search

go-webauthn / webauthn

Webauthn/FIDO2 library in golang
Other
744 stars 67 forks source link

Secure Payment Confirmation Support #132

Open ArnoVDM opened 1 year ago

ArnoVDM commented 1 year ago

Description

Adding support for secure payment confirmation would enable developers who already use this library for webauthn to facilitate and validate secure payment confirmation payloads without needing to migrate. Since registration is unaffected only new methods need to be added to support the payment (authentication) flow.

Use Case

Using WebAuthn and SPC to authenticate payments on Chrome and other supported browsers.

Documentation

Secure payment confirmation spec: https://www.w3.org/TR/secure-payment-confirmation/

Google docs: https://developer.chrome.com/articles/secure-payment-confirmation/

james-d-elliott commented 1 year ago

Hey just wanted to reach out and mention I saw this. It should be technically possible now since it's just an extension. However I agree regarding making it part of the library. We just have to do so carefully. Do you happen to know if there is a conformance or integration test solution for testing this?