diff options
| author | Morris Jobke <hey@morrisjobke.de> | 2020-07-20 09:24:08 +0200 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2020-07-20 09:24:08 +0200 |
| commit | 9271d65641493454af4d79e21a500ff1da1387fc (patch) | |
| tree | a0b4edb05951ca6761a8ccbf91c2dd37e4fe3c87 /lib | |
| parent | 5add0ff1e2a29b80c10772bbff6c5ad7c09e5abc (diff) | |
| parent | 884f3d009a8b81422b1f9275a21d5b125066af73 (diff) | |
| download | nextcloud-server-9271d65641493454af4d79e21a500ff1da1387fc.tar.gz nextcloud-server-9271d65641493454af4d79e21a500ff1da1387fc.zip | |
Merge pull request #21880 from nextcloud/webauthn/discourage_user_auth
Discourage webauthn user interaction
Diffstat (limited to 'lib')
| -rw-r--r-- | lib/private/Authentication/WebAuthn/Manager.php | 9 |
1 files changed, 7 insertions, 2 deletions
diff --git a/lib/private/Authentication/WebAuthn/Manager.php b/lib/private/Authentication/WebAuthn/Manager.php index cc3e9aba1cc..4415badc9b0 100644 --- a/lib/private/Authentication/WebAuthn/Manager.php +++ b/lib/private/Authentication/WebAuthn/Manager.php @@ -107,7 +107,11 @@ class Manager { $excludedPublicKeyDescriptors = [ ]; - $authenticatorSelectionCriteria = new AuthenticatorSelectionCriteria(); + $authenticatorSelectionCriteria = new AuthenticatorSelectionCriteria( + null, + false, + AuthenticatorSelectionCriteria::USER_VERIFICATION_REQUIREMENT_DISCOURAGED + ); return new PublicKeyCredentialCreationOptions( $rpEntity, @@ -186,7 +190,8 @@ class Manager { random_bytes(32), // Challenge 60000, // Timeout $this->stripPort($serverHost), // Relying Party ID - $registeredPublicKeyCredentialDescriptors // Registered PublicKeyCredentialDescriptor classes + $registeredPublicKeyCredentialDescriptors, // Registered PublicKeyCredentialDescriptor classes + AuthenticatorSelectionCriteria::USER_VERIFICATION_REQUIREMENT_DISCOURAGED ); } |