Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

request direct attestation does not work #49

Open
anaselhajjaji opened this issue Aug 30, 2022 · 3 comments
Open

request direct attestation does not work #49

anaselhajjaji opened this issue Aug 30, 2022 · 3 comments

Comments

@anaselhajjaji
Copy link

anaselhajjaji commented Aug 30, 2022

Hello

If I change in the method router.post('/registerRequest') to force the attestation to direct let attestation = 'direct';
I added in the router.post('/registerResponse') the following code: console.log(registrationInfo.aaguid);
the result is: 00000000-0000-0000-0000-000000000000

I think the attestation statement is not retrieved even if we ask for it... Can you tell why this happens?
Is it a limitation of the FIDO2 API for Android?

Thank you.

@agektmr
Copy link
Collaborator

agektmr commented Sep 5, 2022

That is odd. Can you point me to the server?

@anaselhajjaji
Copy link
Author

Thank your for your answer.

I noticed that even if the backend returns direct attestation in registration options, Android code ignores that (see: https://github.com/googlecodelabs/fido2-codelab/blob/master/android/app/src/main/java/com/example/android/fido2/api/AuthApi.kt#L312)

I made some changes on Android app only (see here: https://github.com/anaselhajjaji/fido2-codelab/pull/1/files) and when debugging I saw android-safetynet returned but there is an issue on backend code about certificate verification, hopefully I'll try to find some time to fix the backend as well.

See:
image

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants