Skip to content

LG-10477: Add checks for WebAuthn browser support#8904

Merged
aduth merged 3 commits intomainfrom
aduth-lg-10477-security-key-firefox
Aug 1, 2023
Merged

LG-10477: Add checks for WebAuthn browser support#8904
aduth merged 3 commits intomainfrom
aduth-lg-10477-security-key-firefox

Conversation

@aduth
Copy link
Contributor

@aduth aduth commented Jul 31, 2023
edited
Loading

🎫 Ticket

LG-10477

Fixes #8877

🛠 Summary of changes

Updates WebAuthn enrollment logic to gracefully handle absence of WebAuthn APIs not implemented in all browsers, notably fixing an issue where it is not currently possible to add a Security Key in Firefox.

Recommend reviewing with whitespace changes hidden: https://github.com/18F/identity-idp/pull/8904/files?w=1

📜 Testing Plan

  1. In Firefox, go to http://localhost:3000
  2. Create an account
  3. At MFA selection screen, choose Security Key
  4. Complete account creation, using Security Key as the MFA

👀 Screenshots

Before After
Screen Shot 2023-07-31 at 4 39 28 PM Screen Shot 2023-07-31 at 4 39 13 PM

@aduth
LG-10477: Add checks for WebAuthn browser support
4bafc8f 
changelog: Bug Fixes, Security Key, Fix security key enrollment in Firefox
@aduth aduth requested a review from mdiarra3 July 31, 2023 20:25
@aduth aduth marked this pull request as ready for review July 31, 2023 20:40
@aduth aduth requested review from a team and mitchellhenke July 31, 2023 20:40
aduth
aduth commented Jul 31, 2023
View reviewed changes
kevinsmaster5
kevinsmaster5 approved these changes Aug 1, 2023
View reviewed changes
Copy link
Contributor

@kevinsmaster5 kevinsmaster5 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good to me. Tested and validated locally MacOS Firefox according to testing method above.

@aduth aduth merged commit 9f0eac4 into main Aug 1, 2023
@aduth aduth deleted the aduth-lg-10477-security-key-firefox branch August 1, 2023 13:32
@mitchellhenke mitchellhenke mentioned this pull request Aug 1, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@kevinsmaster5 kevinsmaster5 kevinsmaster5 approved these changes

@mdiarra3 mdiarra3 Awaiting requested review from mdiarra3

@mitchellhenke mitchellhenke Awaiting requested review from mitchellhenke

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

FIDO2 enrollment fails in Firefox because AuthenticatorAttestationResponse.getTransports() is not supported

2 participants

@aduth @kevinsmaster5