The WebAuthn specification clearly states that ArrayBuffer is used to represent binary properties in credential responses. However Bitwarden uses Uint8Array instead which is nonconformant and confuses certain applications that require the type of such properties to be ArrayBuffer specifically (e.g. Yandex, 1Password web app, etc.)
[X] I understand that work is tracked outside of Github. A PR will be linked to this issue should one be opened to address it, but Bitwarden doesn't use fields like "assigned", "milestone", or "project" to track progress.
Steps To Reproduce
Expected Result
Login succeeds
Actual Result
Login fails
Screenshots or Videos
No response
Additional Context
The WebAuthn specification clearly states that
ArrayBuffer
is used to represent binary properties in credential responses. However Bitwarden usesUint8Array
instead which is nonconformant and confuses certain applications that require the type of such properties to beArrayBuffer
specifically (e.g. Yandex, 1Password web app, etc.)Code exhibiting nonconformant behavior: https://github.com/bitwarden/clients/blob/b0e0e71974d93b16df9f06fd5daf37e8470219f8/apps/browser/src/autofill/fido2/utils/webauthn-utils.ts#L61-L89 https://github.com/bitwarden/clients/blob/b0e0e71974d93b16df9f06fd5daf37e8470219f8/apps/browser/src/autofill/fido2/utils/webauthn-utils.ts#L123-L135
Operating System
Linux
Operating System Version
No response
Web Browser
Chrome
Browser Version
No response
Build Version
2024.9.0
Issue Tracking Info