source.dussan.org Git - nextcloud-server.git/commit

]> source.dussan.org Git - nextcloud-server.git/commit

projects / nextcloud-server.git / commit

author	Roeland Jago Douma <roeland@famdouma.nl>
	Thu, 16 Jul 2020 19:10:07 +0000 (21:10 +0200)
committer	Roeland Jago Douma <roeland@famdouma.nl>
	Thu, 16 Jul 2020 19:10:07 +0000 (21:10 +0200)
commit	884f3d009a8b81422b1f9275a21d5b125066af73
tree	e110a11350262dbc46016b7028a905bc0fff2af1	tree \| snapshot
parent	da4f3559c5f1ab5db77e2cb06c2d618fb228313b	commit \| diff

Discourage webauthn user interaction

Else people might have the feeling this is also doing 2FA. And since it
is only prefered it can be ignored and hacked around.

Once we have proper 2FA with webauthn in one go this probably needs to
be revisted.

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>

lib/private/Authentication/WebAuthn/Manager.php

diff | blob | history

Nextcloud server, a safe home for all your data: https://github.com/nextcloud/server

RSS Atom