RESOLVED FIXED Bug 240038
[WebAuthn] Remove user gesture requirement for mediation=conditional assertions 
https://bugs.webkit.org/show_bug.cgi?id=240038
Summary [WebAuthn] Remove user gesture requirement for mediation=conditional assertions
pascoe@apple.com
Reported 2022-05-03 14:07:20 PDT
Conditional assertions are non-modal and already require a gesture to complete via a different mechanism. So if conditional mediation is available on the platform and requested, we should not require a gesture.
Attachments
Patch (3.48 KB, patch)
2022-05-03 14:09 PDT, pascoe@apple.com 		no flags
DetailsFormatted DiffDiff
Patch for landing (3.39 KB, patch)
2022-05-03 14:42 PDT, pascoe@apple.com 		no flags
DetailsFormatted DiffDiff
Patch for landing (3.38 KB, patch)
2022-05-04 10:59 PDT, pascoe@apple.com 		no flags
DetailsFormatted DiffDiff
Show Obsolete (2) View All Add attachment proposed patch, testcase, etc.
pascoe@apple.com
Comment 1 2022-05-03 14:07:28 PDT
rdar://92137603
pascoe@apple.com
Comment 2 2022-05-03 14:09:58 PDT
Created attachment 458756 [details] Patch
Brent Fulgham
Comment 3 2022-05-03 14:34:31 PDT
Comment on attachment 458756 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=458756&action=review r=me, but please check the cause of the debug failure. > Source/WebKit/UIProcess/WebAuthentication/Cocoa/WebAuthenticatorCoordinatorProxy.mm:326 > + requestContext.get().requestStyle = ASCredentialRequestStyleAutoFill; Nit: I'd prefer to check and do an early return if it does NOT respond to the selector, rather than this form. It's slightly easier to read and a little more concise. > Source/WebKit/UIProcess/WebAuthentication/WebAuthenticatorCoordinatorProxy.cpp:110 > + if (!data.processingUserGesture && !m_webPageProxy.websiteDataStore().authenticatorManager().isVirtual() && data.mediation != MediationRequirement::Conditional) Nit: It might be slightly more efficient to test the 'data.mediation' condition before retrieving the websiteDataStore->authenticator and calling its isVirtual method.
pascoe@apple.com
Comment 4 2022-05-03 14:42:32 PDT
Created attachment 458758 [details] Patch for landing
EWS
Comment 5 2022-05-04 10:54:43 PDT
ChangeLog entry in Source/WebKit/ChangeLog contains OOPS!.
pascoe@apple.com
Comment 6 2022-05-04 10:59:08 PDT
Created attachment 458812 [details] Patch for landing
EWS
Comment 7 2022-05-04 13:29:53 PDT
Committed r293786 (250265@main): <https://commits.webkit.org/250265@main> All reviewed patches have been landed. Closing bug and clearing flags on attachment 458812 [details].
Note You need to log in before you can comment on or make changes to this bug.