[Webkit-unassigned] [Bug 213903] [WebAuthn] authenticators supporting internal uv and pinToken defaulting to client pin

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Fri Sep 10 13:02:04 PDT 2021


--- Comment #8 from login Llama <loginllama at gmail.com> ---
This bug is still present in the latest STP.

I just has a conversation with a major authenticator vendor who told me they are violating the CTAP specifications and dynamically hiding the availability of pinToken support to trick Safari into supporting biometrics on there devices.

Having to implement workarounds like that to support Safari is disappointing.

You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20210910/70459a5e/attachment.htm>

More information about the webkit-unassigned mailing list