-
Hi there,
I noticed this crate while I was trying to implement my own rust webauthn server for actix. I was following your code, and I have noticed that you don't seem to implement any of the crypt…
-
### TestRail CLI Version
1.9.5
### CLI Environment
macOS
### TestRail Version
8.0.1 Early Access (1029)
### TestRail Instance Type
Enterprise Server
### Current behavior
wh…
-
People want group info in their tokens (E.g. to map to groups in kubernetes) but we dont want to store group info on our servers.
https://www.w3.org/TR/webauthn-2/#sctn-large-blob-extension allows …
-
### Description:
We use Keycloak as an authentication provider for Rocket.Chat via OAuth. Users who set up 2FA via WebAuthn (e.g. YubiKey) are unable to log in, because the WebView window tha…
-
> P-3 Send a valid ServerAuthenticatorAttestationResponse with "tpm" attestation pubArea.nameAlg is not matching algorithm used for generate attested.name, and check that server succeeds
How to run…
-
It would be amazing if we could support hardware tokens with U2F :lock:.
-
### Description
It should be possible to complete the login flow with some kind of API from a login template. Currently, login pages are designed to be pretty simple html forms, but these don't reall…
-
### Steps to reproduce
1. Download and Enable App
2. Go to Profile Security Section
3. Press "Add U2F device"
### Expected behaviour
As with "Add WebAuthn device" and most other systems (whic…
-
### Summary
https://www.w3.org/TR/webauthn
Work on this was started in gh-6842 but [stalled](https://github.com/spring-projects/spring-security/pull/6842#issuecomment-630373926). The work is s…
-
Currently, the metadata blob verification process creates a cert path validator with the default 'true' setting for the `PKIXParameters#revocationEnabled` parameter (in `FidoMetadataDownloader#verifyB…