Ken Buchanan (Gerrit)

unread,

2:28 PM (5 hours ago) 2:28 PM

to Martin Kreichgauer, AyeAye, Chromium LUCI CQ, Christian Biesinger, chromium...@chromium.org, feature-me...@chromium.org, blink-...@chromium.org, derinel+wat...@google.com, npm+...@chromium.org, webauthn...@chromium.org, yigu+...@chromium.org

Attention needed from Martin Kreichgauer

Ken Buchanan voted and added 1 comment

Votes added by Ken Buchanan

Commit-Queue

+1

1 comment

Patchset-level comments

File-level comment, Patchset 4 (Latest):

Ken Buchanan . resolved

PTAL?

Open in Gerrit

Related details

Attention is currently required from:

Martin Kreichgauer

Submit Requirements:

Code-Coverage
Code-Owners
Code-Review
Review-Enforcement

Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings.

Gerrit

satisfied_requirement

unsatisfied_requirement

open

diffy

Martin Kreichgauer (Gerrit)

unread,

6:16 PM (1 hour ago) 6:16 PM

to Ken Buchanan, Martin Kreichgauer, AyeAye, Chromium LUCI CQ, Christian Biesinger, chromium...@chromium.org, feature-me...@chromium.org, blink-...@chromium.org, derinel+wat...@google.com, npm+...@chromium.org, webauthn...@chromium.org, yigu+...@chromium.org

Attention needed from Ken Buchanan

Martin Kreichgauer voted and added 1 comment

Votes added by Martin Kreichgauer

Code-Review

+1

1 comment

File chrome/browser/webauthn/chrome_authenticator_request_delegate.cc

Line 895, Patchset 4 (Latest):

    const url::Origin top_frame_origin =
        GetRenderFrameHost()->GetMainFrame()->GetLastCommittedOrigin();
    if (!rate_limiter->IsRequestAllowed(top_frame_origin)) {

Martin Kreichgauer . unresolved

Nit: Requests being attributed to the main frame origin seems like an implementation detail. Should IsRequestAllowed() just take the RenderFrameHost reference as an input?

Open in Gerrit

Related details

Attention is currently required from:

Ken Buchanan

Submit Requirements:

Code-Coverage
Code-Owners

Code-Review
No-Unresolved-Comments
Review-Enforcement

Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings.

Gerrit

satisfied_requirement

unsatisfied_requirement

open

diffy

Ken Buchanan (Gerrit)

unread,

6:57 PM (1 hour ago) 6:57 PM

to Martin Kreichgauer, AyeAye, Chromium LUCI CQ, Christian Biesinger, chromium...@chromium.org, feature-me...@chromium.org, blink-...@chromium.org, derinel+wat...@google.com, npm+...@chromium.org, webauthn...@chromium.org, yigu+...@chromium.org

Ken Buchanan added 1 comment

File chrome/browser/webauthn/chrome_authenticator_request_delegate.cc

Line 895, Patchset 4: const url::Origin top_frame_origin =


        GetRenderFrameHost()->GetMainFrame()->GetLastCommittedOrigin();
    if (!rate_limiter->IsRequestAllowed(top_frame_origin)) {

Martin Kreichgauer . resolved

Nit: Requests being attributed to the main frame origin seems like an implementation detail. Should IsRequestAllowed() just take the RenderFrameHost reference as an input?

Ken Buchanan

Done. We need something persistent so using the frame token.

Open in Gerrit

Related details

Attention set is empty

Submit Requirements:

Code-Coverage
Code-Owners
Code-Review

Review-Enforcement

Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings.

Gerrit

satisfied_requirement

open

diffy

Reply all

Reply to author

Forward

[WebAuthn] Make immediate get no longer consume user activation [chromium/src : main]

Ken Buchanan (Gerrit)

Ken Buchanan voted and added 1 comment

Votes added by Ken Buchanan

1 comment

Related details

Martin Kreichgauer (Gerrit)

Martin Kreichgauer voted and added 1 comment

Votes added by Martin Kreichgauer

1 comment

Related details

Ken Buchanan (Gerrit)

Ken Buchanan added 1 comment

Related details