]> source.dussan.org Git - gitea.git/commit
projects / gitea.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2871ea0) | patch
Fix bugs with WebAuthn preventing sign in and registration. (#22651)
authorzeripath <art27@cantab.net>
Wed, 1 Feb 2023 07:24:10 +0000 (07:24 +0000)
committerGitHub <noreply@github.com>
Wed, 1 Feb 2023 07:24:10 +0000 (07:24 +0000)
commit19d5b2f922c2defde579a935fbedb680eb8fff18
tree5dd539b782ce277d0f30a7878e6c9a6ac07a81c1tree | snapshot
parent2871ea08096cba15546f357d0ec473734ee9d8becommit | diff
Fix bugs with WebAuthn preventing sign in and registration. (#22651)

This PR fixes two bugs with Webauthn support:

* There was a longstanding bug within webauthn due to the backend using
URLEncodedBase64 but the javascript using decoding using plain base64.
This causes intermittent issues with users reporting decoding errors.
* Following the recent upgrade to webauthn there was a change in the way
the library expects RPOrigins to be configured. This leads to the
Relying Party Origin not being configured and prevents registration.

Fix #22507

Signed-off-by: Andrew Thornton <art27@cantab.net>
Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
modules/auth/webauthn/webauthn.go diff | blob | history
modules/auth/webauthn/webauthn_test.go diff | blob | history
web_src/js/features/user-auth-webauthn.js diff | blob | history
Git with a cup of tea! Painless self-hosted all-in-one software development service, including Git hosting, code review, team collaboration, package registry and CI/CD: https://github.com/go-gitea/gitea