Magic-Mirror/gecko-dev
1
0
Fork 0
mirror of https://github.com/mozilla/gecko-dev.git synced 2024-10-27 20:25:44 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
7a65251f71
gecko-dev/dom/webauthn
History
J.C. Jones b24d631e4c Bug 1385008: WebAuthn CollectedClientData.Origin must be RP ID r=keeler 
The WebAuthn WD-05 version of the specification defines the Origin field [1]
of the CollectedClientData as being set to the RP ID [2][3].

Note there is some ambiguity in the specification, as [1] says
CollectedClientData.Origin is the document's origin, while the
algorithms [2] and [3] set it to RP ID.

I'm going to stick with the algorithm's definition for this patch; it's
simple to revert when we move to WD-06 (Bug 1384776).

[1] https://www.w3.org/TR/webauthn/#dom-collectedclientdata-origin
[2] https://www.w3.org/TR/webauthn/#createCredential
[3] https://www.w3.org/TR/webauthn/#getAssertion

MozReview-Commit-ID: LW918sIg5wH

--HG--
extra : rebase_source : 799f5fa8878614c45d0def07d01d6c1c0c6e9824
2017-07-27 10:27:53 -07:00
..
cbor-cpp Bug 1380529 - Add a CBOR library for WebAuthn (1/3) r=ttaubert 2017-07-13 18:12:57 -07:00
tests Bug 1385008: WebAuthn CollectedClientData.Origin must be RP ID r=keeler 2017-07-27 10:27:53 -07:00
AuthenticatorAssertionResponse.cpp bug 1332681 - part 2/4 - authentication.getAssertion: return a PublicKeyCredential instead of a WebAuthnAssertion r=jcj,qdot 2017-05-22 13:03:58 -07:00
AuthenticatorAssertionResponse.h bug 1332681 - part 2/4 - authentication.getAssertion: return a PublicKeyCredential instead of a WebAuthnAssertion r=jcj,qdot 2017-05-22 13:03:58 -07:00
AuthenticatorAttestationResponse.cpp bug 1332681 - part 1/4 - authentication.makeCredential: return a PublicKeyCredential instead of a ScopedCredentialInfo r=jcj,qdot 2017-05-16 17:07:01 -07:00
AuthenticatorAttestationResponse.h bug 1332681 - part 1/4 - authentication.makeCredential: return a PublicKeyCredential instead of a ScopedCredentialInfo r=jcj,qdot 2017-05-16 17:07:01 -07:00
AuthenticatorResponse.cpp bug 1332681 - part 1/4 - authentication.makeCredential: return a PublicKeyCredential instead of a ScopedCredentialInfo r=jcj,qdot 2017-05-16 17:07:01 -07:00
AuthenticatorResponse.h bug 1332681 - part 1/4 - authentication.makeCredential: return a PublicKeyCredential instead of a ScopedCredentialInfo r=jcj,qdot 2017-05-16 17:07:01 -07:00
moz.build Backed out changeset 674770e65a4f (bug 1265472) for memory leaks in browser_webauthn_telemetry.js 2017-07-26 07:56:38 +02:00
NSSU2FTokenRemote.cpp Bug 1260318 - Scope U2F Soft Tokens to a single AppID r=qdot,rbarnes 2017-02-01 15:21:04 -07:00
NSSU2FTokenRemote.h
PublicKeyCredential.cpp bug 1332681 - part 1/4 - authentication.makeCredential: return a PublicKeyCredential instead of a ScopedCredentialInfo r=jcj,qdot 2017-05-16 17:07:01 -07:00
PublicKeyCredential.h bug 1332681 - part 1/4 - authentication.makeCredential: return a PublicKeyCredential instead of a ScopedCredentialInfo r=jcj,qdot 2017-05-16 17:07:01 -07:00
PWebAuthnTransaction.ipdl Bug 1378762 - Remove 'aSignature' argument from U2FTokenTransport::Register() r=qDot,jcj 2017-07-06 14:44:56 +02:00
U2FHIDTokenManager.cpp Bug 1380954 - Forward WebAuthnTransactionInfo::TimeoutMS() to U2F*TokenManagers r=jcj 2017-07-14 19:27:53 +02:00
U2FHIDTokenManager.h Bug 1380954 - Forward WebAuthnTransactionInfo::TimeoutMS() to U2F*TokenManagers r=jcj 2017-07-14 19:27:53 +02:00
U2FSoftTokenManager.cpp Bug 1380954 - Forward WebAuthnTransactionInfo::TimeoutMS() to U2F*TokenManagers r=jcj 2017-07-14 19:27:53 +02:00
U2FSoftTokenManager.h Bug 1380954 - Forward WebAuthnTransactionInfo::TimeoutMS() to U2F*TokenManagers r=jcj 2017-07-14 19:27:53 +02:00
U2FTokenManager.cpp Backed out changeset 674770e65a4f (bug 1265472) for memory leaks in browser_webauthn_telemetry.js 2017-07-26 07:56:38 +02:00
U2FTokenManager.h Bug 1379580 - U2FTokenTransport promises should resolve to U2F data buffers r=qDot 2017-07-11 11:09:08 +02:00
U2FTokenTransport.h Bug 1380954 - Forward WebAuthnTransactionInfo::TimeoutMS() to U2F*TokenManagers r=jcj 2017-07-14 19:27:53 +02:00
WebAuthnCBORUtil.cpp Bug 1380529 - Use CBOR for the Create Credential WebAuthn call (2/3) r=ttaubert 2017-07-13 18:12:50 -07:00
WebAuthnCBORUtil.h Bug 1380529 - Use CBOR for the Create Credential WebAuthn call (2/3) r=ttaubert 2017-07-13 18:12:50 -07:00
WebAuthnManager.cpp Bug 1385008: WebAuthn CollectedClientData.Origin must be RP ID r=keeler 2017-07-27 10:27:53 -07:00
WebAuthnManager.h Bug 1329764 - Call IsRegistrableDomainSuffixOfOrEqualTo for WebAuthn r=keeler 2017-07-07 13:32:31 -07:00
WebAuthnRequest.h
WebAuthnTransactionChild.cpp Bug 1378762 - Remove 'aSignature' argument from U2FTokenTransport::Register() r=qDot,jcj 2017-07-06 14:44:56 +02:00
WebAuthnTransactionChild.h Bug 1378762 - Remove 'aSignature' argument from U2FTokenTransport::Register() r=qDot,jcj 2017-07-06 14:44:56 +02:00
WebAuthnTransactionParent.cpp Bug 1375744 - Add U2FTokenTransport::Cancel() to abort requests on HW devices r=qDot 2017-06-23 21:04:38 +02:00
WebAuthnTransactionParent.h Bug 1323339 - Add U2FTokenManager class and support IPC Parent classes; r=jcj r=baku 2017-05-09 13:21:23 -07:00
WebAuthnUtil.cpp Bug 1380529 - Use CBOR for the Create Credential WebAuthn call (2/3) r=ttaubert 2017-07-13 18:12:50 -07:00
WebAuthnUtil.h Bug 1380529 - Use CBOR for the Create Credential WebAuthn call (2/3) r=ttaubert 2017-07-13 18:12:50 -07:00