3pp-mirror/pomerium
1
0
Fork 0
mirror of https://github.com/pomerium/pomerium.git synced 2025-07-07 20:08:17 +02:00
Code Issues Projects Releases Packages Wiki Activity

webauthn: only return known device credentials that match the given type

Browse source
This commit is contained in:
Caleb Doxsey 2023-02-15 16:23:55 -07:00
parent f2a5bda162
commit b966264cfd
2 changed files with 9 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

5
pkg/webauthnutil/options_test.go
View file

@ -81,9 +81,12 @@ func TestGenerateRequestOptions(t *testing.T) {
t.Run(DefaultDeviceType, func(t *testing.T) {
key := []byte{1, 2, 3}
options := GenerateRequestOptions(r, key, predefinedDeviceTypes[DefaultDeviceType], []*device.Credential{
{Id: "device1", Specifier: &device.Credential_Webauthn{Webauthn: &device.Credential_WebAuthn{
{Id: "device1", TypeId: DefaultDeviceType, Specifier: &device.Credential_Webauthn{Webauthn: &device.Credential_WebAuthn{
Id: []byte{4, 5, 6},
}}},
{Id: "device2", TypeId: "some-other-type", Specifier: &device.Credential_Webauthn{Webauthn: &device.Credential_WebAuthn{
Id: []byte{7, 8, 9},
}}},
})
options.Challenge = nil
assert.Equal(t, &webauthn.PublicKeyCredentialRequestOptions{