[Webkit-unassigned] [Bug 207821] New: Support FIDO2 Security Keys with PIN

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Sat Feb 15 18:01:23 PST 2020


            Bug ID: 207821
           Summary: Support FIDO2 Security Keys with PIN
           Product: WebKit
           Version: Safari 13
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: WebCore Misc.
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: t0rr3sp3dr0 at gmail.com

Currently Safari doesn't ask for a PIN on security keys that have it set, this causes userVerification never to be true when invoking `navigator.credentials.get`.

Newer security keys require the PIN to be entered even if userVerification is set to discouraged, these keys cannot be used on Safari at all is a PIN has already been set. If the PIN has not already been set, then the security keys works with reduced capabilities, resident keys are not supported on this operation mode.

You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20200216/01614cf3/attachment.htm>

More information about the webkit-unassigned mailing list