mirror of
https://github.com/bitwarden/mobile.git
synced 2024-09-27 03:52:57 +02:00
71de3bedf4
* [PM-5731] feat: implement get assertion params object * [PM-5731] feat: add first test * [PM-5731] feat: add rp mismatch test * [PM-5731] feat: ask for credentials when found * [PM-5731] feat: find discoverable credentials * [PM-5731] feat: add tests for successful UV requests * [PM-5731] feat: add user does not consent test * [PM-5731] feat: check for UV when reprompt is active * [PM-5731] fix: tests a bit, needed some additional "arrange" steps * [PM-5731] feat: add support for counter * [PM-5731] feat: implement assertion without signature * [PM-5732] feat: finish authenticator assertion implementation note: CryptoFunctionService still needs Sign implemenation * [PM-5731] chore: minor clean up * [PM-5731] feat: scaffold make credential * [PM-5731] feat: start implementing attestation * [PM-5731] feat: implement credential exclusion * [PM-5731] feat: add new credential confirmaiton * [PM-5731] feat: implement credential creation * [PM-5731] feat: add user verification checks * [PM-5731] feat: add unknown error handling * [PM-5731] chore: clean up unusued params * [PM-5731] feat: partial attestation implementation * [PM-5731] feat: implement key generation * [PM-5731] feat: return public key in DER format * [PM-5731] feat: implement signing * [PM-5731] feat: remove logging * [PM-5731] chore: use primary constructor * [PM-5731] chore: add Async to method names * [PM-5731] feat: add support for silent discoverability * [PM-5731] feat: add support for specifying user presence requirement * [PM-5731] feat: ensure unlocked vault * [PM-5731] chore: clean up and refactor assertion tests * [PM-5731] chore: clean up and refactor attestation tests * [PM-5731] chore: add user presence todo comment * [PM-5731] feat: scaffold fido2 client * PM-5731 Fix build updating discoverable flag * [PM-5731] fix: failing test * [PM-5731] feat: add sameOriginWithAncestor and user id length checks * [PM-5731] feat: add incomplete rpId verification * [PM-5731] chore: document uri helpers * [PM-5731] feat: implement fido2 client createCredential * [PM-5731] feat: implement credential assertion in client * fix wrong signature format (cherry picked from commita1c9ebf01f
) * [PM-5731] fix: issues after cherry-pick * Fix incompatible GUID conversions (cherry picked from commitc801b2fc3a
) * [PM-5731] chore: remove default constructor * [PM-5731] feat: refactor user interface to increase flexibility * [PM-5731] feat: implement generic assertion user interface class * [PM-5731] feat: remove ability to make user presence optional * [PM-5731] chore: remove logging comments * [PM-5731] feat: add native reprompt support to the authenticator * [PM-5731] feat: allow pre and post UV * [PM-5731] chore: add `Async` to method name. Remove `I` from struct * [PM-5731] fix: discoverable string repr lowercase * [PM-5731] chore: don't use C# 12 features * [PM-5731] fix: replace magic strings and numbers with contants and enums * [PM-5731] fix: use UTC creation date * [PM-5731] fix: formatting * [PM-5731] chore: use properties for public fields * [PM-5731] chore: remove TODO * [PM-5731] fix: IsValidRpId --------- Co-authored-by: Federico Maccaroni <fedemkr@gmail.com> Co-authored-by: mpbw2 <59324545+mpbw2@users.noreply.github.com>
58 lines
2.3 KiB
C#
58 lines
2.3 KiB
C#
namespace Bit.Core.Utilities.Fido2
|
||
{
|
||
#nullable enable
|
||
|
||
/// <summary>
|
||
/// Parameters for asserting a credential.
|
||
///
|
||
/// This class is an extended version of the WebAuthn struct:
|
||
/// https://www.w3.org/TR/webauthn-2/#dictdef-publickeycredentialrequestoptions
|
||
/// </summary>
|
||
public class Fido2ClientAssertCredentialParams
|
||
{
|
||
/// <summary>
|
||
/// A value which is true if and only if the caller’s environment settings object is same-origin with its ancestors.
|
||
/// It is false if caller is cross-origin.
|
||
/// </summary>
|
||
public bool SameOriginWithAncestors { get; set; }
|
||
|
||
/// <summary>
|
||
/// The challenge that the selected authenticator signs, along with other data, when producing an authentication
|
||
/// assertion.
|
||
/// </summary>
|
||
public required byte[] Challenge { get; set; }
|
||
|
||
/// <summary>
|
||
/// The relying party identifier claimed by the caller. If omitted, its value will be the CredentialsContainer
|
||
/// object's relevant settings object's origin's effective domain.
|
||
/// </summary>
|
||
public string RpId { get; set; }
|
||
|
||
/// <summary>
|
||
/// The Relying Party's origin (e.g., "https://example.com").
|
||
/// </summary>
|
||
public string Origin { get; set; }
|
||
|
||
/// <summary>
|
||
/// A list of PublicKeyCredentialDescriptor objects representing public key credentials acceptable to the caller,
|
||
/// in descending order of the caller’s preference (the first item in the list is the most preferred credential,
|
||
/// and so on down the list).
|
||
/// </summary>
|
||
public PublicKeyCredentialDescriptor[] AllowCredentials { get; set; } = [];
|
||
|
||
/// <summary>
|
||
/// The Relying Party's requirements regarding user verification for the get() operation.
|
||
/// </summary>
|
||
public string UserVerification { get; set; } = "preferred";
|
||
|
||
/// <summary>
|
||
/// This time, in milliseconds, that the caller is willing to wait for the call to complete.
|
||
/// This is treated as a hint, and MAY be overridden by the client.
|
||
/// </summary>
|
||
/// <remarks>
|
||
/// This is not currently supported.
|
||
/// </remarks>
|
||
public int? Timeout { get; set; }
|
||
}
|
||
}
|