Emil Lundberg
Emil Lundberg
> It doesn't seem to really matter, but is this behaviour intended? The browser is Chromium v115. On closer look, this is caused by the GUI making a call to...
By the way: to test this, you don't need a YubiKey or other dedicated security key hardware. There are a few other options: - Most platforms other than Linux have...
> Would it make sense to fill in the relaying party ID field with a default value (if blank) derived from the Syncthing Device Name? For example if the Syncthing...
Yep, that all sounds fair to me. We can still keep the "RP ID should be equal to or a parent domain of the current webpage domain" warning for the...
I have removed the RP ID and Origin settings from the GUI and set explicit defaults for them instead of deriving suitable defaults dynamically, so that the values shown in...
I've updated the settings GUI a bit to better reflect the RP ID and origin settings being moved to advanced settings: - When registering a new credential, the current RP...
Hi! As I mentioned in the last message, I was waiting for confirmation of the overall design before I start working on tests and documentation. But I'll take the previous...
Yeah, a WebAuthn assertion is at minimum a proof of possession of a cryptographic private key - i.e., a "something you have" authentication factor. The _authenticator_ that holds that key...
Waiting on me :/ Sorry, I'll try to finish this soon.
Alright, this is finally ready for final review to merge! :tada: Thanks everyone for your patience. All that remains now is documentation, which I'll open as a separate PR. -...