Closed Bug 1835411 Opened 2 years ago Closed 1 year ago

Missing support for CTAP2/FIDO2 in WebAuthn

Categories

(Web Compatibility :: Knowledge Base, defect)

Product:
Web Compatibility
Component:
Knowledge Base
Type:
defect

Tracking

(Not tracked)

Status:
RESOLVED DUPLICATE of bug 1824831

People

(Reporter: ksenia, Unassigned)

References

Details

User Story

url:login.live.com/*
url:mysignins.microsoft.com/*
url:login.yahoo.com/*

Symptoms:

  • Users are unable to add a hardware security token to an account
  • Users are unable to use Windows Hello to sign into an account

Additional notes:

  • Even though this is affecting big properties, the issue is only affecting
    users who want to set up 2fa with a hardware token, and the assumption is that
    this is a relatively small subset of users.
User Story: (updated)
See Also: → https://github.com/webcompat/web-bugs/issues/119888

This affects users in our enterprise (including me) as we will be forcing phishing resistant logins in Entra, any plans to address this asap?

People are actively working on it. There are still a few remaining tasks, which you can discover by following the bug that is linked in the "depends on" section of this bug. All Bugzilla bugs have a "follow" button, and if you click that, you'll get updates per email as they happen. If you find a specific bug in our already-shipped implementation, please file a bug. But otherwise, please don't post "are there updates?" questions here - this is our workplace, and we try to keep the information density in bugs high.

In general, we support CTAP2 now. There are some remaining issues with Microsoft domains, but these are due to user agent sniffing and not lack of support.

Status: NEW → RESOLVED
Closed: 1 year ago
Duplicate of bug: 1824831
Resolution: --- → DUPLICATE
You need to log in before you can comment on or make changes to this bug.