FIDO2 enrollment fails in Firefox because AuthenticatorAttestationResponse.getTransports() is not supported

[danielrparks]

Steps to reproduce the issue (please be as specific as possible)

• Sign into login.gov on Firefox
• Choose "Add security key"
• Attempt to enroll a FIDO2 key

Expected behavior

The enrollment should succeed.

Actual behavior

The enrollment fails and the page shows a generic error.

This is because https://github.com/18F/identity-idp/blob/main/app/javascript/packages/webauthn/enroll-webauthn-device.ts#L84 calls AuthenticatorAttestationResponse.getTransports(), which is unavailable on Firefox.

A simple stub polyfill should be all that is needed to enroll the key successfully:

if (navigator.userAgent.includes("Firefox")) {
  AuthenticatorAttestationResponse.prototype.getTransports = function(){return ["ble", "hybrid", "internal", "nfc", "usb"]}
}

[aduth]

Thanks for flagging this issue. I've tested and confirmed the behavior you reported in Firefox. I've added a bug ticket to our internal issue tracker, and we'll follow up here once this has been resolved.

Internal ticket: LG-10477

[aduth]

@danielrparks Following-up here, a fix has been merged to main, and should be available on the live site sometime later today.

Thanks again for the report!

[danielrparks]

Thanks, looks good!