webauthn-framework
webauthn-framework copied to clipboard
web-auth
FIDO-U2F / FIDO2 / Webauthn Framework
### Description The Webauthn authenticator works fine, but is a bit rigid for specific use cases. The authenticator could be split and an abstract class could handle most of the...
No one writes tests 😢 - [ ] It is a Bug fix - [ ] It is a New feature - [ ] Breaks BC - [ ] Includes...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.3.1 to 4.3.3. Release notes Sourced from actions/upload-artifact's releases. v4.3.3 What's Changed updating @actions/artifact dependency to v2.1.6 by @eggyhead in actions/upload-artifact#565 Full Changelog: https://github.com/actions/upload-artifact/compare/v4.3.2...v4.3.3 v4.3.2 What's Changed...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
### Version(s) affected 4.8.5 ### Description I try to serialize `PublicKeyCredentialCreationOptions` by using `WebauthnSerializerFactory` then get error: `Symfony\Component\Serializer\Exception\NotEncodableValueException` with message `Malformed UTF-8 characters, possibly incorrectly encoded` in `sonEncode.php:52` But this...
The "id" property in the PublicKeyCredential is deprecated. This commit refactors the relevant code, specifically in the "PublicKeyCredential" class and several test classes, to replace the use of "Base64UrlSafe::decode($publicKeyCredential->id)" with...
### Description Version 4.9.x deprecates `$id` (base64) in favor of `$rawId` (binary). `$id` will be removed in 5.0.0. In 5.1.x, `$rawId` will be deprecated in favor of `$id`, which will...
### Description This request is somewhat similar to #464: I've noticed that the `PublicKeyCredentialDenormalizer` verifies that the `id` and `rawId` match, but the `PublicKeyCredential` does not, possibly allowing the developer...
Updates the requirements on [infection/infection](https://github.com/infection/infection) to permit the latest version. Release notes Sourced from infection/infection's releases. Use CI (GitHub, GitLab) variable to detect project path Changed: feat: use CI variables...
### Version(s) affected 4.8 ### Description ```php /** @var PublicKeyCredential $publicKeyCredential */ $publicKeyCredential = $serializer->deserialize( $request->getContent(), PublicKeyCredential::class, 'json' ); $authenticatorAssertionResponse = $publicKeyCredential->response; if (! $authenticatorAssertionResponse instanceof AuthenticatorAssertionResponse) { throw ValidationException::withMessages([...
### Version(s) affected 5.0.0, 5.0.1 ### Description In https://github.com/web-auth/webauthn-framework/commit/cc698c616a74806f43647c786ae20d72a1926f00 the following was added: https://github.com/web-auth/webauthn-framework/blob/99f3d1228d951035a094843de47922a03de1175e/src/stimulus/assets/src/controller.ts#L132-L137 This however means that you cannot use login forms with mandatory username and password fields for...
