search

AlfioEmanueleFresta / xdg-credentials-portal

FIDO2 (WebAuthn) and FIDO U2F platform library for Linux written in Rust; includes a proposal for a new D-Bus Portal interface for FIDO2, accessible from Flatpak apps and Snaps 🔑
GNU Lesser General Public License v2.1
352 stars 13 forks source link

Authenticating the app #45

Open WhyNotHugo opened 3 weeks ago

WhyNotHugo commented 3 weeks ago

In A vision for Passkeys on the Linux desktop you mention that Authenticating the app is something that's not yet designed.

dbus-daemon has an (un-merged) "Containers Interface" which is suitable for this scenario. This interface allows a sandbox engine to request a new socket that will be used specifically for a given sandbox. When the dbus-daemon receives connections via that socket, it knows that the connection belongs to a specific sandbox and can accurately identify which application this connection belongs to.

AlfioEmanueleFresta commented 3 days ago

Thank you for reaching out @WhyNotHugo, this is very interesting. I'll do some research as soon as I can, and update the README accordingly.

swick commented 2 days ago

It's still on my list but I'm also busy with HDR stuff currently. If you have any question, feel free to reach out.