New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[WebAuthn] Disable platform authenticator for disallowed rps #3239
[WebAuthn] Disable platform authenticator for disallowed rps #3239
Conversation
d799d98
to
51f5387
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM
@@ -32,6 +32,8 @@ | |||
#else | |||
@interface ASCWebKitSPISupport : NSObject | |||
@property (class, nonatomic) BOOL shouldUseAlternateCredentialStore; | |||
+ (BOOL)arePasskeysDisallowedForRelyingParty:(nonnull NSString *)relyingParty; | |||
+ (void)getArePasskeysDisallowedForRelyingParty:(nonnull NSString *)relyingParty withCompletionHandler:(nonnull void (^)(BOOL))completionHandler; |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
You don't seem to use the getArePasskeysDisallowedForRelyingParty
method, so may not be necessary to forward-declare it.
51f5387
to
7247cd3
Compare
https://bugs.webkit.org/show_bug.cgi?id=243844 <rdar://97789464> Reviewed by Brent Fulgham. In some circumstances it may be useful to quirk off the platform authenticator for given rps. This patch hooks up some new internal SPI for that purpose. * Source/WebCore/Modules/webauthn/AuthenticatorCoordinator.cpp: (WebCore::AuthenticatorCoordinator::isUserVerifyingPlatformAuthenticatorAvailable const): * Source/WebCore/Modules/webauthn/AuthenticatorCoordinator.h: * Source/WebCore/Modules/webauthn/AuthenticatorCoordinatorClient.h: * Source/WebCore/Modules/webauthn/PublicKeyCredential.cpp: (WebCore::PublicKeyCredential::isUserVerifyingPlatformAuthenticatorAvailable): * Source/WebKit/Platform/spi/Cocoa/AuthenticationServicesCoreSPI.h: * Source/WebKit/UIProcess/WebAuthentication/Cocoa/WebAuthenticatorCoordinatorProxy.mm: * Source/WebKit/UIProcess/WebAuthentication/WebAuthenticatorCoordinatorProxy.cpp: (WebKit::WebAuthenticatorCoordinatorProxy::isUserVerifyingPlatformAuthenticatorAvailable): * Source/WebKit/UIProcess/WebAuthentication/WebAuthenticatorCoordinatorProxy.h: * Source/WebKit/UIProcess/WebAuthentication/WebAuthenticatorCoordinatorProxy.messages.in: * Source/WebKit/WebProcess/WebAuthentication/WebAuthenticatorCoordinator.cpp: (WebKit::WebAuthenticatorCoordinator::isUserVerifyingPlatformAuthenticatorAvailable): * Source/WebKit/WebProcess/WebAuthentication/WebAuthenticatorCoordinator.h: Canonical link: https://commits.webkit.org/253497@main
7247cd3
to
6bd8e23
Compare
Committed 253497@main (6bd8e23): https://commits.webkit.org/253497@main Reviewed commits have been landed. Closing PR #3239 and removing active labels. |
6bd8e23