Summary: | [WebAuthn] problem with uv = required for getAssertion | ||
---|---|---|---|
Product: | WebKit | Reporter: | login Llama <loginllama> |
Component: | WebCore Misc. | Assignee: | Nobody <webkit-unassigned> |
Status: | RESOLVED WORKSFORME | ||
Severity: | Normal | CC: | jiewen_tan, loginllama |
Priority: | P2 | ||
Version: | Safari Technology Preview | ||
Hardware: | iPhone / iPad | ||
OS: | Other | ||
Bug Depends on: | |||
Bug Blocks: | 181943 |
Description
login Llama
2020-07-02 12:26:54 PDT
Doing some more testing I discovered that uv = required from the RP will work if the authenticator advertises support for internal uv in its getInfo. There is not a one to one mapping between uv in webAuthn and the UV option in getAssertion. I have tried a Yubico Blue Security Key with PIN set, same model with no PIN, and a Feitian BioPass on https://webauthntest.azurewebsites.net with UV = required, and cannot reproduce. Can you suggest a more detailed way of reproducing the issue? |