bitwarden/server
1
0
Fork 0
mirror of https://github.com/bitwarden/server synced 2025-12-06 00:03:34 +00:00
Code Issues Releases Wiki Activity

Discourage user verification on WebAuthn enroll (#1322)

Browse Source
This commit is contained in:
Oscar Hinton
2021-05-12 18:46:35 +02:00
committed by GitHub
parent e7892d8a28
commit cb9ed50248
1 changed files with 7 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
src/Core/Services/Implementations/UserService.cs
View File

@@ -526,7 +526,13 @@ namespace Bit.Core.Services
.Select(k => new TwoFactorProvider.WebAuthnData((dynamic)k.Value).Descriptor) .Select(k => new TwoFactorProvider.WebAuthnData((dynamic)k.Value).Descriptor)
.ToList(); .ToList();
var options = _fido2.RequestNewCredential(fidoUser, excludeCredentials, AuthenticatorSelection.Default, AttestationConveyancePreference.None); var authenticatorSelection = new AuthenticatorSelection
{
AuthenticatorAttachment = null,
RequireResidentKey = false,
UserVerification = UserVerificationRequirement.Discouraged
};
var options = _fido2.RequestNewCredential(fidoUser, excludeCredentials, authenticatorSelection, AttestationConveyancePreference.None);
provider.MetaData["pending"] = options.ToJson(); provider.MetaData["pending"] = options.ToJson();
providers[TwoFactorProviderType.WebAuthn] = provider; providers[TwoFactorProviderType.WebAuthn] = provider;