Unexpected behavior residentKey = required with authenticatorAttachment=cross-platform
64 views
Skip to first unread message
Karen Tonoyan
Jun 1, 2023, 3:11:41 AM6/1/23
to FIDO Dev (fido-dev)
*Google Play services version: 23.17.15
*Android OS: 13
*Fido library: com.google.android.gms:play-services-fido:20.0.1
* Reproducible on any device
Trying to register Fido2 authenticator using Fido2ApiClient
Creating AuthenticatorSelectionCriteria following way :
AuthenticatorSelectionCriteria.Builder authenticatorSelectionBuilder = new AuthenticatorSelectionCriteria.Builder();
Attachment attachment = Attachment.fromString("cross-platform");
authenticatorSelectionBuilder.setAttachment(attachment);
ResidentKeyRequirement residentKeyRequirement = ResidentKeyRequirement.fromString("preferred"); // or "required"
authenticatorSelectionBuilder.setResidentKeyRequirement(residentKeyRequirement);
Add authenticator selection criteria to PublicKeyCredentialCreationOptions.Builder and perform registration
Expected result: Roaming cross-platform security keys should be suggested for registration (see Expected_screen.png)
Actual Result: Platform authenticator with multidevice key gets registered (see Actual_Screen.png)
*Android OS: 13
*Fido library: com.google.android.gms:play-services-fido:20.0.1
* Reproducible on any device
Trying to register Fido2 authenticator using Fido2ApiClient
Creating AuthenticatorSelectionCriteria following way :
AuthenticatorSelectionCriteria.Builder authenticatorSelectionBuilder = new AuthenticatorSelectionCriteria.Builder();
Attachment attachment = Attachment.fromString("cross-platform");
authenticatorSelectionBuilder.setAttachment(attachment);
ResidentKeyRequirement residentKeyRequirement = ResidentKeyRequirement.fromString("preferred"); // or "required"
authenticatorSelectionBuilder.setResidentKeyRequirement(residentKeyRequirement);
Add authenticator selection criteria to PublicKeyCredentialCreationOptions.Builder and perform registration
Expected result: Roaming cross-platform security keys should be suggested for registration (see Expected_screen.png)
Actual Result: Platform authenticator with multidevice key gets registered (see Actual_Screen.png)
Seth Landry
Jun 1, 2023, 3:15:08 AM6/1/23
to FIDO Dev (fido-dev), Karen Tonoyan
Are you an administrator? If you are i have a question.
Seth Landry
Jun 1, 2023, 3:16:47 AM6/1/23
to FIDO Dev (fido-dev), Seth Landry, Karen Tonoyan
private message me email
nuno sung
Jun 1, 2023, 3:50:41 AM6/1/23
to FIDO Dev (fido-dev), Karen Tonoyan
https://passkeys.dev/docs/reference/android/
Planned...
Planned...
Karen Tonoyan 在 2023年6月1日 星期四下午3:11:41 [UTC+8] 的信中寫道:
My1
Jun 1, 2023, 4:14:33 AM6/1/23
to nuno sung, FIDO Dev (fido-dev), Karen Tonoyan
yeah I have been wanting this for YEARS.
--
You received this message because you are subscribed to the Google Groups "FIDO Dev (fido-dev)" group.
To unsubscribe from this group and stop receiving emails from it, send an email to fido-dev+u...@fidoalliance.org.
To view this discussion on the web visit https://groups.google.com/a/fidoalliance.org/d/msgid/fido-dev/7f9ebead-1c9e-4b8d-8051-f384144ab5a4n%40fidoalliance.org.
Reply all
Reply to author
Forward
0 new messages