Issue while configuring Google titan key on safari browser

47 views
Skip to first unread message

Sabarinathan Eaganathan

unread,
Feb 6, 2023, 9:32:21 AM2/6/23
to FIDO Dev (fido-dev)
Hi all,
  I am facing issue while configuring google titan security key on safari browser. While i am debugging code I can find the Exception while comparing authenticator's Relying party vs server's relying party hash. Authenticator's relying party hash is different from sha256 hashed server's relying party.
  • The same code is working properly while trying configuring Yubikey Devices on Safari. 
  • The same following code is working properly while configuring titan security key via chrome browser, issue persists only while configuring google titan key via safari browser.

Can some one look at my case and help regarding that.

Code snippet:

if (!Arrays.equals(authenticatorData.getRpIdHash(),relyingPartyIDHash)) {

           //RPID hash incorrect

          throw new Exception("RPID hash incorrect");

 }


Safari browser version:  Version 16.3 (18614.4.6.1.5)

Google titan security key  model: K40T

Thank you in advance,
Sabrinathan.e.

Joost van Dijk

unread,
Feb 6, 2023, 9:57:23 AM2/6/23
to Sabarinathan Eaganathan, FIDO Dev (fido-dev)
--
You received this message because you are subscribed to the Google Groups "FIDO Dev (fido-dev)" group.
To unsubscribe from this group and stop receiving emails from it, send an email to fido-dev+u...@fidoalliance.org.
To view this discussion on the web visit https://groups.google.com/a/fidoalliance.org/d/msgid/fido-dev/f60a4de5-a9bf-4841-92bc-4d9e99c3b147n%40fidoalliance.org.

Sabarinathan Eaganathan

unread,
Feb 6, 2023, 10:06:09 AM2/6/23
to FIDO Dev (fido-dev), Joost van Dijk, FIDO Dev (fido-dev), Sabarinathan Eaganathan
What is the solution for such usecase?

Joost van Dijk

unread,
Feb 6, 2023, 10:11:42 AM2/6/23
to Sabarinathan Eaganathan, FIDO Dev (fido-dev)
All I can think of is:

1) wait for Apple to fix the problem
2) use a different browser or use Safari on iOS
3) use a different type of security key (one that implements CTAP2)

Cheers,
—Joost 

On 6 Feb 2023, at 16:06, Sabarinathan Eaganathan <mail2sa...@gmail.com> wrote:

What is the solution for such usecase?
Reply all
Reply to author
Forward
0 new messages