Bug: Remove FIDO Configuration Endpoint

JanssenProject / jans

An open source enterprise digital identity platform for CIAM or workforce... Janssen is a distribution of standards-based, developer friendly, components that are engineered to work together in any cloud. #OAuth #OpenID #FIDO

https://docs.jans.io

Apache License 2.0

423 stars 71 forks source link

Bug: Remove FIDO Configuration Endpoint #977

Open nynymike opened 2 years ago

nynymike commented 2 years ago

It looks like Auth Server is still publishing a FIDO U2F configuration endpoint, even though there is no FIDO U2F endpoints. For example, try https://hostname/.well-known/fido-configuration

and it returns


{
  "version" : "2.1",
  "issuer" : "https://cloud-dev2.gluu.org",
  "registration_endpoint" : "https://cloud-dev2.gluu.org/jans-auth/restv1/fido/u2f/registration",
  "authentication_endpoint" : "https://cloud-dev2.gluu.org/jans-auth/restv1/fido/u2f/authentication"
}

This needs to be removed.

jgomer2001 commented 2 years ago

maduvena commented 1 year ago

duplicate #3089