Closed TomerDavid-Transmit closed 1 year ago
Patch coverage: 100.00
% and project coverage change: +0.01
:tada:
Comparison is base (
aef3754
) 92.95% compared to head (f4af93d
) 92.97%.:exclamation: Current head f4af93d differs from pull request most recent head 6497d56. Consider uploading reports for the commit 6497d56 to get more accurate results
:mega: This organization is not using Codecov’s GitHub App Integration. We recommend you install it so Codecov can continue to function properly for your repositories. Learn more
:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Do you have feedback about the report comment? Let us know in this issue.
Hey @TomerDavid-Transmit thanks for the contribution! Are you trying to achieve the same thing as in https://github.com/webauthn-open-source/fido2-lib/pull/122 ?
Hey @TomerDavid-Transmit thanks for the contribution! Are you trying to achieve the same thing as in #122 ?
@JamesCullum yes, except for the prefix I think we should look for. #122 searches android:
and ios:
as prefixes, and I think we should search for android:apk-key-hash:
and ios:bundle-id:
for specificity.
was just working on adding the iOS support + tests to this PR
Very much needed addition!
looks like an encompassing code. good one :)
LGTM 👍 This one is slightly more complete than #122
@JamesCullum 3.3.6 or 3.4.0? I think i vote for 3.3.6.
Nice change!
@Hexagon I think 3.4.0 would make more sense as new feature, as previously we didn't support it.
Will merge and do it - thanks!
While using the lib, I noticed that the
rpOrigin
, as returned by the android native fido2 client attestation response, is considered invalid. Made this change for the lib to support android FacetIDs as origins. In depth explanation: https://fidoalliance.org/specs/uaf-v1.0-id-20141122/fido-appid-and-facets-v1.0-id-20141122.html#the-appid-and-facetid-assertions Also added support for the iOS FacetID prefix, as specified in the fido2 docs above. Empirically, our experiments with native iOS clients resulted withhttps
rp origins - so the docs might be outdated, but I added the FacetID support just in case.