-
Notifications
You must be signed in to change notification settings - Fork 166
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Truncate strings for authenticators where needed.
There exist a significant number of authenticators that do not conform to the current WebAuthn requirements in that they fail requests with name/displayName strings longer than 64 bytes, rather than truncating them. This change adds a new requirement on user-agents that they maintain the authenticator model for RPs by doing the truncation on their behalf in this case. The alternative is that each RP will hit this edge-case and do the truncation itself, thus the ecosystem will never be able to support longer strings. Since user-agents may now be doing truncation, this change also permits truncation at the level of grapheme clusters (since user-agents presumably have Unicode tables available). Fixes #1296.
- Loading branch information
Showing
2 changed files
with
277 additions
and
7 deletions.
There are no files selected for viewing
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters