Safari: registration failed: Bad Request: cannot decode key response (5)

davidearl / webauthn

An implementation of webauthn in PHP on the server side (e.g Yubico 2 and Google Titan keys)

https://webauthn.davidearl.uk

MIT License

129 stars 24 forks source link

Safari: registration failed: Bad Request: cannot decode key response (5) #55

Closed euroxs closed 1 year ago

euroxs commented 1 year ago

User Registration in Safari returns this error. Something goes wrong when checking the rpId hash?

Both Firefox and Chrome work fine. Also after registering in another browser, User Login does work in Safari.

davidearl commented 1 year ago

Presumably you're on a Mac, yes? OS version? what authenticator are you using - built-in fingerprint reader? Yubico key? Face ID?

I think Safari support for webauthn is quite recent. I know it works in iOS 15 and 16 Safari now, but I haven't checked Mac Safari recently.

euroxs commented 1 year ago

I am using Safari 16 on macOS Monterey (12.6) with a Yubico key.

davidearl commented 1 year ago

OK, I can reproduce it, thanks. However, it appears to be a problem with Safari (I also have 16.0, 17614), as it works ok in the latest Safari Technology Preview 155 (16.4) also on Monterey 12.6. Whilst there may be a work round I could do, it doesn't seem worth it if they have already fixed the problem in the next release.