search

fido-alliance / conformance-test-tools-resources

Certification Test Tools Resources. For security and privacy related issues email tools@certification.fidoalliance.org
https://fidoalliance.org/certification/functional-certification/conformance/
40 stars 14 forks source link

UAF - Trusted Facets Api Response doesn't include version 1.1 support #672

Closed wir349 closed 2 years ago

wir349 commented 2 years ago

By submitting this issue you are acknowledging that any information regarding this issue will be publicly available.

If you have privacy concerns, please email conformance-tools@fidoalliance.org

FIRST PRE CHECK

What protocol are you implementing?

NOTE: UAF 1.0 certification have been officially sunset. U2F 1.2 only supported version of U2F.

What is your implementation class?

If you are platform authenticator vendor, please email conformance-tools@fidoalliance.org

What is the version of the tool are you using?

1.6.2

What is the OS and the version are you running?

For UAF mobile tools

I have the UAF iOS conformance tool set to version 1.1 and when I run tests which retrieve trusted facets from an external URL, they fail. After looking into the issue it seems like the URL doesn't support version 1.1 and I only get a response for version 1.0

A sample URL like the following: https://appid.certinfra.fidoalliance.org/execute/3tvH7KbelDuFiMF22YsQZ1cW_hDrdRTYuDPjC0n8

Returns the below result.

{ "trustedFacets": [ { "version": { "major": 1, "minor": 0 }, "ids": [ "ios:bundle-id:com.accertify.fidouafclient1", "https://fidoalliance.nz/" ] } ] }

yackermann commented 2 years ago

Version of the trusted facet list must be set to 1.0.

The version of the UAF spec is not expressed in the TFL. It's independent versioning from the UAF