bitwarden/browser
1
0
Fork 0
mirror of https://github.com/bitwarden/browser synced 2026-02-01 01:03:39 +00:00
Code Issues Releases Wiki Activity

Don't make PRF available in any client that is not web/browser, even if it's lying about navigator.credentials (#18687)

Browse Source
This commit is contained in:
Anders Åberg
2026-01-30 20:55:40 +01:00
committed by GitHub
parent 7c4ea23f88
commit 903acfa3df
1 changed files with 6 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
libs/key-management-ui/src/lock/services/default-webauthn-prf-unlock.service.ts
View File

@@ -54,11 +54,12 @@ export class DefaultWebAuthnPrfUnlockService implements WebAuthnPrfUnlockService
return false;
}
// If we're in the browser extension, check if we're in a Chromium browser
if (
this.platformUtilsService.getClientType() === ClientType.Browser &&
!this.platformUtilsService.isChromium()
) {
// PRF unlock is only supported on Web and Chromium-based browser extensions
const clientType = this.platformUtilsService.getClientType();
if (clientType === ClientType.Browser && !this.platformUtilsService.isChromium()) {
return false;
}
if (clientType !== ClientType.Web && clientType !== ClientType.Browser) {
return false;
}