all current engines.</p>
-    <div class="support">
-     <span class="firefox yes"><span>Firefox</span><span>60+</span></span><span class="safari yes"><span>Safari</span><span>13+</span></span><span class="chrome yes"><span>Chrome</span><span>51+</span></span>
-     <hr>
-     <span class="opera no"><span>Opera</span><span>?</span></span><span class="edge_blink yes"><span>Edge</span><span>79+</span></span>
-     <hr>
-     <span class="edge yes"><span>Edge (Legacy)</span><span>18</span></span><span class="ie no"><span>IE</span><span>None</span></span>
-     <hr>
-     <span class="firefox_android no"><span>Firefox for Android</span><span>?</span></span><span class="safari_ios no"><span>iOS Safari</span><span>?</span></span><span class="chrome_android no"><span>Chrome for Android</span><span>?</span></span><span class="webview_android no"><span>Android WebView</span><span>?</span></span><span class="samsunginternet_android no"><span>Samsung Internet</span><span>?</span></span><span class="opera_android no"><span>Opera Mobile</span><span>?</span></span>
-    </div>
-   </div>
-  </details>
-  <details class="mdn-anno unpositioned" data-anno-for="dom-credential-type">
-   <summary><b class="all-engines-flag" title="This feature is in all current engines.">✔</b><span>MDN</span></summary>
-   <div class="feature">
-    <p><a href="https://developer.mozilla.org/en-US/docs/Web/API/Credential/type" title="The type property of the Credential interface returns a string containing the credential&apos;s type. Valid values are password, federated and public-key.">Credential/type</a></p>
-    <p class="all-engines-text">In all current engines.</p>
-    <div class="support">
-     <span class="firefox yes"><span>Firefox</span><span>60+</span></span><span class="safari yes"><span>Safari</span><span>13+</span></span><span class="chrome yes"><span>Chrome</span><span>51+</span></span>
-     <hr>
-     <span class="opera no"><span>Opera</span><span>?</span></span><span class="edge_blink yes"><span>Edge</span><span>79+</span></span>
-     <hr>
-     <span class="edge yes"><span>Edge (Legacy)</span><span>18</span></span><span class="ie no"><span>IE</span><span>None</span></span>
-     <hr>
-     <span class="firefox_android no"><span>Firefox for Android</span><span>?</span></span><span class="safari_ios no"><span>iOS Safari</span><span>?</span></span><span class="chrome_android no"><span>Chrome for Android</span><span>?</span></span><span class="webview_android no"><span>Android WebView</span><span>?</span></span><span class="samsunginternet_android no"><span>Samsung Internet</span><span>?</span></span><span class="opera_android no"><span>Opera Mobile</span><span>?</span></span>
-    </div>
-   </div>
-  </details>
-  <details class="mdn-anno unpositioned" data-anno-for="the-credential-interface">
-   <summary><b class="all-engines-flag" title="This feature is in all current engines.">✔</b><span>MDN</span></summary>
-   <div class="feature">
-    <p><a href="https://developer.mozilla.org/en-US/docs/Web/API/Credential" title="The Credential interface of the Credential Management API provides information about an entity (usually a user) normally as a prerequisite to a trust decision.">Credential</a></p>
-    <p class="all-engines-text">In all current engines.</p>
-    <div class="support">
-     <span class="firefox yes"><span>Firefox</span><span>60+</span></span><span class="safari yes"><span>Safari</span><span>13+</span></span><span class="chrome yes"><span>Chrome</span><span>51+</span></span>
-     <hr>
-     <span class="opera no"><span>Opera</span><span>?</span></span><span class="edge_blink yes"><span>Edge</span><span>79+</span></span>
-     <hr>
-     <span class="edge yes"><span>Edge (Legacy)</span><span>18</span></span><span class="ie no"><span>IE</span><span>None</span></span>
-     <hr>
-     <span class="firefox_android no"><span>Firefox for Android</span><span>?</span></span><span class="safari_ios no"><span>iOS Safari</span><span>?</span></span><span class="chrome_android no"><span>Chrome for Android</span><span>?</span></span><span class="webview_android no"><span>Android WebView</span><span>?</span></span><span class="samsunginternet_android no"><span>Samsung Internet</span><span>?</span></span><span class="opera_android no"><span>Opera Mobile</span><span>?</span></span>
-    </div>
-   </div>
-  </details>
-  <details class="mdn-anno unpositioned" data-anno-for="dom-credentialscontainer-create">
-   <summary><b class="all-engines-flag" title="This feature is in all current engines.">✔</b><span>MDN</span></summary>
-   <div class="feature">
-    <p><a href="https://developer.mozilla.org/en-US/docs/Web/API/CredentialsContainer/create" title="The create() method of the CredentialsContainer interface returns a Promise that resolves with a new credential instance based on the provided options, the information from which can then be stored and later used to authenticate users via navigator.credentials.get().">CredentialsContainer/create</a></p>
-    <p class="all-engines-text">In all current engines.</p>
-    <div class="support">
-     <span class="firefox yes"><span>Firefox</span><span>60+</span></span><span class="safari yes"><span>Safari</span><span>13+</span></span><span class="chrome yes"><span>Chrome</span><span>60+</span></span>
-     <hr>
-     <span class="opera no"><span>Opera</span><span>?</span></span><span class="edge_blink yes"><span>Edge</span><span>79+</span></span>
-     <hr>
-     <span class="edge yes"><span>Edge (Legacy)</span><span>18</span></span><span class="ie no"><span>IE</span><span>None</span></span>
-     <hr>
-     <span class="firefox_android no"><span>Firefox for Android</span><span>?</span></span><span class="safari_ios no"><span>iOS Safari</span><span>?</span></span><span class="chrome_android no"><span>Chrome for Android</span><span>?</span></span><span class="webview_android no"><span>Android WebView</span><span>?</span></span><span class="samsunginternet_android no"><span>Samsung Internet</span><span>?</span></span><span class="opera_android no"><span>Opera Mobile</span><span>?</span></span>
-    </div>
-   </div>
-  </details>
-  <details class="mdn-anno unpositioned" data-anno-for="dom-credentialscontainer-get">
-   <summary><b class="all-engines-flag" title="This feature is in all current engines.">✔</b><span>MDN</span></summary>
-   <div class="feature">
-    <p><a href="https://developer.mozilla.org/en-US/docs/Web/API/CredentialsContainer/get" title="The get() method of the CredentialsContainer interface returns a Promise that fulfills with a single credential instance that matches the provided parameters, which the browser can then use to authenticate with a relying party. This is used by several different credential-related APIs with significantly different purposes:">CredentialsContainer/get</a></p>
-    <p class="all-engines-text">In all current engines.</p>
-    <div class="support">
-     <span class="firefox yes"><span>Firefox</span><span>60+</span></span><span class="safari yes"><span>Safari</span><span>13+</span></span><span class="chrome yes"><span>Chrome</span><span>51+</span></span>
-     <hr>
-     <span class="opera no"><span>Opera</span><span>?</span></span><span class="edge_blink yes"><span>Edge</span><span>79+</span></span>
-     <hr>
-     <span class="edge yes"><span>Edge (Legacy)</span><span>18</span></span><span class="ie no"><span>IE</span><span>None</span></span>
-     <hr>
-     <span class="firefox_android no"><span>Firefox for Android</span><span>?</span></span><span class="safari_ios no"><span>iOS Safari</span><span>?</span></span><span class="chrome_android no"><span>Chrome for Android</span><span>?</span></span><span class="webview_android no"><span>Android WebView</span><span>?</span></span><span class="samsunginternet_android no"><span>Samsung Internet</span><span>?</span></span><span class="opera_android no"><span>Opera Mobile</span><span>?</span></span>
-    </div>
-   </div>
-  </details>
-  <details class="mdn-anno unpositioned" data-anno-for="dom-credentialscontainer-preventsilentaccess">
-   <summary><b class="all-engines-flag" title="This feature is in all current engines.">✔</b><span>MDN</span></summary>
-   <div class="feature">
-    <p><a href="https://developer.mozilla.org/en-US/docs/Web/API/CredentialsContainer/preventSilentAccess" title="The preventSilentAccess() method of the CredentialsContainer interface sets a flag that specifies whether automatic log in is allowed for future visits to the current origin, then returns an empty Promise. For example, you might call this, after a user signs out of a website to ensure that they aren&apos;t automatically signed in on the next site visit. Mediation varies by origin, and is an added check point of browser stored credentials, informing a user of an account login status. This method is typically called after a user signs out of a website, ensuring this user&apos;s login information is not automatically passed on the next site visit.">CredentialsContainer/preventSilentAccess</a></p>
-    <p class="all-engines-text">In all current engines.</p>
-    <div class="support">
-     <span class="firefox yes"><span>Firefox</span><span>60+</span></span><span class="safari yes"><span>Safari</span><span>13+</span></span><span class="chrome yes"><span>Chrome</span><span>60+</span></span>
-     <hr>
-     <span class="opera no"><span>Opera</span><span>?</span></span><span class="edge_blink yes"><span>Edge</span><span>79+</span></span>
-     <hr>
-     <span class="edge yes"><span>Edge (Legacy)</span><span>18</span></span><span class="ie no"><span>IE</span><span>None</span></span>
-     <hr>
-     <span class="firefox_android no"><span>Firefox for Android</span><span>?</span></span><span class="safari_ios no"><span>iOS Safari</span><span>?</span></span><span class="chrome_android no"><span>Chrome for Android</span><span>?</span></span><span class="webview_android no"><span>Android WebView</span><span>?</span></span><span class="samsunginternet_android no"><span>Samsung Internet</span><span>?</span></span><span class="opera_android no"><span>Opera Mobile</span><span>?</span></span>
-    </div>
-   </div>
-  </details>
-  <details class="mdn-anno unpositioned" data-anno-for="dom-credentialscontainer-store">
-   <summary><b class="all-engines-flag" title="This feature is in all current engines.">✔</b><span>MDN</span></summary>
-   <div class="feature">
-    <p><a href="https://developer.mozilla.org/en-US/docs/Web/API/CredentialsContainer/store" title="The store() method of the CredentialsContainer stores a set of credentials for the user inside a Credential instance, returning this in a Promise.">CredentialsContainer/store</a></p>
-    <p class="all-engines-text">In all current engines.</p>
-    <div class="support">
-     <span class="firefox yes"><span>Firefox</span><span>60+</span></span><span class="safari yes"><span>Safari</span><span>13+</span></span><span class="chrome yes"><span>Chrome</span><span>51+</span></span>
-     <hr>
-     <span class="opera no"><span>Opera</span><span>?</span></span><span class="edge_blink yes"><span>Edge</span><span>79+</span></span>
-     <hr>
-     <span class="edge no"><span>Edge (Legacy)</span><span>?</span></span><span class="ie no"><span>IE</span><span>None</span></span>
-     <hr>
-     <span class="firefox_android no"><span>Firefox for Android</span><span>?</span></span><span class="safari_ios no"><span>iOS Safari</span><span>?</span></span><span class="chrome_android no"><span>Chrome for Android</span><span>?</span></span><span class="webview_android no"><span>Android WebView</span><span>?</span></span><span class="samsunginternet_android no"><span>Samsung Internet</span><span>?</span></span><span class="opera_android no"><span>Opera Mobile</span><span>?</span></span>
-    </div>
-   </div>
-  </details>
-  <details class="mdn-anno unpositioned" data-anno-for="credentialscontainer">
-   <summary><b class="all-engines-flag" title="This feature is in all current engines.">✔</b><span>MDN</span></summary>
-   <div class="feature">
-    <p><a href="https://developer.mozilla.org/en-US/docs/Web/API/CredentialsContainer" title="The CredentialsContainer interface of the Credential Management API exposes methods to request credentials and notify the user agent when events such as successful sign in or sign out happen. This interface is accessible from Navigator.credentials.">CredentialsContainer</a></p>
-    <p class="all-engines-text">In all current engines.</p>
-    <div class="support">
-     <span class="firefox yes"><span>Firefox</span><span>60+</span></span><span class="safari yes"><span>Safari</span><span>13+</span></span><span class="chrome yes"><span>Chrome</span><span>51+</span></span>
-     <hr>
-     <span class="opera no"><span>Opera</span><span>?</span></span><span class="edge_blink yes"><span>Edge</span><span>79+</span></span>
-     <hr>
-     <span class="edge yes"><span>Edge (Legacy)</span><span>18</span></span><span class="ie no"><span>IE</span><span>None</span></span>
-     <hr>
-     <span class="firefox_android no"><span>Firefox for Android</span><span>?</span></span><span class="safari_ios no"><span>iOS Safari</span><span>?</span></span><span class="chrome_android no"><span>Chrome for Android</span><span>?</span></span><span class="webview_android no"><span>Android WebView</span><span>?</span></span><span class="samsunginternet_android no"><span>Samsung Internet</span><span>?</span></span><span class="opera_android no"><span>Opera Mobile</span><span>?</span></span>
-    </div>
-   </div>
-  </details>
-  <details class="mdn-anno unpositioned" data-anno-for="dom-federatedcredential-federatedcredential">
-   <summary><b class="less-than-two-engines-flag" title="This feature is in less than two current engines.">⚠</b><span>MDN</span></summary>
-   <div class="feature">
-    <p><a href="https://developer.mozilla.org/en-US/docs/Web/API/FederatedCredential/FederatedCredential" title="The FederatedCredential() constructor creates a new FederatedCredential object. In supporting browsers, an instance of this class may be passed the credential received from the init object for global fetch().">FederatedCredential/FederatedCredential</a></p>
-    <p class="less-than-two-engines-text">In only one current engine.</p>
-    <div class="support">
-     <span class="firefox no"><span>Firefox</span><span>None</span></span><span class="safari no"><span>Safari</span><span>None</span></span><span class="chrome yes"><span>Chrome</span><span>51+</span></span>
-     <hr>
-     <span class="opera no"><span>Opera</span><span>?</span></span><span class="edge_blink yes"><span>Edge</span><span>79+</span></span>
-     <hr>
-     <span class="edge no"><span>Edge (Legacy)</span><span>?</span></span><span class="ie no"><span>IE</span><span>None</span></span>
-     <hr>
-     <span class="firefox_android no"><span>Firefox for Android</span><span>?</span></span><span class="safari_ios no"><span>iOS Safari</span><span>?</span></span><span class="chrome_android no"><span>Chrome for Android</span><span>?</span></span><span class="webview_android no"><span>Android WebView</span><span>?</span></span><span class="samsunginternet_android no"><span>Samsung Internet</span><span>?</span></span><span class="opera_android no"><span>Opera Mobile</span><span>?</span></span>
-    </div>
-   </div>
-  </details>
-  <details class="mdn-anno unpositioned" data-anno-for="dom-federatedcredential-protocol">
-   <summary><b class="less-than-two-engines-flag" title="This feature is in less than two current engines.">⚠</b><span>MDN</span></summary>
-   <div class="feature">
-    <p><a href="https://developer.mozilla.org/en-US/docs/Web/API/FederatedCredential/protocol" title="The protocol property of the FederatedCredential interface returns a read-only string containing a credential&apos;s federated identity protocol. If this property is null, the protocol may be inferred from the FederatedCredential.provider property.">FederatedCredential/protocol</a></p>
-    <p class="less-than-two-engines-text">In only one current engine.</p>
-    <div class="support">
-     <span class="firefox no"><span>Firefox</span><span>None</span></span><span class="safari no"><span>Safari</span><span>None</span></span><span class="chrome yes"><span>Chrome</span><span>51+</span></span>
-     <hr>
-     <span class="opera no"><span>Opera</span><span>?</span></span><span class="edge_blink yes"><span>Edge</span><span>79+</span></span>
-     <hr>
-     <span class="edge no"><span>Edge (Legacy)</span><span>?</span></span><span class="ie no"><span>IE</span><span>None</span></span>
-     <hr>
-     <span class="firefox_android no"><span>Firefox for Android</span><span>?</span></span><span class="safari_ios no"><span>iOS Safari</span><span>?</span></span><span class="chrome_android no"><span>Chrome for Android</span><span>?</span></span><span class="webview_android no"><span>Android WebView</span><span>?</span></span><span class="samsunginternet_android no"><span>Samsung Internet</span><span>?</span></span><span class="opera_android no"><span>Opera Mobile</span><span>?</span></span>
-    </div>
-   </div>
-  </details>
-  <details class="mdn-anno unpositioned" data-anno-for="dom-federatedcredential-provider">
-   <summary><b class="less-than-two-engines-flag" title="This feature is in less than two current engines.">⚠</b><span>MDN</span></summary>
-   <div class="feature">
-    <p><a href="https://developer.mozilla.org/en-US/docs/Web/API/FederatedCredential/provider" title="The provider property of the FederatedCredential interface returns a string containing a credential&apos;s federated identity provider.">FederatedCredential/provider</a></p>
-    <p class="less-than-two-engines-text">In only one current engine.</p>
-    <div class="support">
-     <span class="firefox no"><span>Firefox</span><span>None</span></span><span class="safari no"><span>Safari</span><span>None</span></span><span class="chrome yes"><span>Chrome</span><span>51+</span></span>
-     <hr>
-     <span class="opera no"><span>Opera</span><span>?</span></span><span class="edge_blink yes"><span>Edge</span><span>79+</span></span>
-     <hr>
-     <span class="edge no"><span>Edge (Legacy)</span><span>?</span></span><span class="ie no"><span>IE</span><span>None</span></span>
-     <hr>
-     <span class="firefox_android no"><span>Firefox for Android</span><span>?</span></span><span class="safari_ios no"><span>iOS Safari</span><span>?</span></span><span class="chrome_android no"><span>Chrome for Android</span><span>?</span></span><span class="webview_android no"><span>Android WebView</span><span>?</span></span><span class="samsunginternet_android no"><span>Samsung Internet</span><span>?</span></span><span class="opera_android no"><span>Opera Mobile</span><span>?</span></span>
-    </div>
-   </div>
-  </details>
-  <details class="mdn-anno unpositioned" data-anno-for="federated">
-   <summary><b class="less-than-two-engines-flag" title="This feature is in less than two current engines.">⚠</b><span>MDN</span></summary>
-   <div class="feature">
-    <p><a href="https://developer.mozilla.org/en-US/docs/Web/API/FederatedCredential" title="The FederatedCredential interface of the Credential Management API provides information about credentials from a federated identity provider. A federated identity provider is an entity that a website trusts to correctly authenticate a user, and that provides an API for that purpose. OpenID Connect is an example of a federated identity provider framework.">FederatedCredential</a></p>
-    <p class="less-than-two-engines-text">In only one current engine.</p>
-    <div class="support">
-     <span class="firefox no"><span>Firefox</span><span>None</span></span><span class="safari no"><span>Safari</span><span>None</span></span><span class="chrome yes"><span>Chrome</span><span>51+</span></span>
-     <hr>
-     <span class="opera no"><span>Opera</span><span>?</span></span><span class="edge_blink yes"><span>Edge</span><span>79+</span></span>
-     <hr>
-     <span class="edge no"><span>Edge (Legacy)</span><span>?</span></span><span class="ie no"><span>IE</span><span>None</span></span>
-     <hr>
-     <span class="firefox_android no"><span>Firefox for Android</span><span>?</span></span><span class="safari_ios no"><span>iOS Safari</span><span>?</span></span><span class="chrome_android no"><span>Chrome for Android</span><span>?</span></span><span class="webview_android no"><span>Android WebView</span><span>?</span></span><span class="samsunginternet_android no"><span>Samsung Internet</span><span>?</span></span><span class="opera_android no"><span>Opera Mobile</span><span>?</span></span>
-    </div>
-   </div>
-  </details>
-  <details class="mdn-anno unpositioned" data-anno-for="framework-credential-management">
-   <summary><b class="all-engines-flag" title="This feature is in all current engines.">✔</b><span>MDN</span></summary>
-   <div class="feature">
-    <p><a href="https://developer.mozilla.org/en-US/docs/Web/API/Navigator/credentials" title="The credentials property of the Navigator interface returns the CredentialsContainer interface, which exposes methods to request credentials. The CredentialsContainer interface also notifies the user agent when an interesting event occurs, such as a successful sign-in or sign-out. This interface can be used for feature detection.">Navigator/credentials</a></p>
-    <p class="all-engines-text">In all current engines.</p>
-    <div class="support">
-     <span class="firefox yes"><span>Firefox</span><span>60+</span></span><span class="safari yes"><span>Safari</span><span>13+</span></span><span class="chrome yes"><span>Chrome</span><span>51+</span></span>
-     <hr>
-     <span class="opera no"><span>Opera</span><span>?</span></span><span class="edge_blink yes"><span>Edge</span><span>79+</span></span>
-     <hr>
-     <span class="edge yes"><span>Edge (Legacy)</span><span>18</span></span><span class="ie no"><span>IE</span><span>None</span></span>
-     <hr>
-     <span class="firefox_android no"><span>Firefox for Android</span><span>?</span></span><span class="safari_ios no"><span>iOS Safari</span><span>?</span></span><span class="chrome_android no"><span>Chrome for Android</span><span>?</span></span><span class="webview_android no"><span>Android WebView</span><span>?</span></span><span class="samsunginternet_android no"><span>Samsung Internet</span><span>?</span></span><span class="opera_android no"><span>Opera Mobile</span><span>?</span></span>
-    </div>
-   </div>
-  </details>
-  <details class="mdn-anno unpositioned" data-anno-for="dom-passwordcredential-passwordcredential">
-   <summary><b class="less-than-two-engines-flag" title="This feature is in less than two current engines.">⚠</b><span>MDN</span></summary>
-   <div class="feature">
-    <p><a href="https://developer.mozilla.org/en-US/docs/Web/API/PasswordCredential/PasswordCredential" title="The PasswordCredential() constructor creates a new PasswordCredential object. In supporting browsers, an instance of this class may be passed the credential from the init object for global fetch().">PasswordCredential/PasswordCredential</a></p>
-    <p class="less-than-two-engines-text">In only one current engine.</p>
-    <div class="support">
-     <span class="firefox no"><span>Firefox</span><span>None</span></span><span class="safari no"><span>Safari</span><span>None</span></span><span class="chrome yes"><span>Chrome</span><span>51+</span></span>
-     <hr>
-     <span class="opera no"><span>Opera</span><span>?</span></span><span class="edge_blink yes"><span>Edge</span><span>79+</span></span>
-     <hr>
-     <span class="edge no"><span>Edge (Legacy)</span><span>?</span></span><span class="ie no"><span>IE</span><span>None</span></span>
-     <hr>
-     <span class="firefox_android no"><span>Firefox for Android</span><span>?</span></span><span class="safari_ios no"><span>iOS Safari</span><span>?</span></span><span class="chrome_android no"><span>Chrome for Android</span><span>?</span></span><span class="webview_android no"><span>Android WebView</span><span>?</span></span><span class="samsunginternet_android no"><span>Samsung Internet</span><span>?</span></span><span class="opera_android no"><span>Opera Mobile</span><span>?</span></span>
-    </div>
-   </div>
-  </details>
-  <details class="mdn-anno unpositioned" data-anno-for="dom-credentialuserdata-iconurl">
-   <summary><b class="less-than-two-engines-flag" title="This feature is in less than two current engines.">⚠</b><span>MDN</span></summary>
-   <div class="feature">
-    <p><a href="https://developer.mozilla.org/en-US/docs/Web/API/PasswordCredential/iconURL" title="The iconURL read-only property of the PasswordCredential interface returns a string containing a URL pointing to an image for an icon. This image is intended for display in a credential chooser. The URL must be accessible without authentication.">PasswordCredential/iconURL</a></p>
-    <p class="less-than-two-engines-text">In only one current engine.</p>
-    <div class="support">
-     <span class="firefox no"><span>Firefox</span><span>None</span></span><span class="safari no"><span>Safari</span><span>None</span></span><span class="chrome yes"><span>Chrome</span><span>51+</span></span>
-     <hr>
-     <span class="opera no"><span>Opera</span><span>?</span></span><span class="edge_blink yes"><span>Edge</span><span>79+</span></span>
-     <hr>
-     <span class="edge no"><span>Edge (Legacy)</span><span>?</span></span><span class="ie no"><span>IE</span><span>None</span></span>
-     <hr>
-     <span class="firefox_android no"><span>Firefox for Android</span><span>?</span></span><span class="safari_ios no"><span>iOS Safari</span><span>?</span></span><span class="chrome_android no"><span>Chrome for Android</span><span>?</span></span><span class="webview_android no"><span>Android WebView</span><span>?</span></span><span class="samsunginternet_android no"><span>Samsung Internet</span><span>?</span></span><span class="opera_android no"><span>Opera Mobile</span><span>?</span></span>
-    </div>
-   </div>
-  </details>
-  <details class="mdn-anno unpositioned" data-anno-for="dom-credentialuserdata-name">
-   <summary><b class="less-than-two-engines-flag" title="This feature is in less than two current engines.">⚠</b><span>MDN</span></summary>
-   <div class="feature">
-    <p><a href="https://developer.mozilla.org/en-US/docs/Web/API/PasswordCredential/name" title="The name read-only property of the PasswordCredential interface returns a string containing a human-readable public name for display in a credential chooser.">PasswordCredential/name</a></p>
-    <p class="less-than-two-engines-text">In only one current engine.</p>
-    <div class="support">
-     <span class="firefox no"><span>Firefox</span><span>None</span></span><span class="safari no"><span>Safari</span><span>None</span></span><span class="chrome yes"><span>Chrome</span><span>51+</span></span>
-     <hr>
-     <span class="opera no"><span>Opera</span><span>?</span></span><span class="edge_blink yes"><span>Edge</span><span>79+</span></span>
-     <hr>
-     <span class="edge no"><span>Edge (Legacy)</span><span>?</span></span><span class="ie no"><span>IE</span><span>None</span></span>
-     <hr>
-     <span class="firefox_android no"><span>Firefox for Android</span><span>?</span></span><span class="safari_ios no"><span>iOS Safari</span><span>?</span></span><span class="chrome_android no"><span>Chrome for Android</span><span>?</span></span><span class="webview_android no"><span>Android WebView</span><span>?</span></span><span class="samsunginternet_android no"><span>Samsung Internet</span><span>?</span></span><span class="opera_android no"><span>Opera Mobile</span><span>?</span></span>
-    </div>
-   </div>
-  </details>
-  <details class="mdn-anno unpositioned" data-anno-for="dom-passwordcredential-password">
-   <summary><b class="less-than-two-engines-flag" title="This feature is in less than two current engines.">⚠</b><span>MDN</span></summary>
-   <div class="feature">
-    <p><a href="https://developer.mozilla.org/en-US/docs/Web/API/PasswordCredential/password" title="The password read-only property of the PasswordCredential interface returns a string containing the password of the credential.">PasswordCredential/password</a></p>
-    <p class="less-than-two-engines-text">In only one current engine.</p>
-    <div class="support">
-     <span class="firefox no"><span>Firefox</span><span>None</span></span><span class="safari no"><span>Safari</span><span>None</span></span><span class="chrome yes"><span>Chrome</span><span>60+</span></span>
-     <hr>
-     <span class="opera no"><span>Opera</span><span>?</span></span><span class="edge_blink yes"><span>Edge</span><span>79+</span></span>
-     <hr>
-     <span class="edge no"><span>Edge (Legacy)</span><span>?</span></span><span class="ie no"><span>IE</span><span>None</span></span>
-     <hr>
-     <span class="firefox_android no"><span>Firefox for Android</span><span>?</span></span><span class="safari_ios no"><span>iOS Safari</span><span>?</span></span><span class="chrome_android no"><span>Chrome for Android</span><span>?</span></span><span class="webview_android no"><span>Android WebView</span><span>?</span></span><span class="samsunginternet_android no"><span>Samsung Internet</span><span>?</span></span><span class="opera_android no"><span>Opera Mobile</span><span>?</span></span>
-    </div>
-   </div>
-  </details>
-  <details class="mdn-anno unpositioned" data-anno-for="passwordcredential-interface">
-   <summary><b class="less-than-two-engines-flag" title="This feature is in less than two current engines.">⚠</b><span>MDN</span></summary>
-   <div class="feature">
-    <p><a href="https://developer.mozilla.org/en-US/docs/Web/API/PasswordCredential" title="The interface of the Credential Management API provides information about a username/password pair. In supporting browsers an instance of this class may be passed in the credential member of the init object for global fetch().">PasswordCredential</a></p>
-    <p class="less-than-two-engines-text">In only one current engine.</p>
-    <div class="support">
-     <span class="firefox no"><span>Firefox</span><span>None</span></span><span class="safari no"><span>Safari</span><span>None</span></span><span class="chrome yes"><span>Chrome</span><span>51+</span></span>
-     <hr>
-     <span class="opera no"><span>Opera</span><span>?</span></span><span class="edge_blink yes"><span>Edge</span><span>79+</span></span>
-     <hr>
-     <span class="edge no"><span>Edge (Legacy)</span><span>?</span></span><span class="ie no"><span>IE</span><span>None</span></span>
-     <hr>
-     <span class="firefox_android no"><span>Firefox for Android</span><span>?</span></span><span class="safari_ios no"><span>iOS Safari</span><span>?</span></span><span class="chrome_android no"><span>Chrome for Android</span><span>?</span></span><span class="webview_android no"><span>Android WebView</span><span>?</span></span><span class="samsunginternet_android no"><span>Samsung Internet</span><span>?</span></span><span class="opera_android no"><span>Opera Mobile</span><span>?</span></span>
-    </div>
-   </div>
-  </details>
-<script>/* Boilerplate: script-dom-helper */
-"use strict";
-function query(sel) { return document.querySelector(sel); }
-
-function queryAll(sel) { return [...document.querySelectorAll(sel)]; }
-
-function iter(obj) {
-	if(!obj) return [];
-	var it = obj[Symbol.iterator];
-	if(it) return it;
-	return Object.entries(obj);
-}
-
-function mk(tagname, attrs, ...children) {
-	const el = document.createElement(tagname);
-	for(const [k,v] of iter(attrs)) {
-		if(k.slice(0,3) == "_on") {
-			const eventName = k.slice(3);
-			el.addEventListener(eventName, v);
-		} else if(k[0] == "_") {
-			// property, not attribute
-			el[k.slice(1)] = v;
-		} else {
-			if(v === false || v == null) {
-        continue;
-      } else if(v === true) {
-        el.setAttribute(k, "");
-        continue;
-      } else {
-  			el.setAttribute(k, v);
-      }
-		}
-	}
-	append(el, children);
-	return el;
-}
-
-/* Create shortcuts for every known HTML element */
-[
-  "a",
-  "abbr",
-  "acronym",
-  "address",
-  "applet",
-  "area",
-  "article",
-  "aside",
-  "audio",
-  "b",
-  "base",
-  "basefont",
-  "bdo",
-  "big",
-  "blockquote",
-  "body",
-  "br",
-  "button",
-  "canvas",
-  "caption",
-  "center",
-  "cite",
-  "code",
-  "col",
-  "colgroup",
-  "datalist",
-  "dd",
-  "del",
-  "details",
-  "dfn",
-  "dialog",
-  "div",
-  "dl",
-  "dt",
-  "em",
-  "embed",
-  "fieldset",
-  "figcaption",
-  "figure",
-  "font",
-  "footer",
-  "form",
-  "frame",
-  "frameset",
-  "head",
-  "header",
-  "h1",
-  "h2",
-  "h3",
-  "h4",
-  "h5",
-  "h6",
-  "hr",
-  "html",
-  "i",
-  "iframe",
-  "img",
-  "input",
-  "ins",
-  "kbd",
-  "label",
-  "legend",
-  "li",
-  "link",
-  "main",
-  "map",
-  "mark",
-  "meta",
-  "meter",
-  "nav",
-  "nobr",
-  "noscript",
-  "object",
-  "ol",
-  "optgroup",
-  "option",
-  "output",
-  "p",
-  "param",
-  "pre",
-  "progress",
-  "q",
-  "s",
-  "samp",
-  "script",
-  "section",
-  "select",
-  "small",
-  "source",
-  "span",
-  "strike",
-  "strong",
-  "style",
-  "sub",
-  "summary",
-  "sup",
-  "table",
-  "tbody",
-  "td",
-  "template",
-  "textarea",
-  "tfoot",
-  "th",
-  "thead",
-  "time",
-  "title",
-  "tr",
-  "u",
-  "ul",
-  "var",
-  "video",
-  "wbr",
-  "xmp",
-].forEach(tagname=>{
-	mk[tagname] = (...args) => mk(tagname, ...args);
-});
-
-function* nodesFromChildList(children) {
-	for(const child of children.flat(Infinity)) {
-		if(child instanceof Node) {
-			yield child;
-		} else {
-			yield new Text(child);
-		}
-	}
-}
-function append(el, ...children) {
-	for(const child of nodesFromChildList(children)) {
-		if(el instanceof Node) el.appendChild(child);
-		else el.push(child);
-	}
-	return el;
-}
-
-function insertAfter(el, ...children) {
-	for(const child of nodesFromChildList(children)) {
-		el.parentNode.insertBefore(child, el.nextSibling);
-	}
-	return el;
-}
-
-function clearContents(el) {
-	el.innerHTML = "";
-	return el;
-}
-
-function parseHTML(markup) {
-	if(markup.toLowerCase().trim().indexOf('<!doctype') === 0) {
-		const doc = document.implementation.createHTMLDocument("");
-		doc.documentElement.innerHTML = markup;
-		return doc;
-	} else {
-		const el = mk.template({});
-		el.innerHTML = markup;
-		return el.content;
-	}
-}</script>
-<script>/* Boilerplate: script-dfn-panel */
-"use strict";
-{
-let dfnPanelData = {
-"0204d188": {"dfnID":"0204d188","dfnText":"size","external":true,"refSections":[{"refs":[{"id":"ref-for-list-size"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-list-size\u2460"}],"title":"2.5.4. Create a Credential"}],"url":"https://infra.spec.whatwg.org/#list-size"},
-"03afaf9c": {"dfnID":"03afaf9c","dfnText":"empty","external":true,"refSections":[{"refs":[{"id":"ref-for-list-empty"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"}],"url":"https://infra.spec.whatwg.org/#list-empty"},
-"08a12aad": {"dfnID":"08a12aad","dfnText":"Response","external":true,"refSections":[{"refs":[{"id":"ref-for-response"}],"title":"3.1.2. Post-sign-in Confirmation"},{"refs":[{"id":"ref-for-response\u2460"}],"title":"3.1.3. Change Password"}],"url":"https://fetch.spec.whatwg.org/#response"},
-"0d4537e4": {"dfnID":"0d4537e4","dfnText":"name (for input)","external":true,"refSections":[{"refs":[{"id":"ref-for-attr-fe-name"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "}],"url":"https://html.spec.whatwg.org/multipage/forms.html#attr-fe-name"},
-"0e57571b": {"dfnID":"0e57571b","dfnText":"submittable elements","external":true,"refSections":[{"refs":[{"id":"ref-for-category-submit"}],"title":"3.2. The PasswordCredential Interface"},{"refs":[{"id":"ref-for-category-submit\u2460"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "}],"url":"https://html.spec.whatwg.org/multipage/forms.html#category-submit"},
-"119e5118": {"dfnID":"119e5118","dfnText":"get(name)","external":true,"refSections":[{"refs":[{"id":"ref-for-dom-formdata-get"},{"id":"ref-for-dom-formdata-get\u2460"},{"id":"ref-for-dom-formdata-get\u2461"},{"id":"ref-for-dom-formdata-get\u2462"},{"id":"ref-for-dom-formdata-get\u2463"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "}],"url":"https://xhr.spec.whatwg.org/#dom-formdata-get"},
-"1243a891": {"dfnID":"1243a891","dfnText":"exist","external":true,"refSections":[{"refs":[{"id":"ref-for-map-exists"},{"id":"ref-for-map-exists\u2460"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-map-exists\u2461"}],"title":"2.5.4. Create a Credential"},{"refs":[{"id":"ref-for-map-exists\u2462"}],"title":"3.3.1. \n    PasswordCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-map-exists\u2463"}],"title":"3.3.2. \n    PasswordCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-map-exists\u2464"},{"id":"ref-for-map-exists\u2465"},{"id":"ref-for-map-exists\u2466"}],"title":"4.2.1. \n    FederatedCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-map-exists\u2467"}],"title":"4.2.2. \n    FederatedCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors)\n  "}],"url":"https://infra.spec.whatwg.org/#map-exists"},
-"12b8dfc0": {"dfnID":"12b8dfc0","dfnText":"current settings object","external":true,"refSections":[{"refs":[{"id":"ref-for-current-settings-object"}],"title":"2.3. navigator.credentials"},{"refs":[{"id":"ref-for-current-settings-object\u2460"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"},{"refs":[{"id":"ref-for-current-settings-object\u2461"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-current-settings-object\u2462"},{"id":"ref-for-current-settings-object\u2463"}],"title":"2.5.3. Store a Credential"},{"refs":[{"id":"ref-for-current-settings-object\u2464"},{"id":"ref-for-current-settings-object\u2465"}],"title":"2.5.4. Create a Credential"},{"refs":[{"id":"ref-for-current-settings-object\u2466"}],"title":"3.2. The PasswordCredential Interface"}],"url":"https://html.spec.whatwg.org/multipage/webappapis.html#current-settings-object"},
-"13dd6cae": {"dfnID":"13dd6cae","dfnText":"node navigable","external":true,"refSections":[{"refs":[{"id":"ref-for-node-navigable"}],"title":"2.1.1.1. Same-Origin with its Ancestors"}],"url":"https://html.spec.whatwg.org/multipage/document-sequences.html#node-navigable"},
-"1465b9a4": {"dfnID":"1465b9a4","dfnText":"has(name)","external":true,"refSections":[{"refs":[{"id":"ref-for-dom-formdata-has"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "}],"url":"https://xhr.spec.whatwg.org/#dom-formdata-has"},
-"15e48c39": {"dfnID":"15e48c39","dfnText":"set","external":true,"refSections":[{"refs":[{"id":"ref-for-ordered-set"}],"title":"2.1. Infrastructure"},{"refs":[{"id":"ref-for-ordered-set\u2460"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"},{"refs":[{"id":"ref-for-ordered-set\u2461"}],"title":"2.5.4. Create a Credential"}],"url":"https://infra.spec.whatwg.org/#ordered-set"},
-"18c65a7a": {"dfnID":"18c65a7a","dfnText":"HTMLFormElement","external":true,"refSections":[{"refs":[{"id":"ref-for-htmlformelement"}],"title":"3.1.2. Post-sign-in Confirmation"},{"refs":[{"id":"ref-for-htmlformelement\u2460"}],"title":"3.1.3. Change Password"},{"refs":[{"id":"ref-for-htmlformelement\u2461"},{"id":"ref-for-htmlformelement\u2462"},{"id":"ref-for-htmlformelement\u2463"},{"id":"ref-for-htmlformelement\u2464"}],"title":"3.2. The PasswordCredential Interface"},{"refs":[{"id":"ref-for-htmlformelement\u2465"},{"id":"ref-for-htmlformelement\u2466"}],"title":"3.3.2. \n    PasswordCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-htmlformelement\u2467"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "}],"url":"https://html.spec.whatwg.org/multipage/forms.html#htmlformelement"},
-"19866964": {"dfnID":"19866964","dfnText":"nickname","external":true,"refSections":[{"refs":[{"id":"ref-for-attr-fe-autocomplete-nickname"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "}],"url":"https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-nickname"},
-"1bba3db7": {"dfnID":"1bba3db7","dfnText":"parent","external":true,"refSections":[{"refs":[{"id":"ref-for-nav-parent"},{"id":"ref-for-nav-parent\u2460"}],"title":"2.1.1.1. Same-Origin with its Ancestors"}],"url":"https://html.spec.whatwg.org/multipage/document-sequences.html#nav-parent"},
-"25538777": {"dfnID":"25538777","dfnText":"tree order","external":true,"refSections":[{"refs":[{"id":"ref-for-concept-tree-order"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "}],"url":"https://dom.spec.whatwg.org/#concept-tree-order"},
-"2698cdfd": {"dfnID":"2698cdfd","dfnText":"connect-src","external":true,"refSections":[{"refs":[{"id":"ref-for-connect-src"}],"title":"6.2. Credential Leakage"}],"url":"https://www.w3.org/TR/CSP3/#connect-src"},
-"26cd4086": {"dfnID":"26cd4086","dfnText":"OTPCredential","external":true,"refSections":[{"refs":[{"id":"ref-for-otpcredential"}],"title":"2.1.2. Credential Type Registry"}],"url":"https://wicg.github.io/web-otp#otpcredential"},
-"26f2cdf1": {"dfnID":"26f2cdf1","dfnText":"autocomplete","external":true,"refSections":[{"refs":[{"id":"ref-for-attr-fe-autocomplete"}],"title":"1. Introduction"},{"refs":[{"id":"ref-for-attr-fe-autocomplete\u2460"},{"id":"ref-for-attr-fe-autocomplete\u2461"},{"id":"ref-for-attr-fe-autocomplete\u2462"}],"title":"3.1.2. Post-sign-in Confirmation"},{"refs":[{"id":"ref-for-attr-fe-autocomplete\u2463"},{"id":"ref-for-attr-fe-autocomplete\u2464"},{"id":"ref-for-attr-fe-autocomplete\u2465"}],"title":"3.1.3. Change Password"},{"refs":[{"id":"ref-for-attr-fe-autocomplete\u2466"},{"id":"ref-for-attr-fe-autocomplete\u2467"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "}],"url":"https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete"},
-"28e64574": {"dfnID":"28e64574","dfnText":"abort reason","external":true,"refSections":[{"refs":[{"id":"ref-for-abortsignal-abort-reason"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"},{"refs":[{"id":"ref-for-abortsignal-abort-reason\u2460"}],"title":"2.4. The CredentialCreationOptions Dictionary"},{"refs":[{"id":"ref-for-abortsignal-abort-reason\u2461"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-abortsignal-abort-reason\u2462"}],"title":"2.5.4. Create a Credential"}],"url":"https://dom.spec.whatwg.org/#abortsignal-abort-reason"},
-"2ce6f6bb": {"dfnID":"2ce6f6bb","dfnText":"fetch(input)","external":true,"refSections":[{"refs":[{"id":"ref-for-dom-global-fetch"}],"title":"3.1.2. Post-sign-in Confirmation"},{"refs":[{"id":"ref-for-dom-global-fetch\u2460"}],"title":"6.2. Credential Leakage"},{"refs":[{"id":"ref-for-dom-global-fetch\u2461"}],"title":"8.1. Website Authors"}],"url":"https://fetch.spec.whatwg.org/#dom-global-fetch"},
-"3349d69f": {"dfnID":"3349d69f","dfnText":"associated document","external":true,"refSections":[{"refs":[{"id":"ref-for-concept-document-window"},{"id":"ref-for-concept-document-window\u2460"}],"title":"2.1.1.1. Same-Origin with its Ancestors"},{"refs":[{"id":"ref-for-concept-document-window\u2461"},{"id":"ref-for-concept-document-window\u2462"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-concept-document-window\u2463"},{"id":"ref-for-concept-document-window\u2464"}],"title":"2.5.4. Create a Credential"}],"url":"https://html.spec.whatwg.org/multipage/nav-history-apis.html#concept-document-window"},
-"35972864": {"dfnID":"35972864","dfnText":"active document","external":true,"refSections":[{"refs":[{"id":"ref-for-nav-document"}],"title":"2.1.1.1. Same-Origin with its Ancestors"},{"refs":[{"id":"ref-for-nav-document\u2460"}],"title":"2.3. navigator.credentials"}],"url":"https://html.spec.whatwg.org/multipage/document-sequences.html#nav-document"},
-"3610bd67": {"dfnID":"3610bd67","dfnText":"allowed to use","external":true,"refSections":[{"refs":[{"id":"ref-for-allowed-to-use"},{"id":"ref-for-allowed-to-use\u2460"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-allowed-to-use\u2461"}],"title":"2.5.4. Create a Credential"}],"url":"https://html.spec.whatwg.org/multipage/iframe-embed-object.html#allowed-to-use"},
-"3955f290": {"dfnID":"3955f290","dfnText":"PublicKeyCredential","external":true,"refSections":[{"refs":[{"id":"ref-for-publickeycredential"}],"title":"2.1.2. Credential Type Registry"},{"refs":[{"id":"ref-for-publickeycredential\u2460"}],"title":"8.2. Extension Points"}],"url":"https://www.w3.org/TR/webauthn-3/#publickeycredential"},
-"3ae34c95": {"dfnID":"3ae34c95","dfnText":"destination","external":true,"refSections":[{"refs":[{"id":"ref-for-concept-request-destination"}],"title":"7.2. Chooser Leakage"}],"url":"https://fetch.spec.whatwg.org/#concept-request-destination"},
-"3b90bdcd": {"dfnID":"3b90bdcd","dfnText":"resolve","external":true,"refSections":[{"refs":[{"id":"ref-for-resolve"},{"id":"ref-for-resolve\u2460"},{"id":"ref-for-resolve\u2461"}],"title":"2.2. The Credential Interface"},{"refs":[{"id":"ref-for-resolve\u2462"}],"title":"2.3.2. Mediation Requirements"},{"refs":[{"id":"ref-for-resolve\u2463"},{"id":"ref-for-resolve\u2464"},{"id":"ref-for-resolve\u2465"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-resolve\u2466"}],"title":"2.5.3. Store a Credential"},{"refs":[{"id":"ref-for-resolve\u2467"},{"id":"ref-for-resolve\u2468"}],"title":"2.5.4. Create a Credential"},{"refs":[{"id":"ref-for-resolve\u2460\u24ea"}],"title":"2.5.5. Prevent Silent Access"},{"refs":[{"id":"ref-for-resolve\u2460\u2460"}],"title":"8.2. Extension Points"}],"url":"https://webidl.spec.whatwg.org/#resolve"},
-"3e12e042": {"dfnID":"3e12e042","dfnText":"environment settings object","external":true,"refSections":[{"refs":[{"id":"ref-for-environment-settings-object"}],"title":"2.1. Infrastructure"},{"refs":[{"id":"ref-for-environment-settings-object\u2460"}],"title":"2.1.1.1. Same-Origin with its Ancestors"},{"refs":[{"id":"ref-for-environment-settings-object\u2461"}],"title":"2.2.1.1. [[CollectFromCredentialStore]] internal method"},{"refs":[{"id":"ref-for-environment-settings-object\u2462"}],"title":"2.2.1.2. [[DiscoverFromExternalSource]] internal method"},{"refs":[{"id":"ref-for-environment-settings-object\u2463"}],"title":"2.2.1.3. [[Store]] internal method"},{"refs":[{"id":"ref-for-environment-settings-object\u2464"}],"title":"2.2.1.4. [[Create]] internal method"},{"refs":[{"id":"ref-for-environment-settings-object\u2465"}],"title":"2.5.5. Prevent Silent Access"}],"url":"https://html.spec.whatwg.org/multipage/webappapis.html#environment-settings-object"},
-"3e24d694": {"dfnID":"3e24d694","dfnText":"photo","external":true,"refSections":[{"refs":[{"id":"ref-for-attr-fe-autocomplete-photo"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "}],"url":"https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-photo"},
-"4197ac46": {"dfnID":"4197ac46","dfnText":"interface object","external":true,"refSections":[{"refs":[{"id":"ref-for-dfn-interface-object"},{"id":"ref-for-dfn-interface-object\u2460"},{"id":"ref-for-dfn-interface-object\u2461"},{"id":"ref-for-dfn-interface-object\u2462"}],"title":"2.2. The Credential Interface"},{"refs":[{"id":"ref-for-dfn-interface-object\u2463"},{"id":"ref-for-dfn-interface-object\u2464"}],"title":"2.2.1. Credential Internal Methods"},{"refs":[{"id":"ref-for-dfn-interface-object\u2465"}],"title":"2.2.1.4. [[Create]] internal method"},{"refs":[{"id":"ref-for-dfn-interface-object\u2466"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"},{"refs":[{"id":"ref-for-dfn-interface-object\u2467"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-dfn-interface-object\u2468"}],"title":"2.5.2. Collect Credentials from the credential store"},{"refs":[{"id":"ref-for-dfn-interface-object\u2460\u24ea"}],"title":"2.5.3. Store a Credential"},{"refs":[{"id":"ref-for-dfn-interface-object\u2460\u2460"},{"id":"ref-for-dfn-interface-object\u2460\u2461"},{"id":"ref-for-dfn-interface-object\u2460\u2462"}],"title":"3.2. The PasswordCredential Interface"},{"refs":[{"id":"ref-for-dfn-interface-object\u2460\u2463"},{"id":"ref-for-dfn-interface-object\u2460\u2464"},{"id":"ref-for-dfn-interface-object\u2460\u2465"}],"title":"4.1. The FederatedCredential Interface"},{"refs":[{"id":"ref-for-dfn-interface-object\u2460\u2466"}],"title":"5.3. Credential Selection"},{"refs":[{"id":"ref-for-dfn-interface-object\u2460\u2467"},{"id":"ref-for-dfn-interface-object\u2460\u2468"},{"id":"ref-for-dfn-interface-object\u2461\u24ea"},{"id":"ref-for-dfn-interface-object\u2461\u2460"},{"id":"ref-for-dfn-interface-object\u2461\u2461"},{"id":"ref-for-dfn-interface-object\u2461\u2462"}],"title":"8.2. Extension Points"}],"url":"https://webidl.spec.whatwg.org/#dfn-interface-object"},
-"43ac8374": {"dfnID":"43ac8374","dfnText":"origin (for environment settings object)","external":true,"refSections":[{"refs":[{"id":"ref-for-concept-settings-object-origin"}],"title":"2.1.1.1. Same-Origin with its Ancestors"},{"refs":[{"id":"ref-for-concept-settings-object-origin\u2460"}],"title":"2.2.1.1. [[CollectFromCredentialStore]] internal method"},{"refs":[{"id":"ref-for-concept-settings-object-origin\u2461"}],"title":"2.2.1.2. [[DiscoverFromExternalSource]] internal method"},{"refs":[{"id":"ref-for-concept-settings-object-origin\u2462"}],"title":"2.2.1.4. [[Create]] internal method"},{"refs":[{"id":"ref-for-concept-settings-object-origin\u2463"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-concept-settings-object-origin\u2464"}],"title":"2.5.2. Collect Credentials from the credential store"},{"refs":[{"id":"ref-for-concept-settings-object-origin\u2465"}],"title":"2.5.4. Create a Credential"},{"refs":[{"id":"ref-for-concept-settings-object-origin\u2466"}],"title":"2.5.5. Prevent Silent Access"},{"refs":[{"id":"ref-for-concept-settings-object-origin\u2467"}],"title":"3.2. The PasswordCredential Interface"},{"refs":[{"id":"ref-for-concept-settings-object-origin\u2468"}],"title":"8.2. Extension Points"}],"url":"https://html.spec.whatwg.org/multipage/webappapis.html#concept-settings-object-origin"},
-"45209803": {"dfnID":"45209803","dfnText":"for each","external":true,"refSections":[{"refs":[{"id":"ref-for-map-iterate"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"}],"url":"https://infra.spec.whatwg.org/#map-iterate"},
-"4880f66f": {"dfnID":"4880f66f","dfnText":"username","external":true,"refSections":[{"refs":[{"id":"ref-for-attr-fe-autocomplete-username"}],"title":"3.1.2. Post-sign-in Confirmation"},{"refs":[{"id":"ref-for-attr-fe-autocomplete-username\u2460"}],"title":"3.1.3. Change Password"},{"refs":[{"id":"ref-for-attr-fe-autocomplete-username\u2461"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "}],"url":"https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-username"},
-"4c0407e7": {"dfnID":"4c0407e7","dfnText":"new-password","external":true,"refSections":[{"refs":[{"id":"ref-for-attr-fe-autocomplete-new-password"}],"title":"3.1.3. Change Password"},{"refs":[{"id":"ref-for-attr-fe-autocomplete-new-password\u2460"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "}],"url":"https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-new-password"},
-"4ed2f1ff": {"dfnID":"4ed2f1ff","dfnText":"policy-controlled feature","external":true,"refSections":[{"refs":[{"id":"ref-for-policy-controlled-feature"},{"id":"ref-for-policy-controlled-feature\u2460"},{"id":"ref-for-policy-controlled-feature\u2461"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-policy-controlled-feature\u2462"},{"id":"ref-for-policy-controlled-feature\u2463"}],"title":"2.5.4. Create a Credential"}],"url":"https://www.w3.org/TR/permissions-policy-1/#policy-controlled-feature"},
-"4fe2b69f": {"dfnID":"4fe2b69f","dfnText":"publickey-credentials-get-feature","external":true,"refSections":[{"refs":[{"id":"ref-for-publickey-credentials-get-feature"}],"title":"2.5.1. Request a Credential"}],"url":"https://www.w3.org/TR/webauthn-3/#publickey-credentials-get-feature"},
-"535dd335": {"dfnID":"535dd335","dfnText":"aborted","external":true,"refSections":[{"refs":[{"id":"ref-for-abortsignal-aborted"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-abortsignal-aborted\u2460"}],"title":"2.5.4. Create a Credential"}],"url":"https://dom.spec.whatwg.org/#abortsignal-aborted"},
-"5372cca8": {"dfnID":"5372cca8","dfnText":"boolean","external":true,"refSections":[{"refs":[{"id":"ref-for-idl-boolean"}],"title":"2.2. The Credential Interface"},{"refs":[{"id":"ref-for-idl-boolean\u2460"}],"title":"3.2. The PasswordCredential Interface"}],"url":"https://webidl.spec.whatwg.org/#idl-boolean"},
-"5991ccfb": {"dfnID":"5991ccfb","dfnText":"relevant realm","external":true,"refSections":[{"refs":[{"id":"ref-for-concept-relevant-realm"}],"title":"2.3. navigator.credentials"}],"url":"https://html.spec.whatwg.org/multipage/webappapis.html#concept-relevant-realm"},
-"5dbcc6ec": {"dfnID":"5dbcc6ec","dfnText":"registerable domain","external":true,"refSections":[{"refs":[{"id":"ref-for-something"}],"title":"6.1. Cross-domain credential access"}],"url":"https://publicsuffix.org/list/#"},
-"5f90bbfb": {"dfnID":"5f90bbfb","dfnText":"undefined","external":true,"refSections":[{"refs":[{"id":"ref-for-idl-undefined"},{"id":"ref-for-idl-undefined\u2460"}],"title":"2.3. navigator.credentials"}],"url":"https://webidl.spec.whatwg.org/#idl-undefined"},
-"60a270ef": {"dfnID":"60a270ef","dfnText":"internal method","external":true,"refSections":[{"refs":[{"id":"ref-for-sec-ordinary-object-internal-methods-and-internal-slots"}],"title":"2.2.1. Credential Internal Methods"}],"url":"https://tc39.github.io/ecma262/#sec-ordinary-object-internal-methods-and-internal-slots"},
-"614d8334": {"dfnID":"614d8334","dfnText":"current-password","external":true,"refSections":[{"refs":[{"id":"ref-for-attr-fe-autocomplete-current-password"}],"title":"3.1.2. Post-sign-in Confirmation"},{"refs":[{"id":"ref-for-attr-fe-autocomplete-current-password\u2460"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "}],"url":"https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-current-password"},
-"65181da8": {"dfnID":"65181da8","dfnText":"secure context","external":true,"refSections":[{"refs":[{"id":"ref-for-secure-context"}],"title":"2.3. navigator.credentials"},{"refs":[{"id":"ref-for-secure-context\u2460"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-secure-context\u2461"}],"title":"2.5.3. Store a Credential"},{"refs":[{"id":"ref-for-secure-context\u2462"}],"title":"2.5.4. Create a Credential"},{"refs":[{"id":"ref-for-secure-context\u2463"},{"id":"ref-for-secure-context\u2464"}],"title":"6.3. Insecure Sites"}],"url":"https://html.spec.whatwg.org/multipage/webappapis.html#secure-context"},
-"6c533d1d": {"dfnID":"6c533d1d","dfnText":"child-src","external":true,"refSections":[{"refs":[{"id":"ref-for-child-src"}],"title":"6.2. Credential Leakage"}],"url":"https://www.w3.org/TR/CSP3/#child-src"},
-"6d1db60d": {"dfnID":"6d1db60d","dfnText":"service-workers mode","external":true,"refSections":[{"refs":[{"id":"ref-for-request-service-workers-mode"}],"title":"7.2. Chooser Leakage"}],"url":"https://fetch.spec.whatwg.org/#request-service-workers-mode"},
-"6d8611a2": {"dfnID":"6d8611a2","dfnText":"dictionary members","external":true,"refSections":[{"refs":[{"id":"ref-for-dfn-dictionary-member"}],"title":"2.1.2. Credential Type Registry"},{"refs":[{"id":"ref-for-dfn-dictionary-member\u2460"},{"id":"ref-for-dfn-dictionary-member\u2461"}],"title":"2.1.2.1. Registration Entry Requirements and Update Process"}],"url":"https://webidl.spec.whatwg.org/#dfn-dictionary-member"},
-"6ee1791f": {"dfnID":"6ee1791f","dfnText":"[[DiscoverFromExternalSource]](origin, options, sameOriginWithAncestors)","external":true,"refSections":[{"refs":[{"id":"ref-for-dom-publickeycredential-discoverfromexternalsource-slot"}],"title":"8.2. Extension Points"}],"url":"https://www.w3.org/TR/webauthn-3/#dom-publickeycredential-discoverfromexternalsource-slot"},
-"72cc882c": {"dfnID":"72cc882c","dfnText":"submit()","external":true,"refSections":[{"refs":[{"id":"ref-for-dom-form-submit"}],"title":"3.1.1. Password-based Sign-in"}],"url":"https://html.spec.whatwg.org/multipage/forms.html#dom-form-submit"},
-"7393da89": {"dfnID":"7393da89","dfnText":"same origin","external":true,"refSections":[{"refs":[{"id":"ref-for-same-origin"}],"title":"2.1.1.1. Same-Origin with its Ancestors"},{"refs":[{"id":"ref-for-same-origin\u2460"}],"title":"3.3.1. \n    PasswordCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-same-origin\u2461"}],"title":"3.3.3. \n    PasswordCredential\u2019s [[Store]](credential, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-same-origin\u2462"}],"title":"4.2.1. \n    FederatedCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-same-origin\u2463"}],"title":"4.2.3. \n    FederatedCredential\u2019s [[Store]](credential, sameOriginWithAncestors)\n  "}],"url":"https://html.spec.whatwg.org/multipage/browsers.html#same-origin"},
-"750a2f08": {"dfnID":"750a2f08","dfnText":"react","external":true,"refSections":[{"refs":[{"id":"ref-for-dfn-perform-steps-once-promise-is-settled"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-dfn-perform-steps-once-promise-is-settled\u2460"}],"title":"2.5.3. Store a Credential"},{"refs":[{"id":"ref-for-dfn-perform-steps-once-promise-is-settled\u2461"}],"title":"2.5.4. Create a Credential"}],"url":"https://webidl.spec.whatwg.org/#dfn-perform-steps-once-promise-is-settled"},
-"7f9469b5": {"dfnID":"7f9469b5","dfnText":"ascii case-insensitive","external":true,"refSections":[{"refs":[{"id":"ref-for-ascii-case-insensitive"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "}],"url":"https://infra.spec.whatwg.org/#ascii-case-insensitive"},
-"82ca3efc": {"dfnID":"82ca3efc","dfnText":"TypeError","external":true,"refSections":[{"refs":[{"id":"ref-for-exceptiondef-typeerror"}],"title":"2.2.1.2. [[DiscoverFromExternalSource]] internal method"},{"refs":[{"id":"ref-for-exceptiondef-typeerror\u2460"}],"title":"2.2.1.4. [[Create]] internal method"},{"refs":[{"id":"ref-for-exceptiondef-typeerror\u2461"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-exceptiondef-typeerror\u2462"},{"id":"ref-for-exceptiondef-typeerror\u2463"}],"title":"3.3.2. \n    PasswordCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-exceptiondef-typeerror\u2464"}],"title":"3.3.5. \n    Create a PasswordCredential from PasswordCredentialData\n  "},{"refs":[{"id":"ref-for-exceptiondef-typeerror\u2465"}],"title":"4.2.4. \n    Create a FederatedCredential from FederatedCredentialInit\n  "}],"url":"https://webidl.spec.whatwg.org/#exceptiondef-typeerror"},
-"857d5516": {"dfnID":"857d5516","dfnText":"client","external":true,"refSections":[{"refs":[{"id":"ref-for-concept-request-client"}],"title":"7.2. Chooser Leakage"}],"url":"https://fetch.spec.whatwg.org/#concept-request-client"},
-"8855a9aa": {"dfnID":"8855a9aa","dfnText":"DOMString","external":true,"refSections":[{"refs":[{"id":"ref-for-idl-DOMString"},{"id":"ref-for-idl-DOMString\u2460"}],"title":"2.2. The Credential Interface"},{"refs":[{"id":"ref-for-idl-DOMString\u2461"},{"id":"ref-for-idl-DOMString\u2462"},{"id":"ref-for-idl-DOMString\u2463"},{"id":"ref-for-idl-DOMString\u2464"}],"title":"4.1. The FederatedCredential Interface"}],"url":"https://webidl.spec.whatwg.org/#idl-DOMString"},
-"889e932f": {"dfnID":"889e932f","dfnText":"Exposed","external":true,"refSections":[{"refs":[{"id":"ref-for-Exposed"}],"title":"2.2. The Credential Interface"},{"refs":[{"id":"ref-for-Exposed\u2460"}],"title":"2.3. navigator.credentials"},{"refs":[{"id":"ref-for-Exposed\u2461"}],"title":"3.2. The PasswordCredential Interface"},{"refs":[{"id":"ref-for-Exposed\u2462"}],"title":"4.1. The FederatedCredential Interface"}],"url":"https://webidl.spec.whatwg.org/#Exposed"},
-"8a30477b": {"dfnID":"8a30477b","dfnText":"global object","external":true,"refSections":[{"refs":[{"id":"ref-for-concept-settings-object-global"}],"title":"2.2.1.4. [[Create]] internal method"},{"refs":[{"id":"ref-for-concept-settings-object-global\u2460"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"},{"refs":[{"id":"ref-for-concept-settings-object-global\u2461"}],"title":"2.5.4. Create a Credential"}],"url":"https://html.spec.whatwg.org/multipage/webappapis.html#concept-settings-object-global"},
-"8e19bb11": {"dfnID":"8e19bb11","dfnText":"publickey-credentials-create-feature","external":true,"refSections":[{"refs":[{"id":"ref-for-publickey-credentials-create-feature"}],"title":"2.5.4. Create a Credential"}],"url":"https://www.w3.org/TR/webauthn-3/#publickey-credentials-create-feature"},
-"902380f7": {"dfnID":"902380f7","dfnText":"credentials mode","external":true,"refSections":[{"refs":[{"id":"ref-for-concept-request-credentials-mode"}],"title":"7.2. Chooser Leakage"}],"url":"https://fetch.spec.whatwg.org/#concept-request-credentials-mode"},
-"917cf127": {"dfnID":"917cf127","dfnText":"form owner","external":true,"refSections":[{"refs":[{"id":"ref-for-form-owner"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "}],"url":"https://html.spec.whatwg.org/multipage/form-control-infrastructure.html#form-owner"},
-"946a9318": {"dfnID":"946a9318","dfnText":"form","external":true,"refSections":[{"refs":[{"id":"ref-for-the-form-element"},{"id":"ref-for-the-form-element\u2460"}],"title":"3.1.1. Password-based Sign-in"},{"refs":[{"id":"ref-for-the-form-element\u2461"}],"title":"6.2. Credential Leakage"}],"url":"https://html.spec.whatwg.org/multipage/forms.html#the-form-element"},
-"960bacf5": {"dfnID":"960bacf5","dfnText":"name (for autocomplete)","external":true,"refSections":[{"refs":[{"id":"ref-for-attr-fe-autocomplete-name"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "}],"url":"https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-name"},
-"980252f2": {"dfnID":"980252f2","dfnText":"identifier","external":true,"refSections":[{"refs":[{"id":"ref-for-dfn-identifier"}],"title":"2.1.2. Credential Type Registry"},{"refs":[{"id":"ref-for-dfn-identifier\u2460"},{"id":"ref-for-dfn-identifier\u2461"},{"id":"ref-for-dfn-identifier\u2462"}],"title":"2.1.2.1. Registration Entry Requirements and Update Process"},{"refs":[{"id":"ref-for-dfn-identifier\u2463"}],"title":"8.2. Extension Points"}],"url":"https://webidl.spec.whatwg.org/#dfn-identifier"},
-"99c988d6": {"dfnID":"99c988d6","dfnText":"remove","external":true,"refSections":[{"refs":[{"id":"ref-for-list-remove"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-list-remove\u2460"}],"title":"2.5.3. Store a Credential"},{"refs":[{"id":"ref-for-list-remove\u2461"}],"title":"2.5.4. Create a Credential"}],"url":"https://infra.spec.whatwg.org/#list-remove"},
-"9a517a7d": {"dfnID":"9a517a7d","dfnText":"queue a task","external":true,"refSections":[{"refs":[{"id":"ref-for-queue-a-task"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-queue-a-task\u2460"}],"title":"2.5.3. Store a Credential"},{"refs":[{"id":"ref-for-queue-a-task\u2461"},{"id":"ref-for-queue-a-task\u2462"}],"title":"2.5.4. Create a Credential"}],"url":"https://html.spec.whatwg.org/multipage/webappapis.html#queue-a-task"},
-"9b39aa25": {"dfnID":"9b39aa25","dfnText":"publicKey (for CredentialRequestOptions)","external":true,"refSections":[{"refs":[{"id":"ref-for-dom-credentialrequestoptions-publickey"}],"title":"2.5.1. Request a Credential"}],"url":"https://www.w3.org/TR/webauthn-3/#dom-credentialrequestoptions-publickey"},
-"9cce47fd": {"dfnID":"9cce47fd","dfnText":"sequence","external":true,"refSections":[{"refs":[{"id":"ref-for-idl-sequence"},{"id":"ref-for-idl-sequence\u2460"}],"title":"4.1. The FederatedCredential Interface"}],"url":"https://webidl.spec.whatwg.org/#idl-sequence"},
-"9e7a10fb": {"dfnID":"9e7a10fb","dfnText":"identity-credentials-get","external":true,"refSections":[{"refs":[{"id":"ref-for-identity-credentials-get"}],"title":"2.5.1. Request a Credential"}],"url":"https://fedidcg.github.io/FedCM/#identity-credentials-get"},
-"a3b18719": {"dfnID":"a3b18719","dfnText":"append","external":true,"refSections":[{"refs":[{"id":"ref-for-set-append"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-set-append\u2460"}],"title":"2.5.2. Collect Credentials from the credential store"},{"refs":[{"id":"ref-for-set-append\u2461"}],"title":"2.5.3. Store a Credential"},{"refs":[{"id":"ref-for-set-append\u2462"}],"title":"2.5.4. Create a Credential"}],"url":"https://infra.spec.whatwg.org/#set-append"},
-"a5c91173": {"dfnID":"a5c91173","dfnText":"SameObject","external":true,"refSections":[{"refs":[{"id":"ref-for-SameObject"}],"title":"2.3. navigator.credentials"}],"url":"https://webidl.spec.whatwg.org/#SameObject"},
-"a72449dd": {"dfnID":"a72449dd","dfnText":"in parallel","external":true,"refSections":[{"refs":[{"id":"ref-for-in-parallel"}],"title":"2.2.1.2. [[DiscoverFromExternalSource]] internal method"},{"refs":[{"id":"ref-for-in-parallel\u2460"}],"title":"2.2.1.3. [[Store]] internal method"},{"refs":[{"id":"ref-for-in-parallel\u2461"}],"title":"2.2.1.4. [[Create]] internal method"},{"refs":[{"id":"ref-for-in-parallel\u2462"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-in-parallel\u2463"}],"title":"2.5.3. Store a Credential"},{"refs":[{"id":"ref-for-in-parallel\u2464"}],"title":"2.5.4. Create a Credential"},{"refs":[{"id":"ref-for-in-parallel\u2465"}],"title":"2.5.5. Prevent Silent Access"}],"url":"https://html.spec.whatwg.org/multipage/infrastructure.html#in-parallel"},
-"a7bf924a": {"dfnID":"a7bf924a","dfnText":"interface prototype object","external":true,"refSections":[{"refs":[{"id":"ref-for-dfn-interface-prototype-object"}],"title":"2.2. The Credential Interface"}],"url":"https://webidl.spec.whatwg.org/#dfn-interface-prototype-object"},
-"a944ac4c": {"dfnID":"a944ac4c","dfnText":"origin (for html-origin-def)","external":true,"refSections":[{"refs":[{"id":"ref-for-concept-origin"}],"title":"2. Core API"},{"refs":[{"id":"ref-for-concept-origin\u2460"}],"title":"2.1. Infrastructure"},{"refs":[{"id":"ref-for-concept-origin\u2461"}],"title":"2.1.1.1. Same-Origin with its Ancestors"},{"refs":[{"id":"ref-for-concept-origin\u2462"}],"title":"2.2. The Credential Interface"},{"refs":[{"id":"ref-for-concept-origin\u2463"}],"title":"2.3.2. Mediation Requirements"},{"refs":[{"id":"ref-for-concept-origin\u2464"}],"title":"3.3.1. \n    PasswordCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-concept-origin\u2465"}],"title":"3.3.2. \n    PasswordCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-concept-origin\u2466"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "},{"refs":[{"id":"ref-for-concept-origin\u2467"}],"title":"4.1.1. Identifying Providers"},{"refs":[{"id":"ref-for-concept-origin\u2468"}],"title":"4.2.1. \n    FederatedCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-concept-origin\u2460\u24ea"}],"title":"4.2.2. \n    FederatedCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-concept-origin\u2460\u2460"},{"id":"ref-for-concept-origin\u2460\u2461"}],"title":"5.2. Requiring User Mediation"},{"refs":[{"id":"ref-for-concept-origin\u2460\u2462"}],"title":"7.3. Locally Stored Data"}],"url":"https://html.spec.whatwg.org/multipage/origin.html#concept-origin"},
-"a9685319": {"dfnID":"a9685319","dfnText":"script-src","external":true,"refSections":[{"refs":[{"id":"ref-for-script-src"}],"title":"6.2. Credential Leakage"}],"url":"https://www.w3.org/TR/CSP3/#script-src"},
-"abstract-opdef-ask-the-user-to-choose-a-credential": {"dfnID":"abstract-opdef-ask-the-user-to-choose-a-credential","dfnText":"ask the user to choose a\n    Credential","external":false,"refSections":[{"refs":[{"id":"ref-for-abstract-opdef-ask-the-user-to-choose-a-credential"}],"title":"2.5.1. Request a Credential"}],"url":"#abstract-opdef-ask-the-user-to-choose-a-credential"},
-"abstract-opdef-collect-credentials-from-the-credential-store": {"dfnID":"abstract-opdef-collect-credentials-from-the-credential-store","dfnText":"collect Credentials from the credential store","external":false,"refSections":[{"refs":[{"id":"ref-for-abstract-opdef-collect-credentials-from-the-credential-store"}],"title":"2.5.1. Request a Credential"}],"url":"#abstract-opdef-collect-credentials-from-the-credential-store"},
-"abstract-opdef-create-a-credential": {"dfnID":"abstract-opdef-create-a-credential","dfnText":"Create a Credential","external":false,"refSections":[{"refs":[{"id":"ref-for-abstract-opdef-create-a-credential"}],"title":"2.3. navigator.credentials"}],"url":"#abstract-opdef-create-a-credential"},
-"abstract-opdef-create-a-federatedcredential-from-federatedcredentialinit": {"dfnID":"abstract-opdef-create-a-federatedcredential-from-federatedcredentialinit","dfnText":"Create a FederatedCredential from FederatedCredentialInit","external":false,"refSections":[{"refs":[{"id":"ref-for-abstract-opdef-create-a-federatedcredential-from-federatedcredentialinit"}],"title":"4.1. The FederatedCredential Interface"},{"refs":[{"id":"ref-for-abstract-opdef-create-a-federatedcredential-from-federatedcredentialinit\u2460"}],"title":"4.2.2. \n    FederatedCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors)\n  "}],"url":"#abstract-opdef-create-a-federatedcredential-from-federatedcredentialinit"},
-"abstract-opdef-create-a-passwordcredential-from-an-htmlformelement": {"dfnID":"abstract-opdef-create-a-passwordcredential-from-an-htmlformelement","dfnText":"Create a PasswordCredential from an HTMLFormElement","external":false,"refSections":[{"refs":[{"id":"ref-for-abstract-opdef-create-a-passwordcredential-from-an-htmlformelement"}],"title":"3.2. The PasswordCredential Interface"},{"refs":[{"id":"ref-for-abstract-opdef-create-a-passwordcredential-from-an-htmlformelement\u2460"}],"title":"3.3.2. \n    PasswordCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors)\n  "}],"url":"#abstract-opdef-create-a-passwordcredential-from-an-htmlformelement"},
-"abstract-opdef-create-a-passwordcredential-from-passwordcredentialdata": {"dfnID":"abstract-opdef-create-a-passwordcredential-from-passwordcredentialdata","dfnText":"Create a PasswordCredential from PasswordCredentialData","external":false,"refSections":[{"refs":[{"id":"ref-for-abstract-opdef-create-a-passwordcredential-from-passwordcredentialdata"}],"title":"3.2. The PasswordCredential Interface"},{"refs":[{"id":"ref-for-abstract-opdef-create-a-passwordcredential-from-passwordcredentialdata\u2460"}],"title":"3.3.2. \n    PasswordCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-abstract-opdef-create-a-passwordcredential-from-passwordcredentialdata\u2461"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "}],"url":"#abstract-opdef-create-a-passwordcredential-from-passwordcredentialdata"},
-"abstract-opdef-credential-store-modify-a-credential": {"dfnID":"abstract-opdef-credential-store-modify-a-credential","dfnText":"Modify a credential","external":false,"refSections":[],"url":"#abstract-opdef-credential-store-modify-a-credential"},
-"abstract-opdef-credential-store-retrieve-a-list-of-credentials": {"dfnID":"abstract-opdef-credential-store-retrieve-a-list-of-credentials","dfnText":"Retrieve a list of credentials","external":false,"refSections":[{"refs":[{"id":"ref-for-abstract-opdef-credential-store-retrieve-a-list-of-credentials"}],"title":"3.3.1. \n    PasswordCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-abstract-opdef-credential-store-retrieve-a-list-of-credentials\u2460"}],"title":"4.2.1. \n    FederatedCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "}],"url":"#abstract-opdef-credential-store-retrieve-a-list-of-credentials"},
-"abstract-opdef-credential-store-store-a-credential": {"dfnID":"abstract-opdef-credential-store-store-a-credential","dfnText":"Store a credential","external":false,"refSections":[],"url":"#abstract-opdef-credential-store-store-a-credential"},
-"abstract-opdef-prevent-silent-access": {"dfnID":"abstract-opdef-prevent-silent-access","dfnText":"Prevent Silent Access","external":false,"refSections":[{"refs":[{"id":"ref-for-abstract-opdef-prevent-silent-access"}],"title":"2.3. navigator.credentials"}],"url":"#abstract-opdef-prevent-silent-access"},
-"abstract-opdef-request-a-credential": {"dfnID":"abstract-opdef-request-a-credential","dfnText":"Request a Credential","external":false,"refSections":[{"refs":[{"id":"ref-for-abstract-opdef-request-a-credential"}],"title":"2.3. navigator.credentials"}],"url":"#abstract-opdef-request-a-credential"},
-"abstract-opdef-store-a-credential": {"dfnID":"abstract-opdef-store-a-credential","dfnText":"Store a Credential","external":false,"refSections":[{"refs":[{"id":"ref-for-abstract-opdef-store-a-credential"}],"title":"2.3. navigator.credentials"}],"url":"#abstract-opdef-store-a-credential"},
-"active-credential-types": {"dfnID":"active-credential-types","dfnText":"active credential\n  types","external":false,"refSections":[{"refs":[{"id":"ref-for-active-credential-types"},{"id":"ref-for-active-credential-types\u2460"},{"id":"ref-for-active-credential-types\u2461"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-active-credential-types\u2462"},{"id":"ref-for-active-credential-types\u2463"},{"id":"ref-for-active-credential-types\u2464"}],"title":"2.5.3. Store a Credential"},{"refs":[{"id":"ref-for-active-credential-types\u2465"},{"id":"ref-for-active-credential-types\u2466"},{"id":"ref-for-active-credential-types\u2467"}],"title":"2.5.4. Create a Credential"}],"url":"#active-credential-types"},
-"add6d4c9": {"dfnID":"add6d4c9","dfnText":"form-action","external":true,"refSections":[{"refs":[{"id":"ref-for-form-action"}],"title":"6.2. Credential Leakage"}],"url":"https://www.w3.org/TR/CSP3/#form-action"},
-"ae2a6342": {"dfnID":"ae2a6342","dfnText":"top-level browsing context","external":true,"refSections":[{"refs":[{"id":"ref-for-top-level-browsing-context"},{"id":"ref-for-top-level-browsing-context\u2460"}],"title":"6.4. Origin Confusion"}],"url":"https://html.spec.whatwg.org/multipage/document-sequences.html#top-level-browsing-context"},
-"ae8def21": {"dfnID":"ae8def21","dfnText":"contain","external":true,"refSections":[{"refs":[{"id":"ref-for-list-contain"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-list-contain\u2460"}],"title":"2.5.3. Store a Credential"},{"refs":[{"id":"ref-for-list-contain\u2461"}],"title":"2.5.4. Create a Credential"},{"refs":[{"id":"ref-for-list-contain\u2462"},{"id":"ref-for-list-contain\u2463"}],"title":"4.2.1. \n    FederatedCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "}],"url":"https://infra.spec.whatwg.org/#list-contain"},
-"b0d7f3c3": {"dfnID":"b0d7f3c3","dfnText":"USVString","external":true,"refSections":[{"refs":[{"id":"ref-for-idl-USVString"},{"id":"ref-for-idl-USVString\u2460"}],"title":"2.2. The Credential Interface"},{"refs":[{"id":"ref-for-idl-USVString\u2461"},{"id":"ref-for-idl-USVString\u2462"},{"id":"ref-for-idl-USVString\u2463"},{"id":"ref-for-idl-USVString\u2464"}],"title":"2.2.2. CredentialUserData Mixin"},{"refs":[{"id":"ref-for-idl-USVString\u2465"}],"title":"2.3. navigator.credentials"},{"refs":[{"id":"ref-for-idl-USVString\u2466"},{"id":"ref-for-idl-USVString\u2467"},{"id":"ref-for-idl-USVString\u2468"},{"id":"ref-for-idl-USVString\u2460\u24ea"},{"id":"ref-for-idl-USVString\u2460\u2460"},{"id":"ref-for-idl-USVString\u2460\u2461"}],"title":"3.2. The PasswordCredential Interface"},{"refs":[{"id":"ref-for-idl-USVString\u2460\u2462"},{"id":"ref-for-idl-USVString\u2460\u2463"},{"id":"ref-for-idl-USVString\u2460\u2464"},{"id":"ref-for-idl-USVString\u2460\u2465"},{"id":"ref-for-idl-USVString\u2460\u2466"},{"id":"ref-for-idl-USVString\u2460\u2467"},{"id":"ref-for-idl-USVString\u2460\u2468"}],"title":"4.1. The FederatedCredential Interface"}],"url":"https://webidl.spec.whatwg.org/#idl-USVString"},
-"b262501e": {"dfnID":"b262501e","dfnText":"reject","external":true,"refSections":[{"refs":[{"id":"ref-for-reject"},{"id":"ref-for-reject\u2460"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-reject\u2461"}],"title":"2.5.3. Store a Credential"},{"refs":[{"id":"ref-for-reject\u2462"}],"title":"2.5.4. Create a Credential"}],"url":"https://webidl.spec.whatwg.org/#reject"},
-"b410a6ef": {"dfnID":"b410a6ef","dfnText":"ascii serialization of an origin","external":true,"refSections":[{"refs":[{"id":"ref-for-ascii-serialisation-of-an-origin"}],"title":"4.1.1. Identifying Providers"}],"url":"https://html.spec.whatwg.org/multipage/browsers.html#ascii-serialisation-of-an-origin"},
-"b4cfa5ce": {"dfnID":"b4cfa5ce","dfnText":"throw","external":true,"refSections":[{"refs":[{"id":"ref-for-dfn-throw"},{"id":"ref-for-dfn-throw\u2460"}],"title":"3.2. The PasswordCredential Interface"}],"url":"https://webidl.spec.whatwg.org/#dfn-throw"},
-"b75bb3bd": {"dfnID":"b75bb3bd","dfnText":"SecureContext","external":true,"refSections":[{"refs":[{"id":"ref-for-SecureContext"}],"title":"2.2. The Credential Interface"},{"refs":[{"id":"ref-for-SecureContext\u2460"}],"title":"2.2.2. CredentialUserData Mixin"},{"refs":[{"id":"ref-for-SecureContext\u2461"},{"id":"ref-for-SecureContext\u2462"}],"title":"2.3. navigator.credentials"},{"refs":[{"id":"ref-for-SecureContext\u2463"}],"title":"3.2. The PasswordCredential Interface"},{"refs":[{"id":"ref-for-SecureContext\u2464"}],"title":"4.1. The FederatedCredential Interface"}],"url":"https://webidl.spec.whatwg.org/#SecureContext"},
-"ba556545": {"dfnID":"ba556545","dfnText":"NotAllowedError","external":true,"refSections":[{"refs":[{"id":"ref-for-notallowederror"},{"id":"ref-for-notallowederror\u2460"},{"id":"ref-for-notallowederror\u2461"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-notallowederror\u2462"}],"title":"2.5.3. Store a Credential"},{"refs":[{"id":"ref-for-notallowederror\u2463"},{"id":"ref-for-notallowederror\u2464"}],"title":"2.5.4. Create a Credential"},{"refs":[{"id":"ref-for-notallowederror\u2465"}],"title":"3.3.1. \n    PasswordCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-notallowederror\u2466"}],"title":"3.3.3. \n    PasswordCredential\u2019s [[Store]](credential, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-notallowederror\u2467"}],"title":"4.2.1. \n    FederatedCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-notallowederror\u2468"}],"title":"4.2.3. \n    FederatedCredential\u2019s [[Store]](credential, sameOriginWithAncestors)\n  "}],"url":"https://webidl.spec.whatwg.org/#notallowederror"},
-"bb70ff96": {"dfnID":"bb70ff96","dfnText":"IdentityCredential","external":true,"refSections":[{"refs":[{"id":"ref-for-identitycredential"}],"title":"2.1.2. Credential Type Registry"}],"url":"https://fedidcg.github.io/FedCM/#identitycredential"},
-"bdbd19d1": {"dfnID":"bdbd19d1","dfnText":"Promise","external":true,"refSections":[{"refs":[{"id":"ref-for-idl-promise"},{"id":"ref-for-idl-promise\u2460"},{"id":"ref-for-idl-promise\u2461"}],"title":"2.2. The Credential Interface"},{"refs":[{"id":"ref-for-idl-promise\u2462"},{"id":"ref-for-idl-promise\u2463"},{"id":"ref-for-idl-promise\u2464"},{"id":"ref-for-idl-promise\u2465"}],"title":"2.3. navigator.credentials"},{"refs":[{"id":"ref-for-idl-promise\u2466"},{"id":"ref-for-idl-promise\u2467"}],"title":"2.3.2. Mediation Requirements"},{"refs":[{"id":"ref-for-idl-promise\u2468"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-idl-promise\u2460\u24ea"}],"title":"2.5.3. Store a Credential"},{"refs":[{"id":"ref-for-idl-promise\u2460\u2460"},{"id":"ref-for-idl-promise\u2460\u2461"}],"title":"2.5.4. Create a Credential"},{"refs":[{"id":"ref-for-idl-promise\u2460\u2462"}],"title":"2.5.5. Prevent Silent Access"},{"refs":[{"id":"ref-for-idl-promise\u2460\u2463"}],"title":"8.2. Extension Points"}],"url":"https://webidl.spec.whatwg.org/#idl-promise"},
-"be0c27b2": {"dfnID":"be0c27b2","dfnText":"Navigator","external":true,"refSections":[{"refs":[{"id":"ref-for-navigator"},{"id":"ref-for-navigator\u2460"},{"id":"ref-for-navigator\u2461"}],"title":"2.3. navigator.credentials"}],"url":"https://html.spec.whatwg.org/multipage/system-state.html#navigator"},
-"bfc1c271": {"dfnID":"bfc1c271","dfnText":"Worker","external":true,"refSections":[{"refs":[{"id":"ref-for-worker"}],"title":"6.4. Origin Confusion"}],"url":"https://html.spec.whatwg.org/multipage/workers.html#worker"},
-"ca7a77c0": {"dfnID":"ca7a77c0","dfnText":"FormData","external":true,"refSections":[{"refs":[{"id":"ref-for-interface-formdata"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "},{"refs":[{"id":"ref-for-interface-formdata\u2460"}],"title":"8.1. Website Authors"}],"url":"https://xhr.spec.whatwg.org/#interface-formdata"},
-"cca3cdb2": {"dfnID":"cca3cdb2","dfnText":"AbortSignal","external":true,"refSections":[{"refs":[{"id":"ref-for-abortsignal"},{"id":"ref-for-abortsignal\u2460"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"},{"refs":[{"id":"ref-for-abortsignal\u2461"},{"id":"ref-for-abortsignal\u2462"}],"title":"2.4. The CredentialCreationOptions Dictionary"}],"url":"https://dom.spec.whatwg.org/#abortsignal"},
-"cd787c3f": {"dfnID":"cd787c3f","dfnText":"exception","external":true,"refSections":[{"refs":[{"id":"ref-for-dfn-exception"},{"id":"ref-for-dfn-exception\u2460"},{"id":"ref-for-dfn-exception\u2461"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-dfn-exception\u2462"}],"title":"2.5.2. Collect Credentials from the credential store"},{"refs":[{"id":"ref-for-dfn-exception\u2463"},{"id":"ref-for-dfn-exception\u2464"}],"title":"2.5.3. Store a Credential"},{"refs":[{"id":"ref-for-dfn-exception\u2465"},{"id":"ref-for-dfn-exception\u2466"}],"title":"2.5.4. Create a Credential"},{"refs":[{"id":"ref-for-dfn-exception\u2467"},{"id":"ref-for-dfn-exception\u2468"}],"title":"3.2. The PasswordCredential Interface"},{"refs":[{"id":"ref-for-dfn-exception\u2460\u24ea"},{"id":"ref-for-dfn-exception\u2460\u2460"}],"title":"3.3.2. \n    PasswordCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-dfn-exception\u2460\u2461"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "},{"refs":[{"id":"ref-for-dfn-exception\u2460\u2462"}],"title":"3.3.5. \n    Create a PasswordCredential from PasswordCredentialData\n  "},{"refs":[{"id":"ref-for-dfn-exception\u2460\u2463"}],"title":"4.1. The FederatedCredential Interface"},{"refs":[{"id":"ref-for-dfn-exception\u2460\u2464"},{"id":"ref-for-dfn-exception\u2460\u2465"}],"title":"4.2.2. \n    FederatedCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-dfn-exception\u2460\u2466"}],"title":"4.2.4. \n    Create a FederatedCredential from FederatedCredentialInit\n  "}],"url":"https://webidl.spec.whatwg.org/#dfn-exception"},
-"concept-credential": {"dfnID":"concept-credential","dfnText":"credential","external":false,"refSections":[{"refs":[{"id":"ref-for-concept-credential"},{"id":"ref-for-concept-credential\u2460"}],"title":"1. Introduction"},{"refs":[{"id":"ref-for-concept-credential\u2461"},{"id":"ref-for-concept-credential\u2462"},{"id":"ref-for-concept-credential\u2463"}],"title":"2. Core API"},{"refs":[{"id":"ref-for-concept-credential\u2464"},{"id":"ref-for-concept-credential\u2465"},{"id":"ref-for-concept-credential\u2466"},{"id":"ref-for-concept-credential\u2467"},{"id":"ref-for-concept-credential\u2468"},{"id":"ref-for-concept-credential\u2460\u24ea"},{"id":"ref-for-concept-credential\u2460\u2460"}],"title":"2.1. Infrastructure"},{"refs":[{"id":"ref-for-concept-credential\u2460\u2461"}],"title":"2.2. The Credential Interface"},{"refs":[{"id":"ref-for-concept-credential\u2460\u2462"}],"title":"2.2.1. Credential Internal Methods"},{"refs":[{"id":"ref-for-concept-credential\u2460\u2463"}],"title":"2.2.1.2. [[DiscoverFromExternalSource]] internal method"},{"refs":[{"id":"ref-for-concept-credential\u2460\u2464"}],"title":"3. Password Credentials"},{"refs":[{"id":"ref-for-concept-credential\u2460\u2465"},{"id":"ref-for-concept-credential\u2460\u2466"},{"id":"ref-for-concept-credential\u2460\u2467"}],"title":"8.2. Extension Points"}],"url":"#concept-credential"},
-"concept-credential-store": {"dfnID":"concept-credential-store","dfnText":"credential\n  store","external":false,"refSections":[{"refs":[{"id":"ref-for-concept-credential-store"},{"id":"ref-for-concept-credential-store\u2460"},{"id":"ref-for-concept-credential-store\u2461"},{"id":"ref-for-concept-credential-store\u2462"}],"title":"2.1. Infrastructure"},{"refs":[{"id":"ref-for-concept-credential-store\u2463"},{"id":"ref-for-concept-credential-store\u2464"}],"title":"2.2. The Credential Interface"},{"refs":[{"id":"ref-for-concept-credential-store\u2465"}],"title":"2.2.1.1. [[CollectFromCredentialStore]] internal method"},{"refs":[{"id":"ref-for-concept-credential-store\u2466"}],"title":"2.2.1.3. [[Store]] internal method"},{"refs":[{"id":"ref-for-concept-credential-store\u2467"}],"title":"2.3. navigator.credentials"},{"refs":[{"id":"ref-for-concept-credential-store\u2468"}],"title":"2.5.3. Store a Credential"},{"refs":[{"id":"ref-for-concept-credential-store\u2460\u24ea"},{"id":"ref-for-concept-credential-store\u2460\u2460"}],"title":"2.5.5. Prevent Silent Access"},{"refs":[{"id":"ref-for-concept-credential-store\u2460\u2461"}],"title":"3.1.1. Password-based Sign-in"},{"refs":[{"id":"ref-for-concept-credential-store\u2460\u2462"},{"id":"ref-for-concept-credential-store\u2460\u2463"}],"title":"3.3.1. \n    PasswordCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-concept-credential-store\u2460\u2464"},{"id":"ref-for-concept-credential-store\u2460\u2465"},{"id":"ref-for-concept-credential-store\u2460\u2466"},{"id":"ref-for-concept-credential-store\u2460\u2467"}],"title":"3.3.3. \n    PasswordCredential\u2019s [[Store]](credential, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-concept-credential-store\u2460\u2468"},{"id":"ref-for-concept-credential-store\u2461\u24ea"}],"title":"4.2.1. \n    FederatedCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-concept-credential-store\u2461\u2460"},{"id":"ref-for-concept-credential-store\u2461\u2461"},{"id":"ref-for-concept-credential-store\u2461\u2462"},{"id":"ref-for-concept-credential-store\u2461\u2463"}],"title":"4.2.3. \n    FederatedCredential\u2019s [[Store]](credential, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-concept-credential-store\u2461\u2464"}],"title":"5.2. Requiring User Mediation"},{"refs":[{"id":"ref-for-concept-credential-store\u2461\u2465"}],"title":"5.3. Credential Selection"},{"refs":[{"id":"ref-for-concept-credential-store\u2461\u2466"}],"title":"6.5. Signing-Out"},{"refs":[{"id":"ref-for-concept-credential-store\u2461\u2467"},{"id":"ref-for-concept-credential-store\u2461\u2468"}],"title":"8.2. Extension Points"}],"url":"#concept-credential-store"},
-"credential": {"dfnID":"credential","dfnText":"Credential","external":false,"refSections":[{"refs":[{"id":"ref-for-credential"},{"id":"ref-for-credential\u2460"}],"title":"2. Core API"},{"refs":[{"id":"ref-for-credential\u2461"},{"id":"ref-for-credential\u2462"},{"id":"ref-for-credential\u2463"},{"id":"ref-for-credential\u2464"},{"id":"ref-for-credential\u2465"},{"id":"ref-for-credential\u2466"}],"title":"2.2. The Credential Interface"},{"refs":[{"id":"ref-for-credential\u2467"},{"id":"ref-for-credential\u2468"},{"id":"ref-for-credential\u2460\u24ea"},{"id":"ref-for-credential\u2460\u2460"}],"title":"2.2.1. Credential Internal Methods"},{"refs":[{"id":"ref-for-credential\u2460\u2461"},{"id":"ref-for-credential\u2460\u2462"},{"id":"ref-for-credential\u2460\u2463"}],"title":"2.2.1.1. [[CollectFromCredentialStore]] internal method"},{"refs":[{"id":"ref-for-credential\u2460\u2464"},{"id":"ref-for-credential\u2460\u2465"},{"id":"ref-for-credential\u2460\u2466"}],"title":"2.2.1.2. [[DiscoverFromExternalSource]] internal method"},{"refs":[{"id":"ref-for-credential\u2460\u2467"},{"id":"ref-for-credential\u2460\u2468"},{"id":"ref-for-credential\u2461\u24ea"}],"title":"2.2.1.3. [[Store]] internal method"},{"refs":[{"id":"ref-for-credential\u2461\u2460"},{"id":"ref-for-credential\u2461\u2461"},{"id":"ref-for-credential\u2461\u2462"},{"id":"ref-for-credential\u2461\u2463"}],"title":"2.2.1.4. [[Create]] internal method"},{"refs":[{"id":"ref-for-credential\u2461\u2464"}],"title":"2.2.2. CredentialUserData Mixin"},{"refs":[{"id":"ref-for-credential\u2461\u2465"},{"id":"ref-for-credential\u2461\u2466"},{"id":"ref-for-credential\u2461\u2467"},{"id":"ref-for-credential\u2461\u2468"},{"id":"ref-for-credential\u2462\u24ea"}],"title":"2.3. navigator.credentials"},{"refs":[{"id":"ref-for-credential\u2462\u2460"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"},{"refs":[{"id":"ref-for-credential\u2462\u2461"}],"title":"2.4. The CredentialCreationOptions Dictionary"},{"refs":[{"id":"ref-for-credential\u2462\u2462"},{"id":"ref-for-credential\u2462\u2463"},{"id":"ref-for-credential\u2462\u2464"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-credential\u2462\u2465"},{"id":"ref-for-credential\u2462\u2466"}],"title":"2.5.2. Collect Credentials from the credential store"},{"refs":[{"id":"ref-for-credential\u2462\u2467"}],"title":"2.5.3. Store a Credential"},{"refs":[{"id":"ref-for-credential\u2462\u2468"},{"id":"ref-for-credential\u2463\u24ea"},{"id":"ref-for-credential\u2463\u2460"}],"title":"2.5.4. Create a Credential"},{"refs":[{"id":"ref-for-credential\u2463\u2461"},{"id":"ref-for-credential\u2463\u2462"}],"title":"3.2. The PasswordCredential Interface"},{"refs":[{"id":"ref-for-credential\u2463\u2463"},{"id":"ref-for-credential\u2463\u2464"}],"title":"3.3.1. \n    PasswordCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-credential\u2463\u2465"},{"id":"ref-for-credential\u2463\u2466"}],"title":"4.1. The FederatedCredential Interface"},{"refs":[{"id":"ref-for-credential\u2463\u2467"},{"id":"ref-for-credential\u2463\u2468"}],"title":"4.2.1. \n    FederatedCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-credential\u2464\u24ea"},{"id":"ref-for-credential\u2464\u2460"},{"id":"ref-for-credential\u2464\u2461"},{"id":"ref-for-credential\u2464\u2462"},{"id":"ref-for-credential\u2464\u2463"}],"title":"5.3. Credential Selection"},{"refs":[{"id":"ref-for-credential\u2464\u2464"}],"title":"6.1. Cross-domain credential access"},{"refs":[{"id":"ref-for-credential\u2464\u2465"},{"id":"ref-for-credential\u2464\u2466"},{"id":"ref-for-credential\u2464\u2467"}],"title":"7.2. Chooser Leakage"},{"refs":[{"id":"ref-for-credential\u2464\u2468"}],"title":"8.1. Website Authors"},{"refs":[{"id":"ref-for-credential\u2465\u24ea"},{"id":"ref-for-credential\u2465\u2460"},{"id":"ref-for-credential\u2465\u2461"},{"id":"ref-for-credential\u2465\u2462"},{"id":"ref-for-credential\u2465\u2463"}],"title":"8.2. Extension Points"}],"url":"#credential"},
-"credential-chooser": {"dfnID":"credential-chooser","dfnText":"credential chooser","external":false,"refSections":[{"refs":[{"id":"ref-for-credential-chooser"},{"id":"ref-for-credential-chooser\u2460"},{"id":"ref-for-credential-chooser\u2461"}],"title":"2.2.2. CredentialUserData Mixin"},{"refs":[{"id":"ref-for-credential-chooser\u2462"}],"title":"2.3.2. Mediation Requirements"},{"refs":[{"id":"ref-for-credential-chooser\u2463"},{"id":"ref-for-credential-chooser\u2464"}],"title":"2.3.2.1. Examples"},{"refs":[{"id":"ref-for-credential-chooser\u2465"}],"title":"3. Password Credentials"},{"refs":[{"id":"ref-for-credential-chooser\u2466"}],"title":"3.1.1. Password-based Sign-in"},{"refs":[{"id":"ref-for-credential-chooser\u2467"}],"title":"5. User Mediation"},{"refs":[{"id":"ref-for-credential-chooser\u2468"}],"title":"5.2. Requiring User Mediation"},{"refs":[{"id":"ref-for-credential-chooser\u2460\u24ea"}],"title":"7.2. Chooser Leakage"}],"url":"#credential-chooser"},
-"credential-credential-type": {"dfnID":"credential-credential-type","dfnText":"string representing the credential type","external":false,"refSections":[{"refs":[{"id":"ref-for-credential-credential-type"},{"id":"ref-for-credential-credential-type\u2460"},{"id":"ref-for-credential-credential-type\u2461"},{"id":"ref-for-credential-credential-type\u2462"}],"title":"2.2. The Credential Interface"},{"refs":[{"id":"ref-for-credential-credential-type\u2463"}],"title":"2.2.1.4. [[Create]] internal method"},{"refs":[{"id":"ref-for-credential-credential-type\u2464"}],"title":"8.2. Extension Points"}],"url":"#credential-credential-type"},
-"credential-effective": {"dfnID":"credential-effective","dfnText":"effective","external":false,"refSections":[{"refs":[{"id":"ref-for-credential-effective"}],"title":"2.1. Infrastructure"},{"refs":[{"id":"ref-for-credential-effective\u2460"}],"title":"2.2. The Credential Interface"},{"refs":[{"id":"ref-for-credential-effective\u2461"}],"title":"2.2.1.2. [[DiscoverFromExternalSource]] internal method"},{"refs":[{"id":"ref-for-credential-effective\u2462"}],"title":"8.2. Extension Points"}],"url":"#credential-effective"},
-"credential-origin-bound": {"dfnID":"credential-origin-bound","dfnText":"origin bound","external":false,"refSections":[{"refs":[{"id":"ref-for-credential-origin-bound"}],"title":"3.2. The PasswordCredential Interface"},{"refs":[{"id":"ref-for-credential-origin-bound\u2460"}],"title":"4.1. The FederatedCredential Interface"}],"url":"#credential-origin-bound"},
-"credential-source": {"dfnID":"credential-source","dfnText":"credential source","external":false,"refSections":[{"refs":[{"id":"ref-for-credential-source"}],"title":"2.2.1.2. [[DiscoverFromExternalSource]] internal method"},{"refs":[{"id":"ref-for-credential-source\u2460"}],"title":"8.2. Extension Points"}],"url":"#credential-source"},
-"credential-type-registry-appropriate-interface-object": {"dfnID":"credential-type-registry-appropriate-interface-object","dfnText":"Appropriate Interface Object","external":false,"refSections":[{"refs":[{"id":"ref-for-credential-type-registry-appropriate-interface-object"}],"title":"2.1.2.1. Registration Entry Requirements and Update Process"},{"refs":[{"id":"ref-for-credential-type-registry-appropriate-interface-object\u2460"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"},{"refs":[{"id":"ref-for-credential-type-registry-appropriate-interface-object\u2461"}],"title":"8.2. Extension Points"}],"url":"#credential-type-registry-appropriate-interface-object"},
-"credential-type-registry-credential-type": {"dfnID":"credential-type-registry-credential-type","dfnText":"Credential Type","external":false,"refSections":[{"refs":[{"id":"ref-for-credential-type-registry-credential-type"}],"title":"2. Core API"},{"refs":[{"id":"ref-for-credential-type-registry-credential-type\u2460"}],"title":"2.1.2. Credential Type Registry"},{"refs":[{"id":"ref-for-credential-type-registry-credential-type\u2461"},{"id":"ref-for-credential-type-registry-credential-type\u2462"},{"id":"ref-for-credential-type-registry-credential-type\u2463"},{"id":"ref-for-credential-type-registry-credential-type\u2464"},{"id":"ref-for-credential-type-registry-credential-type\u2465"}],"title":"2.1.2.1. Registration Entry Requirements and Update Process"},{"refs":[{"id":"ref-for-credential-type-registry-credential-type\u2466"}],"title":"2.2. The Credential Interface"},{"refs":[{"id":"ref-for-credential-type-registry-credential-type\u2467"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"},{"refs":[{"id":"ref-for-credential-type-registry-credential-type\u2468"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-credential-type-registry-credential-type\u2460\u24ea"}],"title":"2.5.4. Create a Credential"},{"refs":[{"id":"ref-for-credential-type-registry-credential-type\u2460\u2460"}],"title":"5. User Mediation"},{"refs":[{"id":"ref-for-credential-type-registry-credential-type\u2460\u2461"},{"id":"ref-for-credential-type-registry-credential-type\u2460\u2462"}],"title":"8.2. Extension Points"}],"url":"#credential-type-registry-credential-type"},
-"credential-type-registry-options-member-identifier": {"dfnID":"credential-type-registry-options-member-identifier","dfnText":"Options Member Identifier","external":false,"refSections":[{"refs":[{"id":"ref-for-credential-type-registry-options-member-identifier"}],"title":"2.1.2. Credential Type Registry"},{"refs":[{"id":"ref-for-credential-type-registry-options-member-identifier\u2460"}],"title":"2.1.2.1. Registration Entry Requirements and Update Process"},{"refs":[{"id":"ref-for-credential-type-registry-options-member-identifier\u2461"},{"id":"ref-for-credential-type-registry-options-member-identifier\u2462"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"},{"refs":[{"id":"ref-for-credential-type-registry-options-member-identifier\u2463"},{"id":"ref-for-credential-type-registry-options-member-identifier\u2464"}],"title":"8.2. Extension Points"}],"url":"#credential-type-registry-options-member-identifier"},
-"credentialrequestoptions-matchable-a-priori": {"dfnID":"credentialrequestoptions-matchable-a-priori","dfnText":"matchable a priori","external":false,"refSections":[{"refs":[{"id":"ref-for-credentialrequestoptions-matchable-a-priori"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"},{"refs":[{"id":"ref-for-credentialrequestoptions-matchable-a-priori\u2460"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-credentialrequestoptions-matchable-a-priori\u2461"}],"title":"5.3. Credential Selection"}],"url":"#credentialrequestoptions-matchable-a-priori"},
-"credentialrequestoptions-relevant-credential-interface-objects": {"dfnID":"credentialrequestoptions-relevant-credential-interface-objects","dfnText":"relevant credential interface objects","external":false,"refSections":[{"refs":[{"id":"ref-for-credentialrequestoptions-relevant-credential-interface-objects"}],"title":"2.1.2. Credential Type Registry"},{"refs":[{"id":"ref-for-credentialrequestoptions-relevant-credential-interface-objects\u2460"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"},{"refs":[{"id":"ref-for-credentialrequestoptions-relevant-credential-interface-objects\u2461"}],"title":"2.3.2. Mediation Requirements"},{"refs":[{"id":"ref-for-credentialrequestoptions-relevant-credential-interface-objects\u2462"},{"id":"ref-for-credentialrequestoptions-relevant-credential-interface-objects\u2463"},{"id":"ref-for-credentialrequestoptions-relevant-credential-interface-objects\u2464"},{"id":"ref-for-credentialrequestoptions-relevant-credential-interface-objects\u2465"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-credentialrequestoptions-relevant-credential-interface-objects\u2466"}],"title":"2.5.2. Collect Credentials from the credential store"},{"refs":[{"id":"ref-for-credentialrequestoptions-relevant-credential-interface-objects\u2467"}],"title":"2.5.4. Create a Credential"},{"refs":[{"id":"ref-for-credentialrequestoptions-relevant-credential-interface-objects\u2468"},{"id":"ref-for-credentialrequestoptions-relevant-credential-interface-objects\u2460\u24ea"}],"title":"5.3. Credential Selection"}],"url":"#credentialrequestoptions-relevant-credential-interface-objects"},
-"credentialscontainer": {"dfnID":"credentialscontainer","dfnText":"CredentialsContainer","external":false,"refSections":[{"refs":[{"id":"ref-for-credentialscontainer"}],"title":"2. Core API"},{"refs":[{"id":"ref-for-credentialscontainer\u2460"},{"id":"ref-for-credentialscontainer\u2461"},{"id":"ref-for-credentialscontainer\u2462"},{"id":"ref-for-credentialscontainer\u2463"}],"title":"2.3. navigator.credentials"},{"refs":[{"id":"ref-for-credentialscontainer\u2464"}],"title":"6.5. Signing-Out"},{"refs":[{"id":"ref-for-credentialscontainer\u2465"}],"title":"8.2. Extension Points"}],"url":"#credentialscontainer"},
-"credentialuserdata": {"dfnID":"credentialuserdata","dfnText":"CredentialUserData","external":false,"refSections":[{"refs":[{"id":"ref-for-credentialuserdata"}],"title":"3.2. The PasswordCredential Interface"},{"refs":[{"id":"ref-for-credentialuserdata\u2460"}],"title":"4.1. The FederatedCredential Interface"}],"url":"#credentialuserdata"},
-"d06b2b8c": {"dfnID":"d06b2b8c","dfnText":"XMLHttpRequest","external":true,"refSections":[{"refs":[{"id":"ref-for-xmlhttprequest"}],"title":"1. Introduction"},{"refs":[{"id":"ref-for-xmlhttprequest\u2460"}],"title":"1.1. Use Cases"}],"url":"https://xhr.spec.whatwg.org/#xmlhttprequest"},
-"d0b4a948": {"dfnID":"d0b4a948","dfnText":"a promise rejected with","external":true,"refSections":[{"refs":[{"id":"ref-for-a-promise-rejected-with"},{"id":"ref-for-a-promise-rejected-with\u2460"},{"id":"ref-for-a-promise-rejected-with\u2461"},{"id":"ref-for-a-promise-rejected-with\u2462"},{"id":"ref-for-a-promise-rejected-with\u2463"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-a-promise-rejected-with\u2464"}],"title":"2.5.3. Store a Credential"},{"refs":[{"id":"ref-for-a-promise-rejected-with\u2465"},{"id":"ref-for-a-promise-rejected-with\u2466"},{"id":"ref-for-a-promise-rejected-with\u2467"},{"id":"ref-for-a-promise-rejected-with\u2468"}],"title":"2.5.4. Create a Credential"}],"url":"https://webidl.spec.whatwg.org/#a-promise-rejected-with"},
-"dacde8b5": {"dfnID":"dacde8b5","dfnText":"a new promise","external":true,"refSections":[{"refs":[{"id":"ref-for-a-new-promise"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-a-new-promise\u2460"}],"title":"2.5.3. Store a Credential"},{"refs":[{"id":"ref-for-a-new-promise\u2461"}],"title":"2.5.4. Create a Credential"},{"refs":[{"id":"ref-for-a-new-promise\u2462"}],"title":"2.5.5. Prevent Silent Access"}],"url":"https://webidl.spec.whatwg.org/#a-new-promise"},
-"dca2de17": {"dfnID":"dca2de17","dfnText":"DOMException","external":true,"refSections":[{"refs":[{"id":"ref-for-idl-DOMException"},{"id":"ref-for-idl-DOMException\u2460"},{"id":"ref-for-idl-DOMException\u2461"},{"id":"ref-for-idl-DOMException\u2462"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-idl-DOMException\u2463"}],"title":"2.5.3. Store a Credential"},{"refs":[{"id":"ref-for-idl-DOMException\u2464"},{"id":"ref-for-idl-DOMException\u2465"}],"title":"2.5.4. Create a Credential"},{"refs":[{"id":"ref-for-idl-DOMException\u2466"}],"title":"3.3.1. \n    PasswordCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-idl-DOMException\u2467"}],"title":"3.3.3. \n    PasswordCredential\u2019s [[Store]](credential, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-idl-DOMException\u2468"}],"title":"4.2.1. \n    FederatedCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-idl-DOMException\u2460\u24ea"}],"title":"4.2.3. \n    FederatedCredential\u2019s [[Store]](credential, sameOriginWithAncestors)\n  "}],"url":"https://webidl.spec.whatwg.org/#idl-DOMException"},
-"dcaad25f": {"dfnID":"dcaad25f","dfnText":"object-src","external":true,"refSections":[{"refs":[{"id":"ref-for-object-src"}],"title":"6.2. Credential Leakage"}],"url":"https://www.w3.org/TR/CSP3/#object-src"},
-"dictdef-credentialcreationoptions": {"dfnID":"dictdef-credentialcreationoptions","dfnText":"CredentialCreationOptions","external":false,"refSections":[{"refs":[{"id":"ref-for-dictdef-credentialcreationoptions"}],"title":"2.1.2. Credential Type Registry"},{"refs":[{"id":"ref-for-dictdef-credentialcreationoptions\u2460"}],"title":"2.1.2.1. Registration Entry Requirements and Update Process"},{"refs":[{"id":"ref-for-dictdef-credentialcreationoptions\u2461"}],"title":"2.2.1.4. [[Create]] internal method"},{"refs":[{"id":"ref-for-dictdef-credentialcreationoptions\u2462"},{"id":"ref-for-dictdef-credentialcreationoptions\u2463"}],"title":"2.3. navigator.credentials"},{"refs":[{"id":"ref-for-dictdef-credentialcreationoptions\u2464"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"},{"refs":[{"id":"ref-for-dictdef-credentialcreationoptions\u2465"},{"id":"ref-for-dictdef-credentialcreationoptions\u2466"}],"title":"2.4. The CredentialCreationOptions Dictionary"},{"refs":[{"id":"ref-for-dictdef-credentialcreationoptions\u2467"}],"title":"2.5.4. Create a Credential"},{"refs":[{"id":"ref-for-dictdef-credentialcreationoptions\u2468"}],"title":"3.2. The PasswordCredential Interface"},{"refs":[{"id":"ref-for-dictdef-credentialcreationoptions\u2460\u24ea"},{"id":"ref-for-dictdef-credentialcreationoptions\u2460\u2460"}],"title":"3.3.2. \n    PasswordCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-dictdef-credentialcreationoptions\u2460\u2461"}],"title":"4.1. The FederatedCredential Interface"},{"refs":[{"id":"ref-for-dictdef-credentialcreationoptions\u2460\u2462"}],"title":"4.2.2. \n    FederatedCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-dictdef-credentialcreationoptions\u2460\u2463"},{"id":"ref-for-dictdef-credentialcreationoptions\u2460\u2464"},{"id":"ref-for-dictdef-credentialcreationoptions\u2460\u2465"}],"title":"8.2. Extension Points"}],"url":"#dictdef-credentialcreationoptions"},
-"dictdef-credentialdata": {"dfnID":"dictdef-credentialdata","dfnText":"CredentialData","external":false,"refSections":[{"refs":[{"id":"ref-for-dictdef-credentialdata"}],"title":"3.2. The PasswordCredential Interface"},{"refs":[{"id":"ref-for-dictdef-credentialdata\u2460"}],"title":"4.1. The FederatedCredential Interface"}],"url":"#dictdef-credentialdata"},
-"dictdef-credentialrequestoptions": {"dfnID":"dictdef-credentialrequestoptions","dfnText":"CredentialRequestOptions","external":false,"refSections":[{"refs":[{"id":"ref-for-dictdef-credentialrequestoptions"}],"title":"2.1.2. Credential Type Registry"},{"refs":[{"id":"ref-for-dictdef-credentialrequestoptions\u2460"}],"title":"2.1.2.1. Registration Entry Requirements and Update Process"},{"refs":[{"id":"ref-for-dictdef-credentialrequestoptions\u2461"}],"title":"2.2.1.1. [[CollectFromCredentialStore]] internal method"},{"refs":[{"id":"ref-for-dictdef-credentialrequestoptions\u2462"}],"title":"2.2.1.2. [[DiscoverFromExternalSource]] internal method"},{"refs":[{"id":"ref-for-dictdef-credentialrequestoptions\u2463"},{"id":"ref-for-dictdef-credentialrequestoptions\u2464"}],"title":"2.3. navigator.credentials"},{"refs":[{"id":"ref-for-dictdef-credentialrequestoptions\u2465"},{"id":"ref-for-dictdef-credentialrequestoptions\u2466"},{"id":"ref-for-dictdef-credentialrequestoptions\u2467"},{"id":"ref-for-dictdef-credentialrequestoptions\u2468"},{"id":"ref-for-dictdef-credentialrequestoptions\u2460\u24ea"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"},{"refs":[{"id":"ref-for-dictdef-credentialrequestoptions\u2460\u2460"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-dictdef-credentialrequestoptions\u2460\u2461"}],"title":"2.5.2. Collect Credentials from the credential store"},{"refs":[{"id":"ref-for-dictdef-credentialrequestoptions\u2460\u2462"}],"title":"3.2. The PasswordCredential Interface"},{"refs":[{"id":"ref-for-dictdef-credentialrequestoptions\u2460\u2463"}],"title":"3.3.1. \n    PasswordCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-dictdef-credentialrequestoptions\u2460\u2464"}],"title":"3.3.6. \n    CredentialRequestOptions Matching for PasswordCredential\n  "},{"refs":[{"id":"ref-for-dictdef-credentialrequestoptions\u2460\u2465"}],"title":"4.1. The FederatedCredential Interface"},{"refs":[{"id":"ref-for-dictdef-credentialrequestoptions\u2460\u2466"}],"title":"4.2.1. \n    FederatedCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-dictdef-credentialrequestoptions\u2460\u2467"}],"title":"5.3. Credential Selection"},{"refs":[{"id":"ref-for-dictdef-credentialrequestoptions\u2460\u2468"},{"id":"ref-for-dictdef-credentialrequestoptions\u2461\u24ea"},{"id":"ref-for-dictdef-credentialrequestoptions\u2461\u2460"}],"title":"8.2. Extension Points"}],"url":"#dictdef-credentialrequestoptions"},
-"dictdef-federatedcredentialinit": {"dfnID":"dictdef-federatedcredentialinit","dfnText":"FederatedCredentialInit","external":false,"refSections":[{"refs":[{"id":"ref-for-dictdef-federatedcredentialinit"},{"id":"ref-for-dictdef-federatedcredentialinit\u2460"},{"id":"ref-for-dictdef-federatedcredentialinit\u2461"},{"id":"ref-for-dictdef-federatedcredentialinit\u2462"}],"title":"4.1. The FederatedCredential Interface"},{"refs":[{"id":"ref-for-dictdef-federatedcredentialinit\u2463"}],"title":"4.2.4. \n    Create a FederatedCredential from FederatedCredentialInit\n  "}],"url":"#dictdef-federatedcredentialinit"},
-"dictdef-federatedcredentialrequestoptions": {"dfnID":"dictdef-federatedcredentialrequestoptions","dfnText":"FederatedCredentialRequestOptions","external":false,"refSections":[{"refs":[{"id":"ref-for-dictdef-federatedcredentialrequestoptions"}],"title":"4.1. The FederatedCredential Interface"},{"refs":[{"id":"ref-for-dictdef-federatedcredentialrequestoptions\u2460"}],"title":"4.1.1. Identifying Providers"}],"url":"#dictdef-federatedcredentialrequestoptions"},
-"dictdef-passwordcredentialdata": {"dfnID":"dictdef-passwordcredentialdata","dfnText":"PasswordCredentialData","external":false,"refSections":[{"refs":[{"id":"ref-for-dictdef-passwordcredentialdata"},{"id":"ref-for-dictdef-passwordcredentialdata\u2460"},{"id":"ref-for-dictdef-passwordcredentialdata\u2461"},{"id":"ref-for-dictdef-passwordcredentialdata\u2462"}],"title":"3.2. The PasswordCredential Interface"},{"refs":[{"id":"ref-for-dictdef-passwordcredentialdata\u2463"},{"id":"ref-for-dictdef-passwordcredentialdata\u2464"}],"title":"3.3.2. \n    PasswordCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-dictdef-passwordcredentialdata\u2465"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "},{"refs":[{"id":"ref-for-dictdef-passwordcredentialdata\u2466"}],"title":"3.3.5. \n    Create a PasswordCredential from PasswordCredentialData\n  "}],"url":"#dictdef-passwordcredentialdata"},
-"dom-credential-collectfromcredentialstore-slot": {"dfnID":"dom-credential-collectfromcredentialstore-slot","dfnText":"[[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credential-collectfromcredentialstore-slot"}],"title":"2.2.1.1. [[CollectFromCredentialStore]] internal method"},{"refs":[{"id":"ref-for-dom-credential-collectfromcredentialstore-slot\u2460"}],"title":"2.5.2. Collect Credentials from the credential store"},{"refs":[{"id":"ref-for-dom-credential-collectfromcredentialstore-slot\u2461"}],"title":"6.4. Origin Confusion"},{"refs":[{"id":"ref-for-dom-credential-collectfromcredentialstore-slot\u2462"},{"id":"ref-for-dom-credential-collectfromcredentialstore-slot\u2463"}],"title":"8.2. Extension Points"}],"url":"#dom-credential-collectfromcredentialstore-slot"},
-"dom-credential-create-slot": {"dfnID":"dom-credential-create-slot","dfnText":"[[Create]](origin, options, sameOriginWithAncestors)","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credential-create-slot"}],"title":"2.2.1.4. [[Create]] internal method"},{"refs":[{"id":"ref-for-dom-credential-create-slot\u2460"}],"title":"2.5.4. Create a Credential"},{"refs":[{"id":"ref-for-dom-credential-create-slot\u2461"}],"title":"6.4. Origin Confusion"},{"refs":[{"id":"ref-for-dom-credential-create-slot\u2462"}],"title":"8.2. Extension Points"}],"url":"#dom-credential-create-slot"},
-"dom-credential-discoverfromexternalsource-slot": {"dfnID":"dom-credential-discoverfromexternalsource-slot","dfnText":"[[DiscoverFromExternalSource]](origin, options, sameOriginWithAncestors)","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credential-discoverfromexternalsource-slot"}],"title":"2.2.1.2. [[DiscoverFromExternalSource]] internal method"},{"refs":[{"id":"ref-for-dom-credential-discoverfromexternalsource-slot\u2460"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-dom-credential-discoverfromexternalsource-slot\u2461"}],"title":"3.2. The PasswordCredential Interface"},{"refs":[{"id":"ref-for-dom-credential-discoverfromexternalsource-slot\u2462"}],"title":"4.1. The FederatedCredential Interface"},{"refs":[{"id":"ref-for-dom-credential-discoverfromexternalsource-slot\u2463"}],"title":"6.4. Origin Confusion"},{"refs":[{"id":"ref-for-dom-credential-discoverfromexternalsource-slot\u2464"},{"id":"ref-for-dom-credential-discoverfromexternalsource-slot\u2465"}],"title":"8.2. Extension Points"}],"url":"#dom-credential-discoverfromexternalsource-slot"},
-"dom-credential-discovery-credential-store": {"dfnID":"dom-credential-discovery-credential-store","dfnText":"credential store","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credential-discovery-credential-store"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"},{"refs":[{"id":"ref-for-dom-credential-discovery-credential-store\u2460"}],"title":"3.2. The PasswordCredential Interface"},{"refs":[{"id":"ref-for-dom-credential-discovery-credential-store\u2461"}],"title":"4.1. The FederatedCredential Interface"},{"refs":[{"id":"ref-for-dom-credential-discovery-credential-store\u2462"}],"title":"8.2. Extension Points"}],"url":"#dom-credential-discovery-credential-store"},
-"dom-credential-discovery-remote": {"dfnID":"dom-credential-discovery-remote","dfnText":"remote","external":false,"refSections":[],"url":"#dom-credential-discovery-remote"},
-"dom-credential-discovery-slot": {"dfnID":"dom-credential-discovery-slot","dfnText":"[[discovery]]","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credential-discovery-slot"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"},{"refs":[{"id":"ref-for-dom-credential-discovery-slot\u2460"}],"title":"3.2. The PasswordCredential Interface"},{"refs":[{"id":"ref-for-dom-credential-discovery-slot\u2461"}],"title":"4.1. The FederatedCredential Interface"},{"refs":[{"id":"ref-for-dom-credential-discovery-slot\u2462"}],"title":"8.2. Extension Points"}],"url":"#dom-credential-discovery-slot"},
-"dom-credential-id": {"dfnID":"dom-credential-id","dfnText":"id","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credential-id"}],"title":"2.2. The Credential Interface"},{"refs":[{"id":"ref-for-dom-credential-id\u2460"},{"id":"ref-for-dom-credential-id\u2461"},{"id":"ref-for-dom-credential-id\u2462"},{"id":"ref-for-dom-credential-id\u2463"}],"title":"3.3.3. \n    PasswordCredential\u2019s [[Store]](credential, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-dom-credential-id\u2464"}],"title":"3.3.5. \n    Create a PasswordCredential from PasswordCredentialData\n  "},{"refs":[{"id":"ref-for-dom-credential-id\u2465"},{"id":"ref-for-dom-credential-id\u2466"},{"id":"ref-for-dom-credential-id\u2467"},{"id":"ref-for-dom-credential-id\u2468"}],"title":"4.2.3. \n    FederatedCredential\u2019s [[Store]](credential, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-dom-credential-id\u2460\u24ea"}],"title":"4.2.4. \n    Create a FederatedCredential from FederatedCredentialInit\n  "}],"url":"#dom-credential-id"},
-"dom-credential-isconditionalmediationavailable": {"dfnID":"dom-credential-isconditionalmediationavailable","dfnText":"isConditionalMediationAvailable()","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credential-isconditionalmediationavailable"},{"id":"ref-for-dom-credential-isconditionalmediationavailable\u2460"}],"title":"2.2. The Credential Interface"},{"refs":[{"id":"ref-for-dom-credential-isconditionalmediationavailable\u2461"}],"title":"2.3.2. Mediation Requirements"}],"url":"#dom-credential-isconditionalmediationavailable"},
-"dom-credential-origin-slot": {"dfnID":"dom-credential-origin-slot","dfnText":"[[origin]]","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credential-origin-slot"}],"title":"3.3.1. \n    PasswordCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-dom-credential-origin-slot\u2460"},{"id":"ref-for-dom-credential-origin-slot\u2461"},{"id":"ref-for-dom-credential-origin-slot\u2462"},{"id":"ref-for-dom-credential-origin-slot\u2463"}],"title":"3.3.3. \n    PasswordCredential\u2019s [[Store]](credential, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-dom-credential-origin-slot\u2464"}],"title":"3.3.5. \n    Create a PasswordCredential from PasswordCredentialData\n  "},{"refs":[{"id":"ref-for-dom-credential-origin-slot\u2465"}],"title":"4.2.1. \n    FederatedCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-dom-credential-origin-slot\u2466"},{"id":"ref-for-dom-credential-origin-slot\u2467"},{"id":"ref-for-dom-credential-origin-slot\u2468"},{"id":"ref-for-dom-credential-origin-slot\u2460\u24ea"}],"title":"4.2.3. \n    FederatedCredential\u2019s [[Store]](credential, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-dom-credential-origin-slot\u2460\u2460"}],"title":"4.2.4. \n    Create a FederatedCredential from FederatedCredentialInit\n  "},{"refs":[{"id":"ref-for-dom-credential-origin-slot\u2460\u2461"}],"title":"6.1. Cross-domain credential access"}],"url":"#dom-credential-origin-slot"},
-"dom-credential-store-slot": {"dfnID":"dom-credential-store-slot","dfnText":"[[Store]](credential, sameOriginWithAncestors)","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credential-store-slot"}],"title":"2.2.1.3. [[Store]] internal method"},{"refs":[{"id":"ref-for-dom-credential-store-slot\u2460"}],"title":"2.5.3. Store a Credential"},{"refs":[{"id":"ref-for-dom-credential-store-slot\u2461"}],"title":"6.4. Origin Confusion"},{"refs":[{"id":"ref-for-dom-credential-store-slot\u2462"}],"title":"8.2. Extension Points"}],"url":"#dom-credential-store-slot"},
-"dom-credential-type": {"dfnID":"dom-credential-type","dfnText":"type","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credential-type"}],"title":"2.2. The Credential Interface"},{"refs":[{"id":"ref-for-dom-credential-type\u2460"},{"id":"ref-for-dom-credential-type\u2461"}],"title":"3.1.1. Password-based Sign-in"}],"url":"#dom-credential-type"},
-"dom-credential-type-password": {"dfnID":"dom-credential-type-password","dfnText":"password","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credential-type-password"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-dom-credential-type-password\u2460"}],"title":"2.5.4. Create a Credential"},{"refs":[{"id":"ref-for-dom-credential-type-password\u2461"}],"title":"3.1.1. Password-based Sign-in"}],"url":"#dom-credential-type-password"},
-"dom-credential-type-slot": {"dfnID":"dom-credential-type-slot","dfnText":"[[type]]","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credential-type-slot"}],"title":"2.1.2. Credential Type Registry"},{"refs":[{"id":"ref-for-dom-credential-type-slot\u2460"},{"id":"ref-for-dom-credential-type-slot\u2461"}],"title":"2.2. The Credential Interface"},{"refs":[{"id":"ref-for-dom-credential-type-slot\u2462"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"},{"refs":[{"id":"ref-for-dom-credential-type-slot\u2463"},{"id":"ref-for-dom-credential-type-slot\u2464"},{"id":"ref-for-dom-credential-type-slot\u2465"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-dom-credential-type-slot\u2466"},{"id":"ref-for-dom-credential-type-slot\u2467"},{"id":"ref-for-dom-credential-type-slot\u2468"}],"title":"2.5.3. Store a Credential"},{"refs":[{"id":"ref-for-dom-credential-type-slot\u2460\u24ea"}],"title":"2.5.4. Create a Credential"},{"refs":[{"id":"ref-for-dom-credential-type-slot\u2460\u2460"}],"title":"3.2. The PasswordCredential Interface"},{"refs":[{"id":"ref-for-dom-credential-type-slot\u2460\u2461"}],"title":"4.1. The FederatedCredential Interface"},{"refs":[{"id":"ref-for-dom-credential-type-slot\u2460\u2462"},{"id":"ref-for-dom-credential-type-slot\u2460\u2463"}],"title":"8.2. Extension Points"}],"url":"#dom-credential-type-slot"},
-"dom-credentialcreationoptions-federated": {"dfnID":"dom-credentialcreationoptions-federated","dfnText":"federated","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialcreationoptions-federated"},{"id":"ref-for-dom-credentialcreationoptions-federated\u2460"},{"id":"ref-for-dom-credentialcreationoptions-federated\u2461"}],"title":"4.2.2. \n    FederatedCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors)\n  "}],"url":"#dom-credentialcreationoptions-federated"},
-"dom-credentialcreationoptions-password": {"dfnID":"dom-credentialcreationoptions-password","dfnText":"password","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialcreationoptions-password"},{"id":"ref-for-dom-credentialcreationoptions-password\u2460"},{"id":"ref-for-dom-credentialcreationoptions-password\u2461"},{"id":"ref-for-dom-credentialcreationoptions-password\u2462"},{"id":"ref-for-dom-credentialcreationoptions-password\u2463"}],"title":"3.3.2. \n    PasswordCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors)\n  "}],"url":"#dom-credentialcreationoptions-password"},
-"dom-credentialcreationoptions-signal": {"dfnID":"dom-credentialcreationoptions-signal","dfnText":"signal","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialcreationoptions-signal"}],"title":"2.4. The CredentialCreationOptions Dictionary"}],"url":"#dom-credentialcreationoptions-signal"},
-"dom-credentialdata-id": {"dfnID":"dom-credentialdata-id","dfnText":"id","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialdata-id"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "},{"refs":[{"id":"ref-for-dom-credentialdata-id\u2460"},{"id":"ref-for-dom-credentialdata-id\u2461"}],"title":"3.3.5. \n    Create a PasswordCredential from PasswordCredentialData\n  "},{"refs":[{"id":"ref-for-dom-credentialdata-id\u2462"},{"id":"ref-for-dom-credentialdata-id\u2463"}],"title":"4.2.4. \n    Create a FederatedCredential from FederatedCredentialInit\n  "}],"url":"#dom-credentialdata-id"},
-"dom-credentialmediationrequirement-conditional": {"dfnID":"dom-credentialmediationrequirement-conditional","dfnText":"conditional","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialmediationrequirement-conditional"},{"id":"ref-for-dom-credentialmediationrequirement-conditional\u2460"},{"id":"ref-for-dom-credentialmediationrequirement-conditional\u2461"}],"title":"2.2. The Credential Interface"},{"refs":[{"id":"ref-for-dom-credentialmediationrequirement-conditional\u2462"},{"id":"ref-for-dom-credentialmediationrequirement-conditional\u2463"},{"id":"ref-for-dom-credentialmediationrequirement-conditional\u2464"}],"title":"2.3.2. Mediation Requirements"},{"refs":[{"id":"ref-for-dom-credentialmediationrequirement-conditional\u2465"},{"id":"ref-for-dom-credentialmediationrequirement-conditional\u2466"},{"id":"ref-for-dom-credentialmediationrequirement-conditional\u2467"},{"id":"ref-for-dom-credentialmediationrequirement-conditional\u2468"},{"id":"ref-for-dom-credentialmediationrequirement-conditional\u2460\u24ea"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-dom-credentialmediationrequirement-conditional\u2460\u2460"}],"title":"8.2. Extension Points"}],"url":"#dom-credentialmediationrequirement-conditional"},
-"dom-credentialmediationrequirement-optional": {"dfnID":"dom-credentialmediationrequirement-optional","dfnText":"optional","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialmediationrequirement-optional"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"},{"refs":[{"id":"ref-for-dom-credentialmediationrequirement-optional\u2460"}],"title":"2.3.2. Mediation Requirements"},{"refs":[{"id":"ref-for-dom-credentialmediationrequirement-optional\u2461"},{"id":"ref-for-dom-credentialmediationrequirement-optional\u2462"}],"title":"2.3.2.1. Examples"}],"url":"#dom-credentialmediationrequirement-optional"},
-"dom-credentialmediationrequirement-required": {"dfnID":"dom-credentialmediationrequirement-required","dfnText":"required","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialmediationrequirement-required"}],"title":"2.3.2. Mediation Requirements"},{"refs":[{"id":"ref-for-dom-credentialmediationrequirement-required\u2460"},{"id":"ref-for-dom-credentialmediationrequirement-required\u2461"},{"id":"ref-for-dom-credentialmediationrequirement-required\u2462"},{"id":"ref-for-dom-credentialmediationrequirement-required\u2463"}],"title":"2.3.2.1. Examples"},{"refs":[{"id":"ref-for-dom-credentialmediationrequirement-required\u2464"}],"title":"2.5.1. Request a Credential"}],"url":"#dom-credentialmediationrequirement-required"},
-"dom-credentialmediationrequirement-silent": {"dfnID":"dom-credentialmediationrequirement-silent","dfnText":"silent","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialmediationrequirement-silent"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"},{"refs":[{"id":"ref-for-dom-credentialmediationrequirement-silent\u2460"}],"title":"2.3.2. Mediation Requirements"},{"refs":[{"id":"ref-for-dom-credentialmediationrequirement-silent\u2461"},{"id":"ref-for-dom-credentialmediationrequirement-silent\u2462"}],"title":"2.3.2.1. Examples"},{"refs":[{"id":"ref-for-dom-credentialmediationrequirement-silent\u2463"}],"title":"2.5.1. Request a Credential"}],"url":"#dom-credentialmediationrequirement-silent"},
-"dom-credentialrequestoptions-federated": {"dfnID":"dom-credentialrequestoptions-federated","dfnText":"federated","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialrequestoptions-federated"},{"id":"ref-for-dom-credentialrequestoptions-federated\u2460"},{"id":"ref-for-dom-credentialrequestoptions-federated\u2461"},{"id":"ref-for-dom-credentialrequestoptions-federated\u2462"}],"title":"4.2.1. \n    FederatedCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "}],"url":"#dom-credentialrequestoptions-federated"},
-"dom-credentialrequestoptions-mediation": {"dfnID":"dom-credentialrequestoptions-mediation","dfnText":"mediation","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialrequestoptions-mediation"},{"id":"ref-for-dom-credentialrequestoptions-mediation\u2460"},{"id":"ref-for-dom-credentialrequestoptions-mediation\u2461"},{"id":"ref-for-dom-credentialrequestoptions-mediation\u2462"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"},{"refs":[{"id":"ref-for-dom-credentialrequestoptions-mediation\u2463"},{"id":"ref-for-dom-credentialrequestoptions-mediation\u2464"},{"id":"ref-for-dom-credentialrequestoptions-mediation\u2465"},{"id":"ref-for-dom-credentialrequestoptions-mediation\u2466"},{"id":"ref-for-dom-credentialrequestoptions-mediation\u2467"},{"id":"ref-for-dom-credentialrequestoptions-mediation\u2468"},{"id":"ref-for-dom-credentialrequestoptions-mediation\u2460\u24ea"},{"id":"ref-for-dom-credentialrequestoptions-mediation\u2460\u2460"}],"title":"2.3.2.1. Examples"},{"refs":[{"id":"ref-for-dom-credentialrequestoptions-mediation\u2460\u2461"},{"id":"ref-for-dom-credentialrequestoptions-mediation\u2460\u2462"},{"id":"ref-for-dom-credentialrequestoptions-mediation\u2460\u2463"},{"id":"ref-for-dom-credentialrequestoptions-mediation\u2460\u2464"},{"id":"ref-for-dom-credentialrequestoptions-mediation\u2460\u2465"},{"id":"ref-for-dom-credentialrequestoptions-mediation\u2460\u2466"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-dom-credentialrequestoptions-mediation\u2460\u2467"}],"title":"8.1. Website Authors"}],"url":"#dom-credentialrequestoptions-mediation"},
-"dom-credentialrequestoptions-password": {"dfnID":"dom-credentialrequestoptions-password","dfnText":"password","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialrequestoptions-password"},{"id":"ref-for-dom-credentialrequestoptions-password\u2460"}],"title":"3.1.1. Password-based Sign-in"},{"refs":[{"id":"ref-for-dom-credentialrequestoptions-password\u2461"},{"id":"ref-for-dom-credentialrequestoptions-password\u2462"}],"title":"3.3.1. \n    PasswordCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-dom-credentialrequestoptions-password\u2463"}],"title":"3.3.6. \n    CredentialRequestOptions Matching for PasswordCredential\n  "}],"url":"#dom-credentialrequestoptions-password"},
-"dom-credentialrequestoptions-signal": {"dfnID":"dom-credentialrequestoptions-signal","dfnText":"signal","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialrequestoptions-signal"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"},{"refs":[{"id":"ref-for-dom-credentialrequestoptions-signal\u2460"},{"id":"ref-for-dom-credentialrequestoptions-signal\u2461"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-dom-credentialrequestoptions-signal\u2462"},{"id":"ref-for-dom-credentialrequestoptions-signal\u2463"}],"title":"2.5.4. Create a Credential"}],"url":"#dom-credentialrequestoptions-signal"},
-"dom-credentialscontainer-create": {"dfnID":"dom-credentialscontainer-create","dfnText":"create(options)","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialscontainer-create"},{"id":"ref-for-dom-credentialscontainer-create\u2460"},{"id":"ref-for-dom-credentialscontainer-create\u2461"}],"title":"2.3. navigator.credentials"},{"refs":[{"id":"ref-for-dom-credentialscontainer-create\u2462"},{"id":"ref-for-dom-credentialscontainer-create\u2463"}],"title":"2.4. The CredentialCreationOptions Dictionary"},{"refs":[{"id":"ref-for-dom-credentialscontainer-create\u2464"}],"title":"3.2. The PasswordCredential Interface"},{"refs":[{"id":"ref-for-dom-credentialscontainer-create\u2465"}],"title":"4.1. The FederatedCredential Interface"},{"refs":[{"id":"ref-for-dom-credentialscontainer-create\u2466"}],"title":"8.2. Extension Points"}],"url":"#dom-credentialscontainer-create"},
-"dom-credentialscontainer-create-options-options": {"dfnID":"dom-credentialscontainer-create-options-options","dfnText":"options","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialscontainer-create-options-options"},{"id":"ref-for-dom-credentialscontainer-create-options-options\u2460"}],"title":"2.3. navigator.credentials"}],"url":"#dom-credentialscontainer-create-options-options"},
-"dom-credentialscontainer-get": {"dfnID":"dom-credentialscontainer-get","dfnText":"get(options)","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialscontainer-get"},{"id":"ref-for-dom-credentialscontainer-get\u2460"},{"id":"ref-for-dom-credentialscontainer-get\u2461"}],"title":"2.3. navigator.credentials"},{"refs":[{"id":"ref-for-dom-credentialscontainer-get\u2462"},{"id":"ref-for-dom-credentialscontainer-get\u2463"},{"id":"ref-for-dom-credentialscontainer-get\u2464"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"},{"refs":[{"id":"ref-for-dom-credentialscontainer-get\u2465"},{"id":"ref-for-dom-credentialscontainer-get\u2466"},{"id":"ref-for-dom-credentialscontainer-get\u2467"},{"id":"ref-for-dom-credentialscontainer-get\u2468"}],"title":"2.3.2. Mediation Requirements"},{"refs":[{"id":"ref-for-dom-credentialscontainer-get\u2460\u24ea"},{"id":"ref-for-dom-credentialscontainer-get\u2460\u2460"},{"id":"ref-for-dom-credentialscontainer-get\u2460\u2461"},{"id":"ref-for-dom-credentialscontainer-get\u2460\u2462"},{"id":"ref-for-dom-credentialscontainer-get\u2460\u2463"},{"id":"ref-for-dom-credentialscontainer-get\u2460\u2464"},{"id":"ref-for-dom-credentialscontainer-get\u2460\u2465"}],"title":"2.3.2.1. Examples"},{"refs":[{"id":"ref-for-dom-credentialscontainer-get\u2460\u2466"},{"id":"ref-for-dom-credentialscontainer-get\u2460\u2467"},{"id":"ref-for-dom-credentialscontainer-get\u2460\u2468"},{"id":"ref-for-dom-credentialscontainer-get\u2461\u24ea"}],"title":"3.1.1. Password-based Sign-in"},{"refs":[{"id":"ref-for-dom-credentialscontainer-get\u2461\u2460"}],"title":"3.3.6. \n    CredentialRequestOptions Matching for PasswordCredential\n  "},{"refs":[{"id":"ref-for-dom-credentialscontainer-get\u2461\u2461"}],"title":"5.3. Credential Selection"},{"refs":[{"id":"ref-for-dom-credentialscontainer-get\u2461\u2462"},{"id":"ref-for-dom-credentialscontainer-get\u2461\u2463"},{"id":"ref-for-dom-credentialscontainer-get\u2461\u2464"}],"title":"6.1. Cross-domain credential access"},{"refs":[{"id":"ref-for-dom-credentialscontainer-get\u2461\u2465"}],"title":"7.1. Timing Attacks"},{"refs":[{"id":"ref-for-dom-credentialscontainer-get\u2461\u2466"}],"title":"8.2. Extension Points"},{"refs":[{"id":"ref-for-dom-credentialscontainer-get\u2461\u2467"}],"title":"8.3. Browser Extensions"}],"url":"#dom-credentialscontainer-get"},
-"dom-credentialscontainer-get-options-options": {"dfnID":"dom-credentialscontainer-get-options-options","dfnText":"options","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialscontainer-get-options-options"},{"id":"ref-for-dom-credentialscontainer-get-options-options\u2460"}],"title":"2.3. navigator.credentials"}],"url":"#dom-credentialscontainer-get-options-options"},
-"dom-credentialscontainer-preventsilentaccess": {"dfnID":"dom-credentialscontainer-preventsilentaccess","dfnText":"preventSilentAccess()","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialscontainer-preventsilentaccess"},{"id":"ref-for-dom-credentialscontainer-preventsilentaccess\u2460"}],"title":"2.3. navigator.credentials"},{"refs":[{"id":"ref-for-dom-credentialscontainer-preventsilentaccess\u2461"}],"title":"2.3.2. Mediation Requirements"},{"refs":[{"id":"ref-for-dom-credentialscontainer-preventsilentaccess\u2462"}],"title":"6.5. Signing-Out"}],"url":"#dom-credentialscontainer-preventsilentaccess"},
-"dom-credentialscontainer-store": {"dfnID":"dom-credentialscontainer-store","dfnText":"store(credential)","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialscontainer-store"}],"title":"2. Core API"},{"refs":[{"id":"ref-for-dom-credentialscontainer-store\u2460"},{"id":"ref-for-dom-credentialscontainer-store\u2461"},{"id":"ref-for-dom-credentialscontainer-store\u2462"}],"title":"2.3. navigator.credentials"},{"refs":[{"id":"ref-for-dom-credentialscontainer-store\u2463"},{"id":"ref-for-dom-credentialscontainer-store\u2464"},{"id":"ref-for-dom-credentialscontainer-store\u2465"},{"id":"ref-for-dom-credentialscontainer-store\u2466"}],"title":"3.1.1. Password-based Sign-in"},{"refs":[{"id":"ref-for-dom-credentialscontainer-store\u2467"},{"id":"ref-for-dom-credentialscontainer-store\u2468"}],"title":"3.1.2. Post-sign-in Confirmation"},{"refs":[{"id":"ref-for-dom-credentialscontainer-store\u2460\u24ea"},{"id":"ref-for-dom-credentialscontainer-store\u2460\u2460"}],"title":"3.1.3. Change Password"},{"refs":[{"id":"ref-for-dom-credentialscontainer-store\u2460\u2461"}],"title":"5.1. Storing and Updating Credentials"},{"refs":[{"id":"ref-for-dom-credentialscontainer-store\u2460\u2462"}],"title":"8.3. Browser Extensions"}],"url":"#dom-credentialscontainer-store"},
-"dom-credentialscontainer-store-credential-credential": {"dfnID":"dom-credentialscontainer-store-credential-credential","dfnText":"credential","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialscontainer-store-credential-credential"},{"id":"ref-for-dom-credentialscontainer-store-credential-credential\u2460"}],"title":"2.3. navigator.credentials"}],"url":"#dom-credentialscontainer-store-credential-credential"},
-"dom-credentialuserdata-iconurl": {"dfnID":"dom-credentialuserdata-iconurl","dfnText":"iconURL","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialuserdata-iconurl"}],"title":"2.2.2. CredentialUserData Mixin"},{"refs":[{"id":"ref-for-dom-credentialuserdata-iconurl\u2460"},{"id":"ref-for-dom-credentialuserdata-iconurl\u2461"},{"id":"ref-for-dom-credentialuserdata-iconurl\u2462"},{"id":"ref-for-dom-credentialuserdata-iconurl\u2463"}],"title":"3.3.3. \n    PasswordCredential\u2019s [[Store]](credential, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-dom-credentialuserdata-iconurl\u2464"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "},{"refs":[{"id":"ref-for-dom-credentialuserdata-iconurl\u2465"}],"title":"3.3.5. \n    Create a PasswordCredential from PasswordCredentialData\n  "},{"refs":[{"id":"ref-for-dom-credentialuserdata-iconurl\u2466"},{"id":"ref-for-dom-credentialuserdata-iconurl\u2467"}],"title":"4.2.3. \n    FederatedCredential\u2019s [[Store]](credential, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-dom-credentialuserdata-iconurl\u2468"},{"id":"ref-for-dom-credentialuserdata-iconurl\u2460\u24ea"}],"title":"4.2.4. \n    Create a FederatedCredential from FederatedCredentialInit\n  "}],"url":"#dom-credentialuserdata-iconurl"},
-"dom-credentialuserdata-name": {"dfnID":"dom-credentialuserdata-name","dfnText":"name","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-credentialuserdata-name"}],"title":"2.2.2. CredentialUserData Mixin"},{"refs":[{"id":"ref-for-dom-credentialuserdata-name\u2460"},{"id":"ref-for-dom-credentialuserdata-name\u2461"},{"id":"ref-for-dom-credentialuserdata-name\u2462"},{"id":"ref-for-dom-credentialuserdata-name\u2463"}],"title":"3.3.3. \n    PasswordCredential\u2019s [[Store]](credential, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-dom-credentialuserdata-name\u2464"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "},{"refs":[{"id":"ref-for-dom-credentialuserdata-name\u2465"}],"title":"3.3.5. \n    Create a PasswordCredential from PasswordCredentialData\n  "},{"refs":[{"id":"ref-for-dom-credentialuserdata-name\u2466"},{"id":"ref-for-dom-credentialuserdata-name\u2467"}],"title":"4.2.3. \n    FederatedCredential\u2019s [[Store]](credential, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-dom-credentialuserdata-name\u2468"},{"id":"ref-for-dom-credentialuserdata-name\u2460\u24ea"}],"title":"4.2.4. \n    Create a FederatedCredential from FederatedCredentialInit\n  "}],"url":"#dom-credentialuserdata-name"},
-"dom-federatedcredential-collectfromcredentialstore-slot": {"dfnID":"dom-federatedcredential-collectfromcredentialstore-slot","dfnText":"[[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-federatedcredential-collectfromcredentialstore-slot"}],"title":"4.1. The FederatedCredential Interface"}],"url":"#dom-federatedcredential-collectfromcredentialstore-slot"},
-"dom-federatedcredential-create-slot": {"dfnID":"dom-federatedcredential-create-slot","dfnText":"[[Create]](origin, options, sameOriginWithAncestors)","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-federatedcredential-create-slot"}],"title":"4.1. The FederatedCredential Interface"}],"url":"#dom-federatedcredential-create-slot"},
-"dom-federatedcredential-federated": {"dfnID":"dom-federatedcredential-federated","dfnText":"federated","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-federatedcredential-federated"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-dom-federatedcredential-federated\u2460"}],"title":"2.5.4. Create a Credential"}],"url":"#dom-federatedcredential-federated"},
-"dom-federatedcredential-federatedcredential": {"dfnID":"dom-federatedcredential-federatedcredential","dfnText":"FederatedCredential(data)","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-federatedcredential-federatedcredential"}],"title":"4.1. The FederatedCredential Interface"}],"url":"#dom-federatedcredential-federatedcredential"},
-"dom-federatedcredential-federatedcredential-data-data": {"dfnID":"dom-federatedcredential-federatedcredential-data-data","dfnText":"data","external":false,"refSections":[],"url":"#dom-federatedcredential-federatedcredential-data-data"},
-"dom-federatedcredential-protocol": {"dfnID":"dom-federatedcredential-protocol","dfnText":"protocol","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-federatedcredential-protocol"}],"title":"4.1. The FederatedCredential Interface"},{"refs":[{"id":"ref-for-dom-federatedcredential-protocol\u2460"}],"title":"4.2.1. \n    FederatedCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-dom-federatedcredential-protocol\u2461"},{"id":"ref-for-dom-federatedcredential-protocol\u2462"}],"title":"4.2.3. \n    FederatedCredential\u2019s [[Store]](credential, sameOriginWithAncestors)\n  "}],"url":"#dom-federatedcredential-protocol"},
-"dom-federatedcredential-provider": {"dfnID":"dom-federatedcredential-provider","dfnText":"provider","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-federatedcredential-provider"},{"id":"ref-for-dom-federatedcredential-provider\u2460"}],"title":"4.1. The FederatedCredential Interface"},{"refs":[{"id":"ref-for-dom-federatedcredential-provider\u2461"}],"title":"4.1.1. Identifying Providers"},{"refs":[{"id":"ref-for-dom-federatedcredential-provider\u2462"}],"title":"4.2.1. \n    FederatedCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-dom-federatedcredential-provider\u2463"},{"id":"ref-for-dom-federatedcredential-provider\u2464"},{"id":"ref-for-dom-federatedcredential-provider\u2465"},{"id":"ref-for-dom-federatedcredential-provider\u2466"}],"title":"4.2.3. \n    FederatedCredential\u2019s [[Store]](credential, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-dom-federatedcredential-provider\u2467"}],"title":"4.2.4. \n    Create a FederatedCredential from FederatedCredentialInit\n  "}],"url":"#dom-federatedcredential-provider"},
-"dom-federatedcredential-store-slot": {"dfnID":"dom-federatedcredential-store-slot","dfnText":"[[Store]](credential, sameOriginWithAncestors)","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-federatedcredential-store-slot"}],"title":"4.1. The FederatedCredential Interface"}],"url":"#dom-federatedcredential-store-slot"},
-"dom-federatedcredentialinit-iconurl": {"dfnID":"dom-federatedcredentialinit-iconurl","dfnText":"iconURL","external":false,"refSections":[],"url":"#dom-federatedcredentialinit-iconurl"},
-"dom-federatedcredentialinit-name": {"dfnID":"dom-federatedcredentialinit-name","dfnText":"name","external":false,"refSections":[],"url":"#dom-federatedcredentialinit-name"},
-"dom-federatedcredentialinit-origin": {"dfnID":"dom-federatedcredentialinit-origin","dfnText":"origin","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-federatedcredentialinit-origin"}],"title":"4.2.2. \n    FederatedCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-dom-federatedcredentialinit-origin\u2460"}],"title":"4.2.4. \n    Create a FederatedCredential from FederatedCredentialInit\n  "}],"url":"#dom-federatedcredentialinit-origin"},
-"dom-federatedcredentialinit-protocol": {"dfnID":"dom-federatedcredentialinit-protocol","dfnText":"protocol","external":false,"refSections":[],"url":"#dom-federatedcredentialinit-protocol"},
-"dom-federatedcredentialinit-provider": {"dfnID":"dom-federatedcredentialinit-provider","dfnText":"provider","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-federatedcredentialinit-provider"},{"id":"ref-for-dom-federatedcredentialinit-provider\u2460"}],"title":"4.2.4. \n    Create a FederatedCredential from FederatedCredentialInit\n  "}],"url":"#dom-federatedcredentialinit-provider"},
-"dom-federatedcredentialrequestoptions-protocols": {"dfnID":"dom-federatedcredentialrequestoptions-protocols","dfnText":"protocols","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-federatedcredentialrequestoptions-protocols"}],"title":"4.2.1. \n    FederatedCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "}],"url":"#dom-federatedcredentialrequestoptions-protocols"},
-"dom-federatedcredentialrequestoptions-providers": {"dfnID":"dom-federatedcredentialrequestoptions-providers","dfnText":"providers","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-federatedcredentialrequestoptions-providers"}],"title":"4.1.1. Identifying Providers"},{"refs":[{"id":"ref-for-dom-federatedcredentialrequestoptions-providers\u2460"}],"title":"4.2.1. \n    FederatedCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "}],"url":"#dom-federatedcredentialrequestoptions-providers"},
-"dom-navigator-credentials": {"dfnID":"dom-navigator-credentials","dfnText":"credentials","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-navigator-credentials"},{"id":"ref-for-dom-navigator-credentials\u2460"}],"title":"2.3. navigator.credentials"},{"refs":[{"id":"ref-for-dom-navigator-credentials\u2461"},{"id":"ref-for-dom-navigator-credentials\u2462"},{"id":"ref-for-dom-navigator-credentials\u2463"},{"id":"ref-for-dom-navigator-credentials\u2464"}],"title":"2.3.2.1. Examples"},{"refs":[{"id":"ref-for-dom-navigator-credentials\u2465"},{"id":"ref-for-dom-navigator-credentials\u2466"},{"id":"ref-for-dom-navigator-credentials\u2467"}],"title":"3.1.1. Password-based Sign-in"}],"url":"#dom-navigator-credentials"},
-"dom-passwordcredential-collectfromcredentialstore-slot": {"dfnID":"dom-passwordcredential-collectfromcredentialstore-slot","dfnText":"[[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-passwordcredential-collectfromcredentialstore-slot"}],"title":"3.2. The PasswordCredential Interface"},{"refs":[{"id":"ref-for-dom-passwordcredential-collectfromcredentialstore-slot\u2460"}],"title":"6.4. Origin Confusion"}],"url":"#dom-passwordcredential-collectfromcredentialstore-slot"},
-"dom-passwordcredential-create-slot": {"dfnID":"dom-passwordcredential-create-slot","dfnText":"[[Create]](origin, options, sameOriginWithAncestors)","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-passwordcredential-create-slot"}],"title":"3.2. The PasswordCredential Interface"}],"url":"#dom-passwordcredential-create-slot"},
-"dom-passwordcredential-password": {"dfnID":"dom-passwordcredential-password","dfnText":"password","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-passwordcredential-password"}],"title":"3.2. The PasswordCredential Interface"},{"refs":[{"id":"ref-for-dom-passwordcredential-password\u2460"},{"id":"ref-for-dom-passwordcredential-password\u2461"},{"id":"ref-for-dom-passwordcredential-password\u2462"},{"id":"ref-for-dom-passwordcredential-password\u2463"}],"title":"3.3.3. \n    PasswordCredential\u2019s [[Store]](credential, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-dom-passwordcredential-password\u2464"}],"title":"3.3.5. \n    Create a PasswordCredential from PasswordCredentialData\n  "}],"url":"#dom-passwordcredential-password"},
-"dom-passwordcredential-passwordcredential": {"dfnID":"dom-passwordcredential-passwordcredential","dfnText":"PasswordCredential(form)","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-passwordcredential-passwordcredential"}],"title":"3.1.2. Post-sign-in Confirmation"},{"refs":[{"id":"ref-for-dom-passwordcredential-passwordcredential\u2460"}],"title":"3.1.3. Change Password"},{"refs":[{"id":"ref-for-dom-passwordcredential-passwordcredential\u2461"}],"title":"3.2. The PasswordCredential Interface"}],"url":"#dom-passwordcredential-passwordcredential"},
-"dom-passwordcredential-passwordcredential-data": {"dfnID":"dom-passwordcredential-passwordcredential-data","dfnText":"PasswordCredential(data)","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-passwordcredential-passwordcredential-data"}],"title":"3.2. The PasswordCredential Interface"}],"url":"#dom-passwordcredential-passwordcredential-data"},
-"dom-passwordcredential-passwordcredential-data-data": {"dfnID":"dom-passwordcredential-passwordcredential-data-data","dfnText":"data","external":false,"refSections":[],"url":"#dom-passwordcredential-passwordcredential-data-data"},
-"dom-passwordcredential-passwordcredential-form-form": {"dfnID":"dom-passwordcredential-passwordcredential-form-form","dfnText":"form","external":false,"refSections":[],"url":"#dom-passwordcredential-passwordcredential-form-form"},
-"dom-passwordcredential-store-slot": {"dfnID":"dom-passwordcredential-store-slot","dfnText":"[[Store]](credential, sameOriginWithAncestors)","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-passwordcredential-store-slot"}],"title":"3.2. The PasswordCredential Interface"}],"url":"#dom-passwordcredential-store-slot"},
-"dom-passwordcredentialdata-iconurl": {"dfnID":"dom-passwordcredentialdata-iconurl","dfnText":"iconURL","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-passwordcredentialdata-iconurl"}],"title":"3.3.5. \n    Create a PasswordCredential from PasswordCredentialData\n  "}],"url":"#dom-passwordcredentialdata-iconurl"},
-"dom-passwordcredentialdata-name": {"dfnID":"dom-passwordcredentialdata-name","dfnText":"name","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-passwordcredentialdata-name"}],"title":"3.3.5. \n    Create a PasswordCredential from PasswordCredentialData\n  "}],"url":"#dom-passwordcredentialdata-name"},
-"dom-passwordcredentialdata-origin": {"dfnID":"dom-passwordcredentialdata-origin","dfnText":"origin","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-passwordcredentialdata-origin"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "},{"refs":[{"id":"ref-for-dom-passwordcredentialdata-origin\u2460"},{"id":"ref-for-dom-passwordcredentialdata-origin\u2461"}],"title":"3.3.5. \n    Create a PasswordCredential from PasswordCredentialData\n  "}],"url":"#dom-passwordcredentialdata-origin"},
-"dom-passwordcredentialdata-password": {"dfnID":"dom-passwordcredentialdata-password","dfnText":"password","external":false,"refSections":[{"refs":[{"id":"ref-for-dom-passwordcredentialdata-password"},{"id":"ref-for-dom-passwordcredentialdata-password\u2460"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "},{"refs":[{"id":"ref-for-dom-passwordcredentialdata-password\u2461"},{"id":"ref-for-dom-passwordcredentialdata-password\u2462"}],"title":"3.3.5. \n    Create a PasswordCredential from PasswordCredentialData\n  "}],"url":"#dom-passwordcredentialdata-password"},
-"e0ab744a": {"dfnID":"e0ab744a","dfnText":"browsing context","external":true,"refSections":[{"refs":[{"id":"ref-for-concept-document-bc"}],"title":"2.1.1.1. Same-Origin with its Ancestors"},{"refs":[{"id":"ref-for-concept-document-bc\u2460"}],"title":"2.3. navigator.credentials"}],"url":"https://html.spec.whatwg.org/multipage/browsers.html#concept-document-bc"},
-"e10e7eb7": {"dfnID":"e10e7eb7","dfnText":"dom manipulation task source","external":true,"refSections":[{"refs":[{"id":"ref-for-dom-manipulation-task-source"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-dom-manipulation-task-source\u2460"}],"title":"2.5.3. Store a Credential"},{"refs":[{"id":"ref-for-dom-manipulation-task-source\u2461"},{"id":"ref-for-dom-manipulation-task-source\u2462"}],"title":"2.5.4. Create a Credential"}],"url":"https://html.spec.whatwg.org/multipage/webappapis.html#dom-manipulation-task-source"},
-"e270bd2a": {"dfnID":"e270bd2a","dfnText":"task","external":true,"refSections":[{"refs":[{"id":"ref-for-concept-task"}],"title":"2.2.1.4. [[Create]] internal method"}],"url":"https://html.spec.whatwg.org/multipage/webappapis.html#concept-task"},
-"e8126328": {"dfnID":"e8126328","dfnText":"publicKey (for CredentialCreationOptions)","external":true,"refSections":[{"refs":[{"id":"ref-for-dom-credentialcreationoptions-publickey"}],"title":"2.5.4. Create a Credential"}],"url":"https://www.w3.org/TR/webauthn-3/#dom-credentialcreationoptions-publickey"},
-"e8353b84": {"dfnID":"e8353b84","dfnText":"promise-calling","external":true,"refSections":[{"refs":[{"id":"ref-for-should-promise-call"}],"title":"2.5.4. Create a Credential"}],"url":"https://www.w3.org/2001/tag/doc/promises-guide#should-promise-call"},
-"e99bd18e": {"dfnID":"e99bd18e","dfnText":"relevant global object","external":true,"refSections":[{"refs":[{"id":"ref-for-concept-relevant-global"},{"id":"ref-for-concept-relevant-global\u2460"}],"title":"2.1.1.1. Same-Origin with its Ancestors"},{"refs":[{"id":"ref-for-concept-relevant-global\u2461"},{"id":"ref-for-concept-relevant-global\u2462"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-concept-relevant-global\u2463"}],"title":"2.5.4. Create a Credential"}],"url":"https://html.spec.whatwg.org/multipage/webappapis.html#concept-relevant-global"},
-"eab3771a": {"dfnID":"eab3771a","dfnText":"inherit","external":true,"refSections":[{"refs":[{"id":"ref-for-dfn-inherit"}],"title":"2. Core API"},{"refs":[{"id":"ref-for-dfn-inherit\u2460"}],"title":"2.2.1. Credential Internal Methods"}],"url":"https://webidl.spec.whatwg.org/#dfn-inherit"},
-"enumdef-credentialmediationrequirement": {"dfnID":"enumdef-credentialmediationrequirement","dfnText":"CredentialMediationRequirement","external":false,"refSections":[{"refs":[{"id":"ref-for-enumdef-credentialmediationrequirement"},{"id":"ref-for-enumdef-credentialmediationrequirement\u2460"},{"id":"ref-for-enumdef-credentialmediationrequirement\u2461"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"},{"refs":[{"id":"ref-for-enumdef-credentialmediationrequirement\u2462"}],"title":"2.3.2. Mediation Requirements"}],"url":"#enumdef-credentialmediationrequirement"},
-"f4647c65": {"dfnID":"f4647c65","dfnText":"identity","external":true,"refSections":[{"refs":[{"id":"ref-for-dom-credentialrequestoptions-identity"}],"title":"2.5.1. Request a Credential"}],"url":"https://fedidcg.github.io/FedCM/#dom-credentialrequestoptions-identity"},
-"fa4ea124": {"dfnID":"fa4ea124","dfnText":"initiator","external":true,"refSections":[{"refs":[{"id":"ref-for-concept-request-initiator"}],"title":"7.2. Chooser Leakage"}],"url":"https://fetch.spec.whatwg.org/#concept-request-initiator"},
-"fab13602": {"dfnID":"fab13602","dfnText":"a priori authenticated url","external":true,"refSections":[{"refs":[{"id":"ref-for-a-priori-authenticated-url"}],"title":"2.2.2. CredentialUserData Mixin"},{"refs":[{"id":"ref-for-a-priori-authenticated-url\u2460"}],"title":"6.3. Insecure Sites"}],"url":"https://www.w3.org/TR/mixed-content/#a-priori-authenticated-url"},
-"fedc36f2": {"dfnID":"fedc36f2","dfnText":"[[Create]](origin, options, sameOriginWithAncestors)","external":true,"refSections":[{"refs":[{"id":"ref-for-dom-publickeycredential-create-slot"}],"title":"8.2. Extension Points"}],"url":"https://www.w3.org/TR/webauthn-3/#dom-publickeycredential-create-slot"},
-"federatedcredential": {"dfnID":"federatedcredential","dfnText":"FederatedCredential","external":false,"refSections":[{"refs":[{"id":"ref-for-federatedcredential"}],"title":"2. Core API"},{"refs":[{"id":"ref-for-federatedcredential\u2460"}],"title":"2.1.2. Credential Type Registry"},{"refs":[{"id":"ref-for-federatedcredential\u2461"},{"id":"ref-for-federatedcredential\u2462"},{"id":"ref-for-federatedcredential\u2463"},{"id":"ref-for-federatedcredential\u2464"},{"id":"ref-for-federatedcredential\u2465"},{"id":"ref-for-federatedcredential\u2466"}],"title":"4.1. The FederatedCredential Interface"},{"refs":[{"id":"ref-for-federatedcredential\u2467"}],"title":"4.1.1. Identifying Providers"},{"refs":[{"id":"ref-for-federatedcredential\u2468"}],"title":"4.2.1. \n    FederatedCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-federatedcredential\u2460\u24ea"}],"title":"4.2.2. \n    FederatedCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-federatedcredential\u2460\u2460"},{"id":"ref-for-federatedcredential\u2460\u2461"},{"id":"ref-for-federatedcredential\u2460\u2462"}],"title":"4.2.3. \n    FederatedCredential\u2019s [[Store]](credential, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-federatedcredential\u2460\u2463"}],"title":"4.2.4. \n    Create a FederatedCredential from FederatedCredentialInit\n  "},{"refs":[{"id":"ref-for-federatedcredential\u2460\u2464"}],"title":"9. Future Work"}],"url":"#federatedcredential"},
-"ff35f08f": {"dfnID":"ff35f08f","dfnText":"autofill detail tokens","external":true,"refSections":[{"refs":[{"id":"ref-for-autofill-detail-tokens"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "}],"url":"https://html.spec.whatwg.org/multipage/form-control-infrastructure.html#autofill-detail-tokens"},
-"origin-prevent-silent-access-flag": {"dfnID":"origin-prevent-silent-access-flag","dfnText":"prevent silent   access flag","external":false,"refSections":[{"refs":[{"id":"ref-for-origin-prevent-silent-access-flag"}],"title":"2.3. navigator.credentials"},{"refs":[{"id":"ref-for-origin-prevent-silent-access-flag\u2460"},{"id":"ref-for-origin-prevent-silent-access-flag\u2461"},{"id":"ref-for-origin-prevent-silent-access-flag\u2462"}],"title":"2.3.2. Mediation Requirements"},{"refs":[{"id":"ref-for-origin-prevent-silent-access-flag\u2463"}],"title":"2.5.5. Prevent Silent Access"},{"refs":[{"id":"ref-for-origin-prevent-silent-access-flag\u2464"},{"id":"ref-for-origin-prevent-silent-access-flag\u2465"},{"id":"ref-for-origin-prevent-silent-access-flag\u2466"},{"id":"ref-for-origin-prevent-silent-access-flag\u2467"}],"title":"5.2. Requiring User Mediation"},{"refs":[{"id":"ref-for-origin-prevent-silent-access-flag\u2468"}],"title":"6.5. Signing-Out"}],"url":"#origin-prevent-silent-access-flag"},
-"origin-requires-user-mediation": {"dfnID":"origin-requires-user-mediation","dfnText":"requires user mediation","external":false,"refSections":[{"refs":[{"id":"ref-for-origin-requires-user-mediation"}],"title":"2.3.2. Mediation Requirements"},{"refs":[{"id":"ref-for-origin-requires-user-mediation\u2460"}],"title":"2.5.1. Request a Credential"}],"url":"#origin-requires-user-mediation"},
-"passwordcredential": {"dfnID":"passwordcredential","dfnText":"PasswordCredential","external":false,"refSections":[{"refs":[{"id":"ref-for-passwordcredential"}],"title":"2. Core API"},{"refs":[{"id":"ref-for-passwordcredential\u2460"}],"title":"2.1.2. Credential Type Registry"},{"refs":[{"id":"ref-for-passwordcredential\u2461"}],"title":"3. Password Credentials"},{"refs":[{"id":"ref-for-passwordcredential\u2462"},{"id":"ref-for-passwordcredential\u2463"}],"title":"3.1.2. Post-sign-in Confirmation"},{"refs":[{"id":"ref-for-passwordcredential\u2464"},{"id":"ref-for-passwordcredential\u2465"}],"title":"3.1.3. Change Password"},{"refs":[{"id":"ref-for-passwordcredential\u2466"},{"id":"ref-for-passwordcredential\u2467"},{"id":"ref-for-passwordcredential\u2468"},{"id":"ref-for-passwordcredential\u2460\u24ea"},{"id":"ref-for-passwordcredential\u2460\u2460"},{"id":"ref-for-passwordcredential\u2460\u2461"}],"title":"3.2. The PasswordCredential Interface"},{"refs":[{"id":"ref-for-passwordcredential\u2460\u2462"}],"title":"3.3.1. \n    PasswordCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-passwordcredential\u2460\u2463"},{"id":"ref-for-passwordcredential\u2460\u2464"}],"title":"3.3.2. \n    PasswordCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-passwordcredential\u2460\u2465"},{"id":"ref-for-passwordcredential\u2460\u2466"},{"id":"ref-for-passwordcredential\u2460\u2467"}],"title":"3.3.3. \n    PasswordCredential\u2019s [[Store]](credential, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-passwordcredential\u2460\u2468"}],"title":"3.3.4. \n    Create a PasswordCredential from an HTMLFormElement\n  "},{"refs":[{"id":"ref-for-passwordcredential\u2461\u24ea"}],"title":"3.3.5. \n    Create a PasswordCredential from PasswordCredentialData\n  "},{"refs":[{"id":"ref-for-passwordcredential\u2461\u2460"}],"title":"3.3.6. \n    CredentialRequestOptions Matching for PasswordCredential\n  "},{"refs":[{"id":"ref-for-passwordcredential\u2461\u2461"}],"title":"6.4. Origin Confusion"}],"url":"#passwordcredential"},
-"same-origin-with-its-ancestors": {"dfnID":"same-origin-with-its-ancestors","dfnText":"same-origin with its\n  ancestors","external":false,"refSections":[{"refs":[{"id":"ref-for-same-origin-with-its-ancestors"}],"title":"2.2.1.1. [[CollectFromCredentialStore]] internal method"},{"refs":[{"id":"ref-for-same-origin-with-its-ancestors\u2460"}],"title":"2.2.1.2. [[DiscoverFromExternalSource]] internal method"},{"refs":[{"id":"ref-for-same-origin-with-its-ancestors\u2461"}],"title":"2.2.1.3. [[Store]] internal method"},{"refs":[{"id":"ref-for-same-origin-with-its-ancestors\u2462"}],"title":"2.2.1.4. [[Create]] internal method"},{"refs":[{"id":"ref-for-same-origin-with-its-ancestors\u2463"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-same-origin-with-its-ancestors\u2464"}],"title":"2.5.2. Collect Credentials from the credential store"},{"refs":[{"id":"ref-for-same-origin-with-its-ancestors\u2465"}],"title":"2.5.3. Store a Credential"},{"refs":[{"id":"ref-for-same-origin-with-its-ancestors\u2466"}],"title":"2.5.4. Create a Credential"},{"refs":[{"id":"ref-for-same-origin-with-its-ancestors\u2467"}],"title":"3.3.1. \n    PasswordCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-same-origin-with-its-ancestors\u2468"}],"title":"3.3.2. \n    PasswordCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-same-origin-with-its-ancestors\u2460\u24ea"}],"title":"3.3.3. \n    PasswordCredential\u2019s [[Store]](credential, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-same-origin-with-its-ancestors\u2460\u2460"}],"title":"4.2.1. \n    FederatedCredential\u2019s [[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-same-origin-with-its-ancestors\u2460\u2461"}],"title":"4.2.2. \n    FederatedCredential\u2019s [[Create]](origin, options, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-same-origin-with-its-ancestors\u2460\u2462"}],"title":"4.2.3. \n    FederatedCredential\u2019s [[Store]](credential, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-same-origin-with-its-ancestors\u2460\u2463"}],"title":"8.2. Extension Points"}],"url":"#same-origin-with-its-ancestors"},
-"typedefdef-passwordcredentialinit": {"dfnID":"typedefdef-passwordcredentialinit","dfnText":"PasswordCredentialInit","external":false,"refSections":[{"refs":[{"id":"ref-for-typedefdef-passwordcredentialinit"}],"title":"3.2. The PasswordCredential Interface"}],"url":"#typedefdef-passwordcredentialinit"},
-"user-mediated": {"dfnID":"user-mediated","dfnText":"user mediated","external":false,"refSections":[{"refs":[{"id":"ref-for-user-mediated"},{"id":"ref-for-user-mediated\u2460"}],"title":"2.3.1. The CredentialRequestOptions Dictionary"},{"refs":[{"id":"ref-for-user-mediated\u2461"},{"id":"ref-for-user-mediated\u2462"},{"id":"ref-for-user-mediated\u2463"}],"title":"2.3.2. Mediation Requirements"},{"refs":[{"id":"ref-for-user-mediated\u2464"},{"id":"ref-for-user-mediated\u2465"}],"title":"2.3.2.1. Examples"},{"refs":[{"id":"ref-for-user-mediated\u2466"}],"title":"2.5.1. Request a Credential"},{"refs":[{"id":"ref-for-user-mediated\u2467"},{"id":"ref-for-user-mediated\u2468"}],"title":"3.3.3. \n    PasswordCredential\u2019s [[Store]](credential, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-user-mediated\u2460\u24ea"}],"title":"4.2.3. \n    FederatedCredential\u2019s [[Store]](credential, sameOriginWithAncestors)\n  "},{"refs":[{"id":"ref-for-user-mediated\u2460\u2460"}],"title":"5. User Mediation"},{"refs":[{"id":"ref-for-user-mediated\u2460\u2461"}],"title":"5.1. Storing and Updating Credentials"},{"refs":[{"id":"ref-for-user-mediated\u2460\u2462"},{"id":"ref-for-user-mediated\u2460\u2463"},{"id":"ref-for-user-mediated\u2460\u2464"}],"title":"5.2. Requiring User Mediation"},{"refs":[{"id":"ref-for-user-mediated\u2460\u2465"}],"title":"5.3. Credential Selection"},{"refs":[{"id":"ref-for-user-mediated\u2460\u2466"}],"title":"6.1. Cross-domain credential access"},{"refs":[{"id":"ref-for-user-mediated\u2460\u2467"}],"title":"8.2. Extension Points"}],"url":"#user-mediated"},
-};
-
-document.addEventListener("DOMContentLoaded", ()=>{
-    genAllDfnPanels();
-
-    document.body.addEventListener("click", (e) => {
-        // If not handled already, just hide all dfn panels.
-        hideAllDfnPanels();
-    });
-});
-
-window.addEventListener("resize", () => {
-    // Pin any visible dfn panel
-    queryAll(".dfn-panel.on, .dfn-panel.activated").forEach(el=>positionDfnPanel(el));
-});
-
-function genAllDfnPanels() {
-    for(const panelData of Object.values(dfnPanelData)) {
-        const dfnID = panelData.dfnID;
-        const dfn = document.getElementById(dfnID);
-        if(!dfn) {
-            console.log(`Can't find dfn#${dfnID}.`, panelData);
-            continue;
-        }
-        dfn.panelData = panelData;
-        insertDfnPopupAction(dfn);
-    }
-}
-
-function genDfnPanel(dfn, { dfnID, url, dfnText, refSections, external }) {
-    const dfnPanel = mk.aside({
-        class: "dfn-panel on",
-        id: `infopanel-for-${dfnID}`,
-        "data-for": dfnID,
-        "aria-labelled-by":`infopaneltitle-for-${dfnID}`,
-        },
-        mk.span({id:`infopaneltitle-for-${dfnID}`, style:"display:none"},
-            `Info about the '${dfnText}' ${external?"external":""} reference.`),
-        mk.a({href:url, class:"dfn-link"}, url),
-        refSections.length == 0 ? [] :
-            mk.b({}, "Referenced in:"),
-            mk.ul({},
-                ...refSections.map(section=>
-                    mk.li({},
-                        ...section.refs.map((ref, refI)=>
-                            [
-                                mk.a({ href: `#${ref.id}` },
-                                    (refI == 0) ? section.title : `(${refI + 1})`
-                                ),
-                                " ",
-                            ]
-                        ),
-                    ),
-                ),
-            ),
-        genLinkingSyntaxes(dfn),
-    );
-
-    dfnPanel.addEventListener('click', (event) => {
-        if (event.target.nodeName == 'A') {
-            scrollToTargetAndHighlight(event);
-            pinDfnPanel(dfnPanel);
-        }
-        event.stopPropagation();
-        refocusOnTarget(event);
-    });
-    dfnPanel.addEventListener('keydown', (event) => {
-        if(event.keyCode == 27) { // Escape key
-            hideDfnPanel({dfnPanel});
-            event.stopPropagation();
-            event.preventDefault();
-        }
-    });
-
-    dfnPanel.dfn = dfn;
-    dfn.dfnPanel = dfnPanel;
-    return dfnPanel;
-}
-
-
-
-function hideAllDfnPanels() {
-    // Delete the currently-active dfn panel.
-    queryAll(".dfn-panel").forEach(dfnPanel=>hideDfnPanel({dfnPanel}));
-}
-
-function showDfnPanel(dfn) {
-    hideAllDfnPanels(); // Only display one at a time.
-
-    dfn.setAttribute("aria-expanded", "true");
-
-    const dfnPanel = genDfnPanel(dfn, dfn.panelData);
-
-    // Give the dfn a unique tabindex, and then
-    // give all the tabbable panel bits successive indexes.
-    let tabIndex = 100;
-    dfn.tabIndex = tabIndex++;
-    const tabbable = dfnPanel.querySelectorAll(":is(a, button)");
-    for (const el of tabbable) {
-        el.tabIndex = tabIndex++;
-    }
-
-    append(document.body, dfnPanel);
-    positionDfnPanel(dfnPanel);
-}
-
-function positionDfnPanel(dfnPanel) {
-    const dfn = dfnPanel.dfn;
-    const dfnPos = getBounds(dfn);
-    dfnPanel.style.top = dfnPos.bottom + "px";
-    dfnPanel.style.left = dfnPos.left + "px";
-
-    const panelPos = dfnPanel.getBoundingClientRect();
-    const panelMargin = 8;
-    const maxRight = document.body.parentNode.clientWidth - panelMargin;
-    if (panelPos.right > maxRight) {
-        const overflowAmount = panelPos.right - maxRight;
-        const newLeft = Math.max(panelMargin, dfnPos.left - overflowAmount);
-        dfnPanel.style.left = newLeft + "px";
-    }
-}
-
-function pinDfnPanel(dfnPanel) {
-    // Switch it to "activated" state, which pins it.
-    dfnPanel.classList.add("activated");
-    dfnPanel.style.position = "fixed";
-    dfnPanel.style.left = null;
-    dfnPanel.style.top = null;
-}
-
-function hideDfnPanel({dfn, dfnPanel}) {
-    if(!dfnPanel) dfnPanel = dfn.dfnPanel;
-    if(!dfn) dfn = dfnPanel.dfn;
-    dfn.dfnPanel = undefined;
-    dfnPanel.dfn = undefined;
-    dfn.setAttribute("aria-expanded", "false");
-    dfn.tabIndex = undefined;
-    dfnPanel.remove()
-}
-
-function toggleDfnPanel(dfn) {
-    if(dfn.dfnPanel) {
-        hideDfnPanel(dfn);
-    } else {
-        showDfnPanel(dfn);
-    }
-}
-
-function insertDfnPopupAction(dfn) {
-    dfn.setAttribute('role', 'button');
-    dfn.setAttribute('aria-expanded', 'false')
-    dfn.tabIndex = 0;
-    dfn.classList.add('has-dfn-panel');
-    dfn.addEventListener('click', (event) => {
-        toggleDfnPanel(dfn);
-        event.stopPropagation();
-    });
-    dfn.addEventListener('keypress', (event) => {
-        const kc = event.keyCode;
-        // 32->Space, 13->Enter
-        if(kc == 32 || kc == 13) {
-            toggleDfnPanel(dfn);
-            event.stopPropagation();
-            event.preventDefault();
-        }
-    });
-}
-
-function refocusOnTarget(event) {
-    const target = event.target;
-    setTimeout(() => {
-        // Refocus on the event.target element.
-        // This is needed after browser scrolls to the destination.
-        target.focus();
-    });
-}
-
-// TODO: shared util
-// Returns the root-level absolute position {left and top} of element.
-function getBounds(el, relativeTo=document.body) {
-    const relativeRect = relativeTo.getBoundingClientRect();
-    const elRect = el.getBoundingClientRect();
-    const top = elRect.top - relativeRect.top;
-    const left = elRect.left - relativeRect.left;
-    return {
-        top,
-        left,
-        bottom: top + elRect.height,
-        right: left + elRect.width,
-    }
-}
-
-function scrollToTargetAndHighlight(event) {
-    let hash = event.target.hash;
-    if (hash) {
-        hash = decodeURIComponent(hash.substring(1));
-        const dest = document.getElementById(hash);
-        if (dest) {
-            dest.classList.add('highlighted');
-            setTimeout(() => dest.classList.remove('highlighted'), 1000);
-        }
-    }
-}
-
-// Functions, divided by link type, that wrap an autolink's
-// contents with the appropriate outer syntax.
-// Alternately, a string naming another type they format
-// the same as.
-function needsFor(type) {
-    switch(type) {
-        case "descriptor":
-        case "value":
-        case "element-attr":
-        case "attr-value":
-        case "element-state":
-        case "method":
-        case "constructor":
-        case "argument":
-        case "attribute":
-        case "const":
-        case "dict-member":
-        case "event":
-        case "enum-value":
-        case "stringifier":
-        case "serializer":
-        case "iterator":
-        case "maplike":
-        case "setlike":
-        case "state":
-        case "mode":
-        case "context":
-        case "facet": return true;
-
-        default: return false;
-    }
-}
-function refusesFor(type) {
-    switch(type) {
-        case "property":
-        case "element":
-        case "interface":
-        case "namespace":
-        case "callback":
-        case "dictionary":
-        case "enum":
-        case "exception":
-        case "typedef":
-        case "http-header":
-        case "permission": return true;
-
-        default: return false;
-    }
-}
-function linkFormatterFromType(type) {
-    switch(type) {
-        case 'scheme':
-        case 'permission':
-        case 'dfn': return (text) => `[=${text}=]`;
-
-        case 'abstract-op': return (text) => `[\$${text}\$]`;
-
-        case 'function':
-        case 'at-rule':
-        case 'selector':
-        case 'value': return (text) => `''${text}''`;
-
-        case 'http-header': return (text) => `[:${text}:]`;
-
-        case 'interface':
-        case 'constructor':
-        case 'method':
-        case 'argument':
-        case 'attribute':
-        case 'callback':
-        case 'dictionary':
-        case 'dict-member':
-        case 'enum':
-        case 'enum-value':
-        case 'exception':
-        case 'const':
-        case 'typedef':
-        case 'stringifier':
-        case 'serializer':
-        case 'iterator':
-        case 'maplike':
-        case 'setlike':
-        case 'extended-attribute':
-        case 'event':
-        case 'idl': return (text) => `{{${text}}}`;
-
-        case 'element-state':
-        case 'element-attr':
-        case 'attr-value':
-        case 'element': return (element) => `<{${element}}>`;
-
-        case 'grammar': return (text) => `${text} (within a <pre class=prod>)`;
-
-        case 'type': return (text)=> `<<${text}>>`;
-
-        case 'descriptor':
-        case 'property': return (text) => `'${text}'`;
-
-        default: return;
-    };
-};
-
-function genLinkingSyntaxes(dfn) {
-    if(dfn.tagName != "DFN") return;
-
-    const type = dfn.getAttribute('data-dfn-type');
-    if(!type) {
-        console.log(`<dfn> doesn't have a data-dfn-type:`, dfn);
-        return [];
-    }
-
-    // Return a function that wraps link text based on the type
-    const linkFormatter = linkFormatterFromType(type);
-    if(!linkFormatter) {
-        console.log(`<dfn> has an unknown data-dfn-type:`, dfn);
-        return [];
-    }
-
-    let ltAlts;
-    if(dfn.hasAttribute('data-lt')) {
-        ltAlts = dfn.getAttribute('data-lt')
-            .split("|")
-            .map(x=>x.trim());
-    } else {
-        ltAlts = [dfn.textContent.trim()];
-    }
-    if(type == "type") {
-        // lt of "<foo>", but "foo" is the interior;
-        // <<foo/bar>> is how you write it with a for,
-        // not <foo/<bar>> or whatever.
-        for(var i = 0; i < ltAlts.length; i++) {
-            const lt = ltAlts[i];
-            const match = /<(.*)>/.exec(lt);
-            if(match) { ltAlts[i] = match[1]; }
-        }
-    }
-
-    let forAlts;
-    if(dfn.hasAttribute('data-dfn-for')) {
-        forAlts = dfn.getAttribute('data-dfn-for')
-            .split(",")
-            .map(x=>x.trim());
-    } else {
-        forAlts = [''];
-    }
-
-    let linkingSyntaxes = [];
-    if(!needsFor(type)) {
-        for(const lt of ltAlts) {
-            linkingSyntaxes.push(linkFormatter(lt));
-        }
-    }
-    if(!refusesFor(type)) {
-        for(const f of forAlts) {
-            linkingSyntaxes.push(linkFormatter(`${f}/${ltAlts[0]}`))
-        }
-    }
-    return [
-        mk.b({}, 'Possible linking syntaxes:'),
-        mk.ul({},
-            ...linkingSyntaxes.map(link => {
-                const copyLink = async () =>
-                    await navigator.clipboard.writeText(link);
-                return mk.li({},
-                    mk.div({ class: 'link-item' },
-                        mk.button({
-                            class: 'copy-icon', title: 'Copy',
-                            type: 'button',
-                            _onclick: copyLink,
-                            tabindex: 0,
-                        }, mk.span({ class: 'icon' }) ),
-                        mk.span({}, link)
-                    )
-                );
-            })
-        )
-    ];
-}
-}
-</script>
-<script>/* Boilerplate: script-position-annos */
-"use strict";
-{
-function repositionAnnoPanels(){
-    const panels = [...document.querySelectorAll("[data-anno-for]")];
-    hydratePanels(panels);
-    let vSoFar = 0;
-    for(const panel of panels.sort(cmpTops)) {
-        if(panel.top < vSoFar) {
-            panel.top = vSoFar;
-            panel.style.top = vSoFar + "px";
-        }
-        vSoFar = panel.top + panel.height + 15;
-    }
-}
-function hydratePanels(panels) {
-    const main = document.querySelector("main");
-    let mainRect;
-    if(main) mainRect = main.getBoundingClientRect();
-    // First display them all, if they're not already visible.
-    for(const panel of panels) {
-        panel.classList.remove("unpositioned");
-    }
-    // Measure them all
-    for(const panel of panels) {
-        const dfn = document.getElementById(panel.getAttribute("data-anno-for"));
-        if(!dfn) {
-            console.log("Can't find the annotation panel target:", panel);
-            continue;
-        }
-        panel.dfn = dfn;
-        panel.top = window.scrollY + dfn.getBoundingClientRect().top;
-        let panelRect = panel.getBoundingClientRect();
-        panel.height = panelRect.height;
-        if(main) {
-            panel.overlappingMain = panelRect.left < mainRect.right;
-        } else {
-            panel.overlappingMain = false;
-        }
-    }
-    // And finally position them
-    for(const panel of panels) {
-        const dfn = panel.dfn;
-        if(!dfn) continue;
-        panel.style.top = panel.top + "px";
-        panel.classList.toggle("overlapping-main", panel.overlappingMain);
-    }
-}
-
-function cmpTops(a,b) {
-    return a.top - b.top;
-}
-
-window.addEventListener("load", repositionAnnoPanels);
-window.addEventListener("resize", repositionAnnoPanels);
-}
-</script>
-<script>/* Boilerplate: script-ref-hints */
-"use strict";
-{
-let refsData = {
-"#abstract-opdef-ask-the-user-to-choose-a-credential": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"ask to choose","type":"abstract-op","url":"#abstract-opdef-ask-the-user-to-choose-a-credential"},
-"#abstract-opdef-collect-credentials-from-the-credential-store": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"collect local","type":"abstract-op","url":"#abstract-opdef-collect-credentials-from-the-credential-store"},
-"#abstract-opdef-create-a-credential": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"Create a Credential","type":"abstract-op","url":"#abstract-opdef-create-a-credential"},
-"#abstract-opdef-create-a-federatedcredential-from-federatedcredentialinit": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"Create a FederatedCredential from FederatedCredentialInit","type":"abstract-op","url":"#abstract-opdef-create-a-federatedcredential-from-federatedcredentialinit"},
-"#abstract-opdef-create-a-passwordcredential-from-an-htmlformelement": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"Create a PasswordCredential from an HTMLFormElement","type":"abstract-op","url":"#abstract-opdef-create-a-passwordcredential-from-an-htmlformelement"},
-"#abstract-opdef-create-a-passwordcredential-from-passwordcredentialdata": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"Create a PasswordCredential from PasswordCredentialData","type":"abstract-op","url":"#abstract-opdef-create-a-passwordcredential-from-passwordcredentialdata"},
-"#abstract-opdef-credential-store-retrieve-a-list-of-credentials": {"export":true,"for_":["credential store"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"Retrieve a list of credentials","type":"abstract-op","url":"#abstract-opdef-credential-store-retrieve-a-list-of-credentials"},
-"#abstract-opdef-prevent-silent-access": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"Prevent Silent Access","type":"abstract-op","url":"#abstract-opdef-prevent-silent-access"},
-"#abstract-opdef-request-a-credential": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"Request a Credential","type":"abstract-op","url":"#abstract-opdef-request-a-credential"},
-"#abstract-opdef-store-a-credential": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"Store a Credential","type":"abstract-op","url":"#abstract-opdef-store-a-credential"},
-"#active-credential-types": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"active credential types","type":"dfn","url":"#active-credential-types"},
-"#concept-credential": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"credential","type":"dfn","url":"#concept-credential"},
-"#concept-credential-store": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"credential store","type":"dfn","url":"#concept-credential-store"},
-"#credential": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"Credential","type":"interface","url":"#credential"},
-"#credential-chooser": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"credential chooser","type":"dfn","url":"#credential-chooser"},
-"#credential-credential-type": {"export":true,"for_":["credential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"credential type","type":"dfn","url":"#credential-credential-type"},
-"#credential-effective": {"export":true,"for_":["credential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"effective","type":"dfn","url":"#credential-effective"},
-"#credential-origin-bound": {"export":true,"for_":["Credential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"origin bound","type":"dfn","url":"#credential-origin-bound"},
-"#credential-source": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"credential source","type":"dfn","url":"#credential-source"},
-"#credential-type-registry-appropriate-interface-object": {"export":true,"for_":["credential type registry"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"appropriate interface object","type":"dfn","url":"#credential-type-registry-appropriate-interface-object"},
-"#credential-type-registry-credential-type": {"export":true,"for_":["credential type registry"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"credential type","type":"dfn","url":"#credential-type-registry-credential-type"},
-"#credential-type-registry-options-member-identifier": {"export":true,"for_":["credential type registry"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"options member identifier","type":"dfn","url":"#credential-type-registry-options-member-identifier"},
-"#credentialrequestoptions-matchable-a-priori": {"export":true,"for_":["CredentialRequestOptions"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"matchable a priori","type":"dfn","url":"#credentialrequestoptions-matchable-a-priori"},
-"#credentialrequestoptions-relevant-credential-interface-objects": {"export":true,"for_":["CredentialCreationOptions","CredentialRequestOptions"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"relevant credential interface objects","type":"dfn","url":"#credentialrequestoptions-relevant-credential-interface-objects"},
-"#credentialscontainer": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"CredentialsContainer","type":"interface","url":"#credentialscontainer"},
-"#credentialuserdata": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"CredentialUserData","type":"interface","url":"#credentialuserdata"},
-"#dictdef-credentialcreationoptions": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"CredentialCreationOptions","type":"dictionary","url":"#dictdef-credentialcreationoptions"},
-"#dictdef-credentialdata": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"CredentialData","type":"dictionary","url":"#dictdef-credentialdata"},
-"#dictdef-credentialrequestoptions": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"CredentialRequestOptions","type":"dictionary","url":"#dictdef-credentialrequestoptions"},
-"#dictdef-federatedcredentialinit": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"FederatedCredentialInit","type":"dictionary","url":"#dictdef-federatedcredentialinit"},
-"#dictdef-federatedcredentialrequestoptions": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"FederatedCredentialRequestOptions","type":"dictionary","url":"#dictdef-federatedcredentialrequestoptions"},
-"#dictdef-passwordcredentialdata": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"PasswordCredentialData","type":"dictionary","url":"#dictdef-passwordcredentialdata"},
-"#dom-credential-collectfromcredentialstore-slot": {"export":true,"for_":["Credential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"[[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)","type":"method","url":"#dom-credential-collectfromcredentialstore-slot"},
-"#dom-credential-create-slot": {"export":true,"for_":["Credential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"[[Create]](origin, options, sameOriginWithAncestors)","type":"method","url":"#dom-credential-create-slot"},
-"#dom-credential-discoverfromexternalsource-slot": {"export":true,"for_":["Credential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"[[DiscoverFromExternalSource]](origin, options, sameOriginWithAncestors)","type":"method","url":"#dom-credential-discoverfromexternalsource-slot"},
-"#dom-credential-discovery-credential-store": {"export":true,"for_":["Credential/[[discovery]]"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"credential store","type":"enum-value","url":"#dom-credential-discovery-credential-store"},
-"#dom-credential-discovery-slot": {"export":true,"for_":["Credential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"[[discovery]]","type":"attribute","url":"#dom-credential-discovery-slot"},
-"#dom-credential-id": {"export":true,"for_":["Credential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"id","type":"attribute","url":"#dom-credential-id"},
-"#dom-credential-isconditionalmediationavailable": {"export":true,"for_":["Credential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"isConditionalMediationAvailable()","type":"method","url":"#dom-credential-isconditionalmediationavailable"},
-"#dom-credential-origin-slot": {"export":true,"for_":["Credential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"[[origin]]","type":"attribute","url":"#dom-credential-origin-slot"},
-"#dom-credential-store-slot": {"export":true,"for_":["Credential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"[[Store]](credential, sameOriginWithAncestors)","type":"method","url":"#dom-credential-store-slot"},
-"#dom-credential-type": {"export":true,"for_":["Credential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"type","type":"attribute","url":"#dom-credential-type"},
-"#dom-credential-type-password": {"export":true,"for_":["Credential/[[type]]"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"password","type":"const","url":"#dom-credential-type-password"},
-"#dom-credential-type-slot": {"export":true,"for_":["Credential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"[[type]]","type":"attribute","url":"#dom-credential-type-slot"},
-"#dom-credentialcreationoptions-federated": {"export":true,"for_":["CredentialCreationOptions"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"federated","type":"dict-member","url":"#dom-credentialcreationoptions-federated"},
-"#dom-credentialcreationoptions-password": {"export":true,"for_":["CredentialCreationOptions"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"password","type":"dict-member","url":"#dom-credentialcreationoptions-password"},
-"#dom-credentialcreationoptions-signal": {"export":true,"for_":["CredentialCreationOptions"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"signal","type":"dict-member","url":"#dom-credentialcreationoptions-signal"},
-"#dom-credentialdata-id": {"export":true,"for_":["CredentialData"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"id","type":"dict-member","url":"#dom-credentialdata-id"},
-"#dom-credentialmediationrequirement-conditional": {"export":true,"for_":["CredentialMediationRequirement"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"conditional","type":"enum-value","url":"#dom-credentialmediationrequirement-conditional"},
-"#dom-credentialmediationrequirement-optional": {"export":true,"for_":["CredentialMediationRequirement"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"optional","type":"enum-value","url":"#dom-credentialmediationrequirement-optional"},
-"#dom-credentialmediationrequirement-required": {"export":true,"for_":["CredentialMediationRequirement"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"\"required\"","type":"enum-value","url":"#dom-credentialmediationrequirement-required"},
-"#dom-credentialmediationrequirement-silent": {"export":true,"for_":["CredentialMediationRequirement"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"silent","type":"enum-value","url":"#dom-credentialmediationrequirement-silent"},
-"#dom-credentialrequestoptions-federated": {"export":true,"for_":["CredentialRequestOptions"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"federated","type":"dict-member","url":"#dom-credentialrequestoptions-federated"},
-"#dom-credentialrequestoptions-mediation": {"export":true,"for_":["CredentialRequestOptions"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"mediation","type":"dict-member","url":"#dom-credentialrequestoptions-mediation"},
-"#dom-credentialrequestoptions-password": {"export":true,"for_":["CredentialRequestOptions"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"password","type":"dict-member","url":"#dom-credentialrequestoptions-password"},
-"#dom-credentialrequestoptions-signal": {"export":true,"for_":["CredentialRequestOptions"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"signal","type":"dict-member","url":"#dom-credentialrequestoptions-signal"},
-"#dom-credentialscontainer-create": {"export":true,"for_":["CredentialsContainer"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"create(options)","type":"method","url":"#dom-credentialscontainer-create"},
-"#dom-credentialscontainer-create-options-options": {"export":true,"for_":["CredentialsContainer/create(options)"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"options","type":"argument","url":"#dom-credentialscontainer-create-options-options"},
-"#dom-credentialscontainer-get": {"export":true,"for_":["CredentialsContainer"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"get(options)","type":"method","url":"#dom-credentialscontainer-get"},
-"#dom-credentialscontainer-get-options-options": {"export":true,"for_":["CredentialsContainer/get(options)"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"options","type":"argument","url":"#dom-credentialscontainer-get-options-options"},
-"#dom-credentialscontainer-preventsilentaccess": {"export":true,"for_":["CredentialsContainer"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"preventSilentAccess()","type":"method","url":"#dom-credentialscontainer-preventsilentaccess"},
-"#dom-credentialscontainer-store": {"export":true,"for_":["CredentialsContainer"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"store()","type":"method","url":"#dom-credentialscontainer-store"},
-"#dom-credentialscontainer-store-credential-credential": {"export":true,"for_":["CredentialsContainer/store(credential)"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"credential","type":"argument","url":"#dom-credentialscontainer-store-credential-credential"},
-"#dom-credentialuserdata-iconurl": {"export":true,"for_":["CredentialUserData"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"iconURL","type":"attribute","url":"#dom-credentialuserdata-iconurl"},
-"#dom-credentialuserdata-name": {"export":true,"for_":["CredentialUserData"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"name","type":"attribute","url":"#dom-credentialuserdata-name"},
-"#dom-federatedcredential-collectfromcredentialstore-slot": {"export":true,"for_":["FederatedCredential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"[[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)","type":"method","url":"#dom-federatedcredential-collectfromcredentialstore-slot"},
-"#dom-federatedcredential-create-slot": {"export":true,"for_":["FederatedCredential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"[[Create]](origin, options, sameOriginWithAncestors)","type":"method","url":"#dom-federatedcredential-create-slot"},
-"#dom-federatedcredential-federated": {"export":true,"for_":["FederatedCredential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"federated","type":"const","url":"#dom-federatedcredential-federated"},
-"#dom-federatedcredential-federatedcredential": {"export":true,"for_":["FederatedCredential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"FederatedCredential(data)","type":"constructor","url":"#dom-federatedcredential-federatedcredential"},
-"#dom-federatedcredential-protocol": {"export":true,"for_":["FederatedCredential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"protocol","type":"attribute","url":"#dom-federatedcredential-protocol"},
-"#dom-federatedcredential-provider": {"export":true,"for_":["FederatedCredential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"provider","type":"attribute","url":"#dom-federatedcredential-provider"},
-"#dom-federatedcredential-store-slot": {"export":true,"for_":["FederatedCredential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"[[Store]](credential, sameOriginWithAncestors)","type":"method","url":"#dom-federatedcredential-store-slot"},
-"#dom-federatedcredentialinit-origin": {"export":true,"for_":["FederatedCredentialInit"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"origin","type":"dict-member","url":"#dom-federatedcredentialinit-origin"},
-"#dom-federatedcredentialinit-provider": {"export":true,"for_":["FederatedCredentialInit"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"provider","type":"dict-member","url":"#dom-federatedcredentialinit-provider"},
-"#dom-federatedcredentialrequestoptions-protocols": {"export":true,"for_":["FederatedCredentialRequestOptions"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"protocols","type":"dict-member","url":"#dom-federatedcredentialrequestoptions-protocols"},
-"#dom-federatedcredentialrequestoptions-providers": {"export":true,"for_":["FederatedCredentialRequestOptions"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"providers","type":"dict-member","url":"#dom-federatedcredentialrequestoptions-providers"},
-"#dom-navigator-credentials": {"export":true,"for_":["Navigator"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"credentials","type":"attribute","url":"#dom-navigator-credentials"},
-"#dom-passwordcredential-collectfromcredentialstore-slot": {"export":true,"for_":["PasswordCredential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"[[CollectFromCredentialStore]](origin, options, sameOriginWithAncestors)","type":"method","url":"#dom-passwordcredential-collectfromcredentialstore-slot"},
-"#dom-passwordcredential-create-slot": {"export":true,"for_":["PasswordCredential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"[[Create]](origin, options, sameOriginWithAncestors)","type":"method","url":"#dom-passwordcredential-create-slot"},
-"#dom-passwordcredential-password": {"export":true,"for_":["PasswordCredential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"password","type":"attribute","url":"#dom-passwordcredential-password"},
-"#dom-passwordcredential-passwordcredential": {"export":true,"for_":["PasswordCredential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"PasswordCredential(form)","type":"constructor","url":"#dom-passwordcredential-passwordcredential"},
-"#dom-passwordcredential-passwordcredential-data": {"export":true,"for_":["PasswordCredential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"PasswordCredential(data)","type":"constructor","url":"#dom-passwordcredential-passwordcredential-data"},
-"#dom-passwordcredential-store-slot": {"export":true,"for_":["PasswordCredential"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"[[Store]](credential, sameOriginWithAncestors)","type":"method","url":"#dom-passwordcredential-store-slot"},
-"#dom-passwordcredentialdata-iconurl": {"export":true,"for_":["PasswordCredentialData"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"iconURL","type":"dict-member","url":"#dom-passwordcredentialdata-iconurl"},
-"#dom-passwordcredentialdata-name": {"export":true,"for_":["PasswordCredentialData"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"name","type":"dict-member","url":"#dom-passwordcredentialdata-name"},
-"#dom-passwordcredentialdata-origin": {"export":true,"for_":["PasswordCredentialData"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"origin","type":"dict-member","url":"#dom-passwordcredentialdata-origin"},
-"#dom-passwordcredentialdata-password": {"export":true,"for_":["PasswordCredentialData"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"password","type":"dict-member","url":"#dom-passwordcredentialdata-password"},
-"#enumdef-credentialmediationrequirement": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"CredentialMediationRequirement","type":"enum","url":"#enumdef-credentialmediationrequirement"},
-"#federatedcredential": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"FederatedCredential","type":"interface","url":"#federatedcredential"},
-"#origin-prevent-silent-access-flag": {"export":true,"for_":["origin"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"prevent silent access flag","type":"dfn","url":"#origin-prevent-silent-access-flag"},
-"#origin-requires-user-mediation": {"export":true,"for_":["origin"],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"requires user mediation","type":"dfn","url":"#origin-requires-user-mediation"},
-"#passwordcredential": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"PasswordCredential","type":"interface","url":"#passwordcredential"},
-"#same-origin-with-its-ancestors": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"same-origin with its ancestors","type":"dfn","url":"#same-origin-with-its-ancestors"},
-"#typedefdef-passwordcredentialinit": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"PasswordCredentialInit","type":"typedef","url":"#typedefdef-passwordcredentialinit"},
-"#user-mediated": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"credential-management","spec":"credential-management-1","status":"local","text":"user mediation","type":"dfn","url":"#user-mediated"},
-"https://dom.spec.whatwg.org/#abortsignal": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"dom","spec":"dom","status":"current","text":"AbortSignal","type":"interface","url":"https://dom.spec.whatwg.org/#abortsignal"},
-"https://dom.spec.whatwg.org/#abortsignal-abort-reason": {"export":true,"for_":["AbortSignal"],"level":"1","normative":true,"shortname":"dom","spec":"dom","status":"current","text":"abort reason","type":"dfn","url":"https://dom.spec.whatwg.org/#abortsignal-abort-reason"},
-"https://dom.spec.whatwg.org/#abortsignal-aborted": {"export":true,"for_":["AbortSignal"],"level":"1","normative":true,"shortname":"dom","spec":"dom","status":"current","text":"aborted","type":"dfn","url":"https://dom.spec.whatwg.org/#abortsignal-aborted"},
-"https://dom.spec.whatwg.org/#concept-tree-order": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"dom","spec":"dom","status":"current","text":"tree order","type":"dfn","url":"https://dom.spec.whatwg.org/#concept-tree-order"},
-"https://fedidcg.github.io/FedCM/#dom-credentialrequestoptions-identity": {"export":true,"for_":["CredentialRequestOptions"],"level":"1","normative":true,"shortname":"fedcm","spec":"fedcm","status":"current","text":"identity","type":"dict-member","url":"https://fedidcg.github.io/FedCM/#dom-credentialrequestoptions-identity"},
-"https://fedidcg.github.io/FedCM/#identity-credentials-get": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"fedcm","spec":"fedcm","status":"current","text":"identity-credentials-get","type":"dfn","url":"https://fedidcg.github.io/FedCM/#identity-credentials-get"},
-"https://fedidcg.github.io/FedCM/#identitycredential": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"fedcm","spec":"fedcm","status":"current","text":"IdentityCredential","type":"interface","url":"https://fedidcg.github.io/FedCM/#identitycredential"},
-"https://fetch.spec.whatwg.org/#concept-request-client": {"export":true,"for_":["request"],"level":"1","normative":true,"shortname":"fetch","spec":"fetch","status":"current","text":"client","type":"dfn","url":"https://fetch.spec.whatwg.org/#concept-request-client"},
-"https://fetch.spec.whatwg.org/#concept-request-credentials-mode": {"export":true,"for_":["request"],"level":"1","normative":true,"shortname":"fetch","spec":"fetch","status":"current","text":"credentials mode","type":"dfn","url":"https://fetch.spec.whatwg.org/#concept-request-credentials-mode"},
-"https://fetch.spec.whatwg.org/#concept-request-destination": {"export":true,"for_":["request"],"level":"1","normative":true,"shortname":"fetch","spec":"fetch","status":"current","text":"destination","type":"dfn","url":"https://fetch.spec.whatwg.org/#concept-request-destination"},
-"https://fetch.spec.whatwg.org/#concept-request-initiator": {"export":true,"for_":["request"],"level":"1","normative":true,"shortname":"fetch","spec":"fetch","status":"current","text":"initiator","type":"dfn","url":"https://fetch.spec.whatwg.org/#concept-request-initiator"},
-"https://fetch.spec.whatwg.org/#dom-global-fetch": {"export":true,"for_":["WindowOrWorkerGlobalScope"],"level":"1","normative":true,"shortname":"fetch","spec":"fetch","status":"current","text":"fetch(input)","type":"method","url":"https://fetch.spec.whatwg.org/#dom-global-fetch"},
-"https://fetch.spec.whatwg.org/#request-service-workers-mode": {"export":true,"for_":["request"],"level":"1","normative":true,"shortname":"fetch","spec":"fetch","status":"current","text":"service-workers mode","type":"dfn","url":"https://fetch.spec.whatwg.org/#request-service-workers-mode"},
-"https://fetch.spec.whatwg.org/#response": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"fetch","spec":"fetch","status":"current","text":"Response","type":"interface","url":"https://fetch.spec.whatwg.org/#response"},
-"https://html.spec.whatwg.org/multipage/browsers.html#ascii-serialisation-of-an-origin": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"ascii serialization of an origin","type":"dfn","url":"https://html.spec.whatwg.org/multipage/browsers.html#ascii-serialisation-of-an-origin"},
-"https://html.spec.whatwg.org/multipage/browsers.html#concept-document-bc": {"export":true,"for_":["document"],"level":"","normative":true,"shortname":"html","spec":"html","status":"anchor-block","text":"browsing context","type":"dfn","url":"https://html.spec.whatwg.org/multipage/browsers.html#concept-document-bc"},
-"https://html.spec.whatwg.org/multipage/browsers.html#same-origin": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"same origin","type":"dfn","url":"https://html.spec.whatwg.org/multipage/browsers.html#same-origin"},
-"https://html.spec.whatwg.org/multipage/document-sequences.html#nav-document": {"export":true,"for_":["navigable"],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"active document","type":"dfn","url":"https://html.spec.whatwg.org/multipage/document-sequences.html#nav-document"},
-"https://html.spec.whatwg.org/multipage/document-sequences.html#nav-parent": {"export":true,"for_":["navigable"],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"parent","type":"dfn","url":"https://html.spec.whatwg.org/multipage/document-sequences.html#nav-parent"},
-"https://html.spec.whatwg.org/multipage/document-sequences.html#node-navigable": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"node navigable","type":"dfn","url":"https://html.spec.whatwg.org/multipage/document-sequences.html#node-navigable"},
-"https://html.spec.whatwg.org/multipage/document-sequences.html#top-level-browsing-context": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"top-level browsing context","type":"dfn","url":"https://html.spec.whatwg.org/multipage/document-sequences.html#top-level-browsing-context"},
-"https://html.spec.whatwg.org/multipage/form-control-infrastructure.html#autofill-detail-tokens": {"export":false,"for_":[],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"autofill detail tokens","type":"dfn","url":"https://html.spec.whatwg.org/multipage/form-control-infrastructure.html#autofill-detail-tokens"},
-"https://html.spec.whatwg.org/multipage/form-control-infrastructure.html#form-owner": {"export":true,"for_":["button","fieldset","input","object","output","select","textarea","img","form-associated custom element"],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"form owner","type":"dfn","url":"https://html.spec.whatwg.org/multipage/form-control-infrastructure.html#form-owner"},
-"https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete": {"export":true,"for_":["input"],"level":"","normative":true,"shortname":"html","spec":"html","status":"anchor-block","text":"autocomplete","type":"element-attr","url":"https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete"},
-"https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-current-password": {"export":true,"for_":["autocomplete"],"level":"","normative":true,"shortname":"html","spec":"html","status":"anchor-block","text":"current-password","type":"attr-value","url":"https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-current-password"},
-"https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-name": {"export":true,"for_":["autocomplete"],"level":"","normative":true,"shortname":"html","spec":"html","status":"anchor-block","text":"name","type":"attr-value","url":"https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-name"},
-"https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-new-password": {"export":true,"for_":["autocomplete"],"level":"","normative":true,"shortname":"html","spec":"html","status":"anchor-block","text":"new-password","type":"attr-value","url":"https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-new-password"},
-"https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-nickname": {"export":true,"for_":["autocomplete"],"level":"","normative":true,"shortname":"html","spec":"html","status":"anchor-block","text":"nickname","type":"attr-value","url":"https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-nickname"},
-"https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-photo": {"export":true,"for_":["autocomplete"],"level":"","normative":true,"shortname":"html","spec":"html","status":"anchor-block","text":"photo","type":"attr-value","url":"https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-photo"},
-"https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-username": {"export":true,"for_":["autocomplete"],"level":"","normative":true,"shortname":"html","spec":"html","status":"anchor-block","text":"username","type":"attr-value","url":"https://html.spec.whatwg.org/multipage/forms.html#attr-fe-autocomplete-username"},
-"https://html.spec.whatwg.org/multipage/forms.html#attr-fe-name": {"export":true,"for_":["input"],"level":"","normative":true,"shortname":"html","spec":"html","status":"anchor-block","text":"name","type":"element-attr","url":"https://html.spec.whatwg.org/multipage/forms.html#attr-fe-name"},
-"https://html.spec.whatwg.org/multipage/forms.html#category-submit": {"export":false,"for_":[],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"submittable elements","type":"dfn","url":"https://html.spec.whatwg.org/multipage/forms.html#category-submit"},
-"https://html.spec.whatwg.org/multipage/forms.html#dom-form-submit": {"export":true,"for_":["HTMLFormElement"],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"submit()","type":"method","url":"https://html.spec.whatwg.org/multipage/forms.html#dom-form-submit"},
-"https://html.spec.whatwg.org/multipage/forms.html#htmlformelement": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"HTMLFormElement","type":"interface","url":"https://html.spec.whatwg.org/multipage/forms.html#htmlformelement"},
-"https://html.spec.whatwg.org/multipage/forms.html#the-form-element": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"form","type":"element","url":"https://html.spec.whatwg.org/multipage/forms.html#the-form-element"},
-"https://html.spec.whatwg.org/multipage/iframe-embed-object.html#allowed-to-use": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"allowed to use","type":"dfn","url":"https://html.spec.whatwg.org/multipage/iframe-embed-object.html#allowed-to-use"},
-"https://html.spec.whatwg.org/multipage/infrastructure.html#in-parallel": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"in parallel","type":"dfn","url":"https://html.spec.whatwg.org/multipage/infrastructure.html#in-parallel"},
-"https://html.spec.whatwg.org/multipage/nav-history-apis.html#concept-document-window": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"associated document","type":"dfn","url":"https://html.spec.whatwg.org/multipage/nav-history-apis.html#concept-document-window"},
-"https://html.spec.whatwg.org/multipage/origin.html#concept-origin": {"export":true,"for_":["html-origin-def"],"level":"","normative":true,"shortname":"html","spec":"html","status":"anchor-block","text":"origin","type":"dfn","url":"https://html.spec.whatwg.org/multipage/origin.html#concept-origin"},
-"https://html.spec.whatwg.org/multipage/system-state.html#navigator": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"Navigator","type":"interface","url":"https://html.spec.whatwg.org/multipage/system-state.html#navigator"},
-"https://html.spec.whatwg.org/multipage/webappapis.html#concept-relevant-global": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"relevant global object","type":"dfn","url":"https://html.spec.whatwg.org/multipage/webappapis.html#concept-relevant-global"},
-"https://html.spec.whatwg.org/multipage/webappapis.html#concept-relevant-realm": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"relevant realm","type":"dfn","url":"https://html.spec.whatwg.org/multipage/webappapis.html#concept-relevant-realm"},
-"https://html.spec.whatwg.org/multipage/webappapis.html#concept-settings-object-global": {"export":true,"for_":["environment settings object"],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"global object","type":"dfn","url":"https://html.spec.whatwg.org/multipage/webappapis.html#concept-settings-object-global"},
-"https://html.spec.whatwg.org/multipage/webappapis.html#concept-settings-object-origin": {"export":true,"for_":["environment settings object"],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"origin","type":"dfn","url":"https://html.spec.whatwg.org/multipage/webappapis.html#concept-settings-object-origin"},
-"https://html.spec.whatwg.org/multipage/webappapis.html#concept-task": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"task","type":"dfn","url":"https://html.spec.whatwg.org/multipage/webappapis.html#concept-task"},
-"https://html.spec.whatwg.org/multipage/webappapis.html#current-settings-object": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"current settings object","type":"dfn","url":"https://html.spec.whatwg.org/multipage/webappapis.html#current-settings-object"},
-"https://html.spec.whatwg.org/multipage/webappapis.html#dom-manipulation-task-source": {"export":true,"for_":[],"level":"","normative":true,"shortname":"html","spec":"html","status":"anchor-block","text":"dom manipulation task source","type":"dfn","url":"https://html.spec.whatwg.org/multipage/webappapis.html#dom-manipulation-task-source"},
-"https://html.spec.whatwg.org/multipage/webappapis.html#environment-settings-object": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"environment settings object","type":"dfn","url":"https://html.spec.whatwg.org/multipage/webappapis.html#environment-settings-object"},
-"https://html.spec.whatwg.org/multipage/webappapis.html#queue-a-task": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"queue a task","type":"dfn","url":"https://html.spec.whatwg.org/multipage/webappapis.html#queue-a-task"},
-"https://html.spec.whatwg.org/multipage/webappapis.html#secure-context": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"secure context","type":"dfn","url":"https://html.spec.whatwg.org/multipage/webappapis.html#secure-context"},
-"https://html.spec.whatwg.org/multipage/workers.html#worker": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"html","spec":"html","status":"current","text":"Worker","type":"interface","url":"https://html.spec.whatwg.org/multipage/workers.html#worker"},
-"https://infra.spec.whatwg.org/#ascii-case-insensitive": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"infra","spec":"infra","status":"current","text":"ascii case-insensitive","type":"dfn","url":"https://infra.spec.whatwg.org/#ascii-case-insensitive"},
-"https://infra.spec.whatwg.org/#list-contain": {"export":true,"for_":["list","stack","queue","set"],"level":"1","normative":true,"shortname":"infra","spec":"infra","status":"current","text":"contain","type":"dfn","url":"https://infra.spec.whatwg.org/#list-contain"},
-"https://infra.spec.whatwg.org/#list-empty": {"export":true,"for_":["list","stack","queue","set"],"level":"1","normative":true,"shortname":"infra","spec":"infra","status":"current","text":"empty","type":"dfn","url":"https://infra.spec.whatwg.org/#list-empty"},
-"https://infra.spec.whatwg.org/#list-remove": {"export":true,"for_":["list","set"],"level":"1","normative":true,"shortname":"infra","spec":"infra","status":"current","text":"remove","type":"dfn","url":"https://infra.spec.whatwg.org/#list-remove"},
-"https://infra.spec.whatwg.org/#list-size": {"export":true,"for_":["list","stack","queue","set"],"level":"1","normative":true,"shortname":"infra","spec":"infra","status":"current","text":"size","type":"dfn","url":"https://infra.spec.whatwg.org/#list-size"},
-"https://infra.spec.whatwg.org/#map-exists": {"export":true,"for_":["map"],"level":"1","normative":true,"shortname":"infra","spec":"infra","status":"current","text":"exist","type":"dfn","url":"https://infra.spec.whatwg.org/#map-exists"},
-"https://infra.spec.whatwg.org/#map-iterate": {"export":true,"for_":["map"],"level":"1","normative":true,"shortname":"infra","spec":"infra","status":"current","text":"for each","type":"dfn","url":"https://infra.spec.whatwg.org/#map-iterate"},
-"https://infra.spec.whatwg.org/#ordered-set": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"infra","spec":"infra","status":"current","text":"set","type":"dfn","url":"https://infra.spec.whatwg.org/#ordered-set"},
-"https://infra.spec.whatwg.org/#set-append": {"export":true,"for_":["set"],"level":"1","normative":true,"shortname":"infra","spec":"infra","status":"current","text":"append","type":"dfn","url":"https://infra.spec.whatwg.org/#set-append"},
-"https://publicsuffix.org/list/#": {"export":true,"for_":[],"level":"","normative":true,"shortname":"psl","spec":"psl","status":"anchor-block","text":"registerable domain","type":"dfn","url":"https://publicsuffix.org/list/#"},
-"https://tc39.github.io/ecma262/#sec-ordinary-object-internal-methods-and-internal-slots": {"export":true,"for_":[],"level":"","normative":true,"shortname":"ecma262","spec":"ecma262","status":"anchor-block","text":"internal method","type":"dfn","url":"https://tc39.github.io/ecma262/#sec-ordinary-object-internal-methods-and-internal-slots"},
-"https://webidl.spec.whatwg.org/#Exposed": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"webidl","spec":"webidl","status":"current","text":"Exposed","type":"extended-attribute","url":"https://webidl.spec.whatwg.org/#Exposed"},
-"https://webidl.spec.whatwg.org/#SameObject": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"webidl","spec":"webidl","status":"current","text":"SameObject","type":"extended-attribute","url":"https://webidl.spec.whatwg.org/#SameObject"},
-"https://webidl.spec.whatwg.org/#SecureContext": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"webidl","spec":"webidl","status":"current","text":"SecureContext","type":"extended-attribute","url":"https://webidl.spec.whatwg.org/#SecureContext"},
-"https://webidl.spec.whatwg.org/#a-new-promise": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"webidl","spec":"webidl","status":"current","text":"a new promise","type":"dfn","url":"https://webidl.spec.whatwg.org/#a-new-promise"},
-"https://webidl.spec.whatwg.org/#a-promise-rejected-with": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"webidl","spec":"webidl","status":"current","text":"a promise rejected with","type":"dfn","url":"https://webidl.spec.whatwg.org/#a-promise-rejected-with"},
-"https://webidl.spec.whatwg.org/#dfn-dictionary-member": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"webidl","spec":"webidl","status":"current","text":"dictionary members","type":"dfn","url":"https://webidl.spec.whatwg.org/#dfn-dictionary-member"},
-"https://webidl.spec.whatwg.org/#dfn-exception": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"webidl","spec":"webidl","status":"current","text":"exception","type":"dfn","url":"https://webidl.spec.whatwg.org/#dfn-exception"},
-"https://webidl.spec.whatwg.org/#dfn-identifier": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"webidl","spec":"webidl","status":"current","text":"identifier","type":"dfn","url":"https://webidl.spec.whatwg.org/#dfn-identifier"},
-"https://webidl.spec.whatwg.org/#dfn-inherit": {"export":true,"for_":["interface"],"level":"1","normative":true,"shortname":"webidl","spec":"webidl","status":"current","text":"inherit","type":"dfn","url":"https://webidl.spec.whatwg.org/#dfn-inherit"},
-"https://webidl.spec.whatwg.org/#dfn-interface-object": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"webidl","spec":"webidl","status":"current","text":"interface object","type":"dfn","url":"https://webidl.spec.whatwg.org/#dfn-interface-object"},
-"https://webidl.spec.whatwg.org/#dfn-interface-prototype-object": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"webidl","spec":"webidl","status":"current","text":"interface prototype object","type":"dfn","url":"https://webidl.spec.whatwg.org/#dfn-interface-prototype-object"},
-"https://webidl.spec.whatwg.org/#dfn-perform-steps-once-promise-is-settled": {"export":true,"for_":["promise"],"level":"1","normative":true,"shortname":"webidl","spec":"webidl","status":"current","text":"react","type":"dfn","url":"https://webidl.spec.whatwg.org/#dfn-perform-steps-once-promise-is-settled"},
-"https://webidl.spec.whatwg.org/#dfn-throw": {"export":true,"for_":["exception"],"level":"1","normative":true,"shortname":"webidl","spec":"webidl","status":"current","text":"throw","type":"dfn","url":"https://webidl.spec.whatwg.org/#dfn-throw"},
-"https://webidl.spec.whatwg.org/#exceptiondef-typeerror": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"webidl","spec":"webidl","status":"current","text":"TypeError","type":"exception","url":"https://webidl.spec.whatwg.org/#exceptiondef-typeerror"},
-"https://webidl.spec.whatwg.org/#idl-DOMException": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"webidl","spec":"webidl","status":"current","text":"DOMException","type":"interface","url":"https://webidl.spec.whatwg.org/#idl-DOMException"},
-"https://webidl.spec.whatwg.org/#idl-DOMString": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"webidl","spec":"webidl","status":"current","text":"DOMString","type":"interface","url":"https://webidl.spec.whatwg.org/#idl-DOMString"},
-"https://webidl.spec.whatwg.org/#idl-USVString": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"webidl","spec":"webidl","status":"current","text":"USVString","type":"interface","url":"https://webidl.spec.whatwg.org/#idl-USVString"},
-"https://webidl.spec.whatwg.org/#idl-boolean": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"webidl","spec":"webidl","status":"current","text":"boolean","type":"interface","url":"https://webidl.spec.whatwg.org/#idl-boolean"},
-"https://webidl.spec.whatwg.org/#idl-promise": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"webidl","spec":"webidl","status":"current","text":"Promise","type":"interface","url":"https://webidl.spec.whatwg.org/#idl-promise"},
-"https://webidl.spec.whatwg.org/#idl-sequence": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"webidl","spec":"webidl","status":"current","text":"sequence","type":"dfn","url":"https://webidl.spec.whatwg.org/#idl-sequence"},
-"https://webidl.spec.whatwg.org/#idl-undefined": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"webidl","spec":"webidl","status":"current","text":"undefined","type":"interface","url":"https://webidl.spec.whatwg.org/#idl-undefined"},
-"https://webidl.spec.whatwg.org/#notallowederror": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"webidl","spec":"webidl","status":"current","text":"NotAllowedError","type":"exception","url":"https://webidl.spec.whatwg.org/#notallowederror"},
-"https://webidl.spec.whatwg.org/#reject": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"webidl","spec":"webidl","status":"current","text":"reject","type":"dfn","url":"https://webidl.spec.whatwg.org/#reject"},
-"https://webidl.spec.whatwg.org/#resolve": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"webidl","spec":"webidl","status":"current","text":"resolve","type":"dfn","url":"https://webidl.spec.whatwg.org/#resolve"},
-"https://wicg.github.io/web-otp#otpcredential": {"export":true,"for_":[],"level":"","normative":true,"shortname":"web-otp","spec":"web-otp","status":"anchor-block","text":"OTPCredential","type":"interface","url":"https://wicg.github.io/web-otp#otpcredential"},
-"https://www.w3.org/2001/tag/doc/promises-guide#should-promise-call": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"promises-guide","spec":"promises-guide-1","status":"anchor-block","text":"promise-calling","type":"dfn","url":"https://www.w3.org/2001/tag/doc/promises-guide#should-promise-call"},
-"https://www.w3.org/TR/CSP3/#child-src": {"export":true,"for_":[],"level":"3","normative":true,"shortname":"csp","spec":"csp3","status":"snapshot","text":"child-src","type":"dfn","url":"https://www.w3.org/TR/CSP3/#child-src"},
-"https://www.w3.org/TR/CSP3/#connect-src": {"export":true,"for_":[],"level":"3","normative":true,"shortname":"csp","spec":"csp3","status":"snapshot","text":"connect-src","type":"dfn","url":"https://www.w3.org/TR/CSP3/#connect-src"},
-"https://www.w3.org/TR/CSP3/#form-action": {"export":true,"for_":[],"level":"3","normative":true,"shortname":"csp","spec":"csp3","status":"snapshot","text":"form-action","type":"dfn","url":"https://www.w3.org/TR/CSP3/#form-action"},
-"https://www.w3.org/TR/CSP3/#object-src": {"export":true,"for_":[],"level":"3","normative":true,"shortname":"csp","spec":"csp3","status":"snapshot","text":"object-src","type":"dfn","url":"https://www.w3.org/TR/CSP3/#object-src"},
-"https://www.w3.org/TR/CSP3/#script-src": {"export":true,"for_":[],"level":"3","normative":true,"shortname":"csp","spec":"csp3","status":"snapshot","text":"script-src","type":"dfn","url":"https://www.w3.org/TR/CSP3/#script-src"},
-"https://www.w3.org/TR/mixed-content/#a-priori-authenticated-url": {"export":true,"for_":[],"level":"1","normative":false,"shortname":"mixed-content","spec":"mixed-content","status":"snapshot","text":"a priori authenticated url","type":"dfn","url":"https://www.w3.org/TR/mixed-content/#a-priori-authenticated-url"},
-"https://www.w3.org/TR/permissions-policy-1/#policy-controlled-feature": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"permissions-policy","spec":"permissions-policy-1","status":"snapshot","text":"policy-controlled feature","type":"dfn","url":"https://www.w3.org/TR/permissions-policy-1/#policy-controlled-feature"},
-"https://www.w3.org/TR/webauthn-3/#dom-credentialcreationoptions-publickey": {"export":true,"for_":["CredentialCreationOptions"],"level":"3","normative":true,"shortname":"webauthn","spec":"webauthn-3","status":"snapshot","text":"publicKey","type":"dict-member","url":"https://www.w3.org/TR/webauthn-3/#dom-credentialcreationoptions-publickey"},
-"https://www.w3.org/TR/webauthn-3/#dom-credentialrequestoptions-publickey": {"export":true,"for_":["CredentialRequestOptions"],"level":"3","normative":true,"shortname":"webauthn","spec":"webauthn-3","status":"snapshot","text":"publicKey","type":"dict-member","url":"https://www.w3.org/TR/webauthn-3/#dom-credentialrequestoptions-publickey"},
-"https://www.w3.org/TR/webauthn-3/#dom-publickeycredential-create-slot": {"export":true,"for_":["PublicKeyCredential"],"level":"3","normative":true,"shortname":"webauthn","spec":"webauthn-3","status":"snapshot","text":"[[Create]](origin, options, sameOriginWithAncestors)","type":"method","url":"https://www.w3.org/TR/webauthn-3/#dom-publickeycredential-create-slot"},
-"https://www.w3.org/TR/webauthn-3/#dom-publickeycredential-discoverfromexternalsource-slot": {"export":true,"for_":["PublicKeyCredential"],"level":"3","normative":true,"shortname":"webauthn","spec":"webauthn-3","status":"snapshot","text":"[[DiscoverFromExternalSource]](origin, options, sameOriginWithAncestors)","type":"method","url":"https://www.w3.org/TR/webauthn-3/#dom-publickeycredential-discoverfromexternalsource-slot"},
-"https://www.w3.org/TR/webauthn-3/#publickey-credentials-create-feature": {"export":true,"for_":[],"level":"3","normative":true,"shortname":"webauthn","spec":"webauthn-3","status":"snapshot","text":"publickey-credentials-create-feature","type":"dfn","url":"https://www.w3.org/TR/webauthn-3/#publickey-credentials-create-feature"},
-"https://www.w3.org/TR/webauthn-3/#publickey-credentials-get-feature": {"export":true,"for_":[],"level":"3","normative":true,"shortname":"webauthn","spec":"webauthn-3","status":"snapshot","text":"publickey-credentials-get-feature","type":"dfn","url":"https://www.w3.org/TR/webauthn-3/#publickey-credentials-get-feature"},
-"https://www.w3.org/TR/webauthn-3/#publickeycredential": {"export":true,"for_":[],"level":"3","normative":true,"shortname":"webauthn","spec":"webauthn-3","status":"snapshot","text":"PublicKeyCredential","type":"interface","url":"https://www.w3.org/TR/webauthn-3/#publickeycredential"},
-"https://xhr.spec.whatwg.org/#dom-formdata-get": {"export":true,"for_":["FormData"],"level":"1","normative":true,"shortname":"xhr","spec":"xhr","status":"current","text":"get(name)","type":"method","url":"https://xhr.spec.whatwg.org/#dom-formdata-get"},
-"https://xhr.spec.whatwg.org/#dom-formdata-has": {"export":true,"for_":["FormData"],"level":"1","normative":true,"shortname":"xhr","spec":"xhr","status":"current","text":"has(name)","type":"method","url":"https://xhr.spec.whatwg.org/#dom-formdata-has"},
-"https://xhr.spec.whatwg.org/#interface-formdata": {"export":true,"for_":[],"level":"","normative":true,"shortname":"xhr","spec":"xhr","status":"anchor-block","text":"FormData","type":"interface","url":"https://xhr.spec.whatwg.org/#interface-formdata"},
-"https://xhr.spec.whatwg.org/#xmlhttprequest": {"export":true,"for_":[],"level":"1","normative":true,"shortname":"xhr","spec":"xhr","status":"current","text":"XMLHttpRequest","type":"interface","url":"https://xhr.spec.whatwg.org/#xmlhttprequest"},
-};
-
-function mkRefHint(link, ref) {
-    const linkText = link.textContent;
-    let dfnTextElements = '';
-    if (ref.text != linkText) {
-        dfnTextElements =
-            mk.li({},
-                mk.b({}, "Term: "),
-                mk.span({}, ref.text)
-            );
-    }
-    const forList = ref.for_;
-    let forListElements;
-    if(forList.length == 0) {
-        forListElements = [];
-    } else if(forList.length == 1) {
-        forListElements = mk.li({},
-            mk.b({}, "For: "),
-            mk.span({}, forList[0]),
-        );
-    } else {
-        forListElements = mk.li({},
-            mk.b({}, "For: "),
-            mk.ul({},
-                ...forList.map(forItem =>
-                    mk.li({},
-                        mk.span({}, forItem)
-                    ),
-                ),
-            ),
-        );
-    }
-    const url = ref.url;
-    const safeUrl = encodeURIComponent(url);
-    const hintPanel = mk.aside({
-        class: "ref-hint",
-        id: `ref-hint-for-${safeUrl}`,
-        "data-for": url,
-        "aria-labelled-by": `ref-hint-for-${safeUrl}`,
-    },
-        mk.ul({},
-            dfnTextElements,
-            mk.li({},
-                mk.b({}, "URL: "),
-                mk.a({ href: url, class: "ref" }, url),
-            ),
-            mk.li({},
-                mk.b({}, "Type: "),
-                mk.span({}, `${ref.type}`),
-            ),
-            mk.li({},
-                mk.b({}, "Spec: "),
-                mk.span({}, `${ref.spec ? ref.spec : ''}`),
-            ),
-            forListElements
-        ),
-    );
-    hintPanel.forLink = link;
-    setupRefHintEventListeners(link, hintPanel);
-    return hintPanel;
-}
-
-function hideAllRefHints() {
-    queryAll(".ref-hint").forEach(el=>hideRefHint(el));
-}
-
-function hideRefHint(refHint) {
-    const link = refHint.forLink;
-    link.setAttribute("aria-expanded", "false");
-    if(refHint.teardownEventListeners) {
-        refHint.teardownEventListeners();
-    }
-    refHint.remove();
-}
-
-function showRefHint(link) {
-    if(link.classList.contains("dfn-link")) return;
-    const url = link.getAttribute("href");
-    const ref = refsData[url];
-    if(!ref) return;
-
-    hideAllRefHints(); // Only display one at this time.
-
-    const refHint = mkRefHint(link, ref);
-    append(document.body, refHint);
-    link.setAttribute("aria-expanded", "true");
-    positionRefHint(refHint);
-}
-
-function setupRefHintEventListeners(link, refHint) {
-    if (refHint.teardownEventListeners) return;
-    // Add event handlers to hide the refHint after the user moves away
-    // from both the link and refHint, if not hovering either within one second.
-    let timeout = null;
-    const startHidingRefHint = (event) => {
-        if (timeout) {
-            clearTimeout(timeout);
-        }
-        timeout = setTimeout(() => {
-            hideRefHint(refHint);
-        }, 1000);
-    }
-    const resetHidingRefHint = (event) => {
-        if (timeout) clearTimeout(timeout);
-        timeout = null;
-    };
-    link.addEventListener("mouseleave", startHidingRefHint);
-    link.addEventListener("mouseenter", resetHidingRefHint);
-    link.addEventListener("blur", startHidingRefHint);
-    link.addEventListener("focus", resetHidingRefHint);
-    refHint.addEventListener("mouseleave", startHidingRefHint);
-    refHint.addEventListener("mouseenter", resetHidingRefHint);
-    refHint.addEventListener("blur", startHidingRefHint);
-    refHint.addEventListener("focus", resetHidingRefHint);
-
-    refHint.teardownEventListeners = () => {
-        // remove event listeners
-        resetHidingRefHint();
-        link.removeEventListener("mouseleave", startHidingRefHint);
-        link.removeEventListener("mouseenter", resetHidingRefHint);
-        link.removeEventListener("blur", startHidingRefHint);
-        link.removeEventListener("focus", resetHidingRefHint);
-        refHint.removeEventListener("mouseleave", startHidingRefHint);
-        refHint.removeEventListener("mouseenter", resetHidingRefHint);
-        refHint.removeEventListener("blur", startHidingRefHint);
-        refHint.removeEventListener("focus", resetHidingRefHint);
-    };
-}
-
-function positionRefHint(refHint) {
-    const link = refHint.forLink;
-    const linkPos = getBounds(link);
-    refHint.style.top = linkPos.bottom + "px";
-    refHint.style.left = linkPos.left + "px";
-
-    const panelPos = refHint.getBoundingClientRect();
-    const panelMargin = 8;
-    const maxRight = document.body.parentNode.clientWidth - panelMargin;
-    if (panelPos.right > maxRight) {
-        const overflowAmount = panelPos.right - maxRight;
-        const newLeft = Math.max(panelMargin, linkPos.left - overflowAmount);
-        refHint.style.left = newLeft + "px";
-    }
-}
-
-// TODO: shared util
-// Returns the root-level absolute position {left and top} of element.
-function getBounds(el, relativeTo=document.body) {
-    const relativeRect = relativeTo.getBoundingClientRect();
-    const elRect = el.getBoundingClientRect();
-    const top = elRect.top - relativeRect.top;
-    const left = elRect.left - relativeRect.left;
-    return {
-        top,
-        left,
-        bottom: top + elRect.height,
-        right: left + elRect.width,
-    }
-}
-
-function showRefHintListener(e) {
-    // If the target isn't in a link (or is a link),
-    // just ignore it.
-    let link = e.target.closest("a");
-    if(!link) return;
-
-    // If the target is in a ref-hint panel
-    // (aka a link in the already-open one),
-    // also just ignore it.
-    if(link.closest(".ref-hint")) return;
-
-    // Otherwise, show the panel for the link.
-    showRefHint(link);
-}
-
-function hideAllHintsListener(e) {
-    // If the click is inside a ref-hint panel, ignore it.
-    if(e.target.closest(".ref-hint")) return;
-    // Otherwise, close all the current panels.
-    hideAllRefHints();
-}
-
-document.addEventListener("DOMContentLoaded", () => {
-    document.body.addEventListener("mousedown", showRefHintListener);
-    document.body.addEventListener("focus", showRefHintListener);
-
-    document.body.addEventListener("click", hideAllHintsListener);
-});
-
-window.addEventListener("resize", () => {
-    // Hide any open ref hint.
-    hideAllRefHints();
-});
-}
-</script>
-<script>/* Boilerplate: script-var-click-highlighting */
-"use strict";
-{
-/*
-Color-choosing design:
-
-* Colors are ordered by goodness.
-* On clicking a var, give it the earliest color
-    with the lowest usage in the algorithm.
-* On re-clicking, re-use the var's most recent color
-    if that's not currently being used elsewhere.
-*/
-
-const COLOR_COUNT = 7;
-
-document.addEventListener("click", e=>{
-    if(e.target.nodeName == "VAR") {
-        highlightSameAlgoVars(e.target);
-    }
-});
-
-function highlightSameAlgoVars(v) {
-    // Find the algorithm container.
-    let algoContainer = findAlgoContainer(v);
-
-    // Not highlighting document-global vars,
-    // too likely to be unrelated.
-    if(algoContainer == null) return;
-
-    const varName = nameFromVar(v);
-    if(!v.hasAttribute("data-var-color")) {
-        const newColor = chooseHighlightColor(algoContainer, v);
-        for(const el of algoContainer.querySelectorAll("var")) {
-            if(nameFromVar(el) == varName) {
-                el.setAttribute("data-var-color", newColor);
-                el.setAttribute("data-var-last-color", newColor);
-            }
-        }
-    } else {
-        for(const el of algoContainer.querySelectorAll("var")) {
-            if(nameFromVar(el) == varName) {
-                el.removeAttribute("data-var-color");
-            }
-        }
-    }
-}
-function findAlgoContainer(el) {
-    while(el != document.body) {
-        if(el.hasAttribute("data-algorithm")) return el;
-        el = el.parentNode;
-    }
-    return null;
-}
-function nameFromVar(el) {
-    return el.textContent.replace(/(\s|\xa0)+/, " ").trim();
-}
-function colorCountsFromContainer(container) {
-    const namesFromColor = Array.from({length:COLOR_COUNT}, x=>new Set());
-    for(let v of container.querySelectorAll("var[data-var-color]")) {
-        let color = +v.getAttribute("data-var-color");
-        namesFromColor[color].add(nameFromVar(v));
-    }
-
-    return namesFromColor.map(x=>x.size);
-}
-function leastUsedColor(colors) {
-    // Find the earliest color with the lowest count.
-    let minCount = Infinity;
-    let minColor = null;
-    for(var i = 0; i < colors.length; i++) {
-        if(colors[i] < minCount) {
-            minColor = i;
-            minCount = colors[i];
-        }
-    }
-    return minColor;
-}
-function chooseHighlightColor(container, v) {
-    const colorCounts = colorCountsFromContainer(container);
-    if(v.hasAttribute("data-var-last-color")) {
-        let color = +v.getAttribute("data-var-last-color");
-        if(colorCounts[color] == 0) return color;
-    }
-    return leastUsedColor(colorCounts);
-}
-}
-</script>
\ No newline at end of file