[Webkit-unassigned] [Bug 246339] New: [WebAuthn] window.PublicKeyCredential.isUserVerifyingPlatformAuthenticatorAvailable set to False for carnival.com | Safari IOS 16.1

Tue Oct 11 07:38:03 PDT 2022

https://bugs.webkit.org/show_bug.cgi?id=246339

            Bug ID: 246339
           Summary: [WebAuthn]
                    window.PublicKeyCredential.isUserVerifyingPlatformAuth
                    enticatorAvailable set to False for carnival.com |
                    Safari IOS 16.1
           Product: WebKit
           Version: Safari 16
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: WebKit API
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: tal at ownid.com

While trying of using WebAuthn on carnival.com with IOS 16.1 (beta 4) and mobile Safari, we discovered that the PublicKeyCredential.isUserVerifyingPlatformAuthenticatorAvailable flag was set to false for unknown reasons. From the source code of Webkit, it appears that Webkit is blocking the use of Webauthn for a number of domains which are not publicly shared. The issue occurs only on carnival.com.

As far as I am aware, this is a bug because it works perfectly on IOS 16.0 with Safari (as passkeys) on the domain carnival.com.

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20221011/cdfb1ca2/attachment.htm>