mirror of
https://github.com/nodemailer/wildduck.git
synced 2024-12-29 11:46:30 +08:00
Added rpId to webauthnAssertAuthentication expectations
This allows for authentication from subdomains. Fido2Lib.assertionResult compares the rpIdHash returned by the users browser, and since the key is created on the main domain it can't use the passed in origin for the hash comparison.
The related Fido2Lib line: a5003fa5bf/lib/validator.js (L437)
This commit is contained in:
parent
46961586c5
commit
fda7f199ad
1 changed files with 2 additions and 1 deletions
|
@ -2713,7 +2713,8 @@ class UserHandler {
|
||||||
factor: 'either',
|
factor: 'either',
|
||||||
publicKey: credentialData.publicKey,
|
publicKey: credentialData.publicKey,
|
||||||
prevCounter: credentialData.counter,
|
prevCounter: credentialData.counter,
|
||||||
userHandle: null
|
userHandle: null,
|
||||||
|
rpId: config.webauthn.rpId
|
||||||
};
|
};
|
||||||
|
|
||||||
const f2l = new Fido2Lib(Object.assign({}, config.webauthn));
|
const f2l = new Fido2Lib(Object.assign({}, config.webauthn));
|
||||||
|
|
Loading…
Reference in a new issue