Add an excluded credential prompt
Categories
(Core :: DOM: Web Authentication, enhancement, P3)
Tracking
()
People
(Reporter: jschanck, Assigned: jschanck)
References
(Blocks 2 open bugs)
Details
Attachments
(1 file)
An authenticator will return CTAP2_ERR_CREDENTIAL_EXCLUDED when it finds that it stores a valid credential that is listed in the authenticatorMakeCredential command's excludeList argument. This prevents the user from registering multiple credentials for the account on one authenticator.
We should show a prompt that guides the user towards retrying with a different authenticator when this happens.
|
Assignee | |
Updated•1 year ago
|
|
|
Assignee | |
Updated•1 year ago
|
|
|
Assignee | |
Updated•1 year ago
|
|
|
Assignee | |
Updated•1 year ago
|
|
|
Assignee | |
Comment 1•1 year ago
|
||
Depends on D177944
Pushed by jschanck@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/a21e2a30012a add an excluded WebAuthn credential prompt. r=keeler
|
||
Comment 3•1 year ago
|
||
| bugherder | ||
|
||
Comment 4•1 year ago
|
||
Verified using the latest Nightly build 115.0a1 that user is now prompted with a notification message letting the user know that that device was already registered and to try a new device.
Testing was done using the following:
- Yubico 5 NFC
- Yubico Bio
- Feitian ePass FIDO2 Security Key A4B
- Windows 7, Ubuntu 20.04 and macOS 13
|
||
Updated•1 year ago
|
|
|
Assignee | |
Comment 6•1 year ago
|
||
I'll mark this as wontfix for 114. The existing patch doesn't apply cleanly, and I don't think it's a significant enough bug to warrant investing more time in it.
|
|
||
Updated•10 months ago
|
Description
•