Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. | Gerrit |
Code-Review | +1 |
UIPresentation::kPasskeyUpgrade) {
Does this mean that other discoveries are active for conditional create? What if I tap a security key at just the right time?
Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. | Gerrit |
alexmos: Could you PTAL at //content/public changes?
kenrb: Could you LGTM for mojo and metrics?
Does this mean that other discoveries are active for conditional create? What if I tap a security key at just the right time?
Yes. One of the many things that don't quite work yet as they should. :) Added a TODO just to call this out.
Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. | Gerrit |
Code-Review | +1 |
lgtm
You should probably have the Android implementation return an error if the flag is turned on and a conditional create is attempted, possibly in a separate CL.
Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. | Gerrit |
tkent@, could you please approve for runtime_enabled_features? Thank you!
Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. | Gerrit |
Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. | Gerrit |
Code-Review | +1 |
Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. | Gerrit |
Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. | Gerrit |
webauthn: add a basic implementation of conditional create requests
For WebAuthn create() requests with mediation='conditional', the browser
can create a credential and resolve the request promise without any user
interaction, if the user has previously agreed to create credentials and
the browser has recently mediated an authentication.
In Chrome's implementation, we create a credential in GPM if the
following conditions are true:
- The user has a matching password in GPM for the same username that can
be filled on the site making the WebAuthn request.
- The password has recently been used.
To handle conditional create requests, this change adds a new request
controller class that inherits from DocumentUserData. The request
controller is responsible for determining whether a matching password
exists, driving interaction with the enclave, and showing post-request
confirmation UI (not yet implemented).
The GPMEnclaveController, which usually drives enclave interactions for
WebAuthn requests, is not instantiated for conditional create requests,
since it is tightly coupled with the modal UI.
The implementation is gated on the default-disabled
`kWebAuthnGpmPasskeyUpgrade` feature flag.
Blink Intent To Prototype: https://groups.google.com/a/chromium.org/g/blink-dev/c/XFJmqtQpMds
Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. | Gerrit |
It looks like this CL has resulted in a tree-blocking failure: https://cr-buildbucket.appspot.com/build/8731360337266560177
I'll go ahead and submit a revert in order to remedy this ASAP.
Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. | Gerrit |
Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. | Gerrit |