diff --git a/index.bs b/index.bs
index 6bf6dc9..2742c68 100644
--- a/index.bs
+++ b/index.bs
@@ -320,7 +320,8 @@ spec:css-syntax-3;
(in alphabetical order)
| Options Member Identifier |
Appropriate Interface Object |
- Corresponding Permissions Policy |
+ Get Permissions Policy |
+ Create Permissions Policy |
Specification |
Requestor Contact |
@@ -330,6 +331,7 @@ spec:css-syntax-3;
digital |
{{DigitalCredential}} |
digital-credentials-get |
+ null |
[[DIGITAL-CREDENTIALS]] |
WICG |
@@ -338,6 +340,7 @@ spec:css-syntax-3;
federated |
{{FederatedCredential}} |
null |
+ null |
This specification: [[#federated]] |
W3C |
@@ -346,6 +349,7 @@ spec:css-syntax-3;
identity |
{{IdentityCredential}} |
[=identity-credentials-get=] |
+ null |
[[FEDCM]] |
W3C |
@@ -362,6 +366,7 @@ spec:css-syntax-3;
password |
{{PasswordCredential}} |
null |
+ null |
This specification: [[#passwords]] |
W3C |
@@ -370,6 +375,7 @@ spec:css-syntax-3;
publicKey |
{{PublicKeyCredential}} |
[=publickey-credentials-get-feature|publickey-credentials-get=] |
+ [=publickey-credentials-create-feature|publickey-credentials-create=] |
[[WEBAUTHN]] |
W3C |
@@ -391,8 +397,11 @@ spec:css-syntax-3;
* Each registry entry must state the [=credential type registry/Appropriate Interface Object=] [=identifier=] for the
[=credential type registry/credential type=].
- * Each registry entry may state the [=credential type registry/Corresponding Permissions Policy=] [=permission=] for the
- [=credential type registry/credential type=].
+ * Each registry entry may state the [=credential type registry/Get Permissions Policy=] [=permission=] used when executing Request a `Credential`
+ for a [=credential type registry/credential type=].
+
+ * Each registry entry may state the [=credential type registry/Create Permissions Policy=] [=permission=] used when executing Create a `Credential`
+ for a [=credential type registry/credential type=].
* Each registry entry must include a link that references a publicly available specification
defining the [=credential type registry/credential type=] and the [=dictionary member=] [=identifier=].
@@ -995,7 +1004,7 @@ spec:css-syntax-3;
1. Let |sameOriginWithAncestors| be `true` if |settings| is [=same-origin with its
ancestors=], and `false` otherwise.
- 1. For each |permission| in |options|' [=credential type registry/Corresponding Permissions Policy=]:
+ 1. For each |permission| in |options|' [=credential type registry/Get Permissions Policy=]:
1. If |permission| is null, continue.
@@ -1169,12 +1178,20 @@ spec:css-syntax-3;
1. Let |global| be |settings|' [=environment settings object/global object=].
- 1. If |settings|'s [=relevant global object=]'s [=associated Document=] is not [=Document/fully active=],
- then return [=a promise rejected with=] "{{NotAllowedError}}" {{DOMException}}.
+ 1. Let |document| be the [=relevant global object=]'s [=associated Document=].
+
+ 1. If |document| is not [=Document/fully active=], then return
+ [=a promise rejected with=] "{{NotAllowedError}}" {{DOMException}}.
1. Let |sameOriginWithAncestors| be `true` if the [=current settings object=] is [=same-origin
with its ancestors=], and `false` otherwise.
+ 1. Let |permission| be |options| [=credential type registry/Create Permissions Policy=]:
+
+ 1. If |permission| is not null, and |document| is **not** [=allowed to use=]
+ the |permission| [=policy-controlled feature=], return [=a promise rejected with=]
+ a "{{NotAllowedError}}" {{DOMException}}.
+
1. If |options|[{{CredentialCreationOptions/publicKey}}] [=map/exists=] and
if |settings|' [=relevant global object=]'s [=associated Document=] is **not**
[=allowed to use=] the [=publickey-credentials-create-feature|publickey-credentials-create=]