tcannonfodder
commented
1 year ago On a separate note, @tcannonfodder, why don't we just write a default implementation in, say,
Warden::WebAuthn::StrategyHelpers? I don't think many users will have a better use for it thandef set_relying_party_in_request_env request.env[relying_party_key] = relying_party end
Ack, I know I had this conversation with @heliocola, but I can't find it 😬
The gist is that I don't want this gem to be too magical, which is one of the problems I have with devise as a whole.
Since the relying party is the core for the entire WebAuthn flow; the app should be responsible for:
- Setting it up as needed for each request (even if it remains constant)
- Slotting it into the request environment so that the warden strategy and this gem can use it
I know it can feel like a bit of overkill, but it has the benefits of:
- Being easy to search for in your codebase
- Being able to easily debug without having to pry open & dig into a gem
- Reducing the maintenance footprint of this gem, since it's less code we manage (and the error message is clear as to what's needed)
Vagab
I think
NotImplementedErrorwith class name reads better. Also, the message was sayingrelying_partywhich is confusing in this context, since even if it's implemented we'll still get an error.On a separate note, @tcannonfodder, why don't we just write a default implementation in, say,
Warden::WebAuthn::StrategyHelpers? I don't think many users will have a better use for it thanHappy to make a pr