SAML with FIDO2 2FA via NFC doesnt seem to work - Githubissues

RocketChat / Rocket.Chat.ReactNative

Rocket.Chat mobile clients

https://rocket.chat

MIT License

2k stars 1.17k forks source link

SAML with FIDO2 2FA via NFC doesnt seem to work #5375

Open b90g opened 10 months ago

b90g commented 10 months ago

Description:

Using NFC FIDO2 Hardware token does not work when logging in via SAML.

Environment Information:

Rocket.Chat Server Version: 6.4.0
Rocket.Chat App Version: 4.4.3.
Device Name: Android
OS Version: 12

Steps to reproduce:

Use a server that has SAML Login (KeyCloak) with FIDO2 as 2FA support.

Expected behavior:

Using the hardware token via NFC or plugged into the device if possible should work as 2FA.

Actual behavior:

device is not promted to do NFC verification

Additional context:

Login worked in a webbrowser on the same device.

but actually not sure if its an android issue or react native/app issue. what should i test to make a proper issue here or elsewhere?...

diegolmello commented 10 months ago

@b90g We would have to do it like we did for Google, by opening it on external browsers https://github.com/RocketChat/Rocket.Chat.ReactNative/pull/3134 It's going to change the backend a lot though, since it's not really an issue, but a new feature.