Change WebAuthn config

1. The attestation conveyance is reset to NONE, it was previously
   enabled to allow for vendor certificate based attestation.

config/packages/webauthn.yaml

@@ -18,7 +18,7 @@ webauthn:
                 require_resident_key: false
                 user_verification: !php/const Webauthn\AuthenticatorSelectionCriteria::USER_VERIFICATION_REQUIREMENT_PREFERRED
             #  this is needed for SURFsecureID as we want to whitelist authenticators by vendor/certification (default is none)
-            attestation_conveyance: !php/const Webauthn\PublicKeyCredentialCreationOptions::ATTESTATION_CONVEYANCE_PREFERENCE_DIRECT
+            attestation_conveyance: !php/const Webauthn\PublicKeyCredentialCreationOptions::ATTESTATION_CONVEYANCE_PREFERENCE_NONE
     request_profiles:
         default:
             challenge_length: 64