paxton
/
mailcow
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

add fido2 android support by including cids

master
FreddleSpl0it 2022-01-14 20:52:02 +01:00 committed by FreddleSpl0it
parent c11b6557db
commit 3d250bfa49
No known key found for this signature in database
GPG Key ID: 38F5FCC689C181F9
1 changed files with 16 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

23
data/web/json_api.php
View File

@ -448,13 +448,16 @@ if (isset($_GET['query'])) {
break; break;
case "fido2-get-args": case "fido2-get-args":
header('Content-Type: application/json'); header('Content-Type: application/json');
// Login without username, no ids! // fetch allowed credentialIds
// $ids = fido2(array("action" => "get_all_cids")); $cids = fido2(array("action" => "get_all_cids"));
// if (count($ids) == 0) { if (count($cids) == 0) {
// return; print(json_encode(array(
// } 'type' => 'error',
$ids = NULL; 'msg' => 'Cannot find matching credentialIds'
$getArgs = $WebAuthn->getGetArgs($ids, 30, true, true, true, true, $GLOBALS['FIDO2_UV_FLAG_LOGIN']); )));
}
$getArgs = $WebAuthn->getGetArgs($cids, 30, true, true, true, true, $GLOBALS['FIDO2_UV_FLAG_LOGIN']);
print(json_encode($getArgs)); print(json_encode($getArgs));
$_SESSION['challenge'] = $WebAuthn->getChallenge(); $_SESSION['challenge'] = $WebAuthn->getChallenge();
return; return;
@ -486,6 +489,12 @@ if (isset($_GET['query'])) {
while($row = array_shift($rows)) { while($row = array_shift($rows)) {
$cids[] = base64_decode($row['keyHandle']); $cids[] = base64_decode($row['keyHandle']);
} }
if (count($cids) == 0) {
print(json_encode(array(
'type' => 'error',
'msg' => 'Cannot find matching credentialIds'
)));
}
$getArgs = $WebAuthn->getGetArgs($cids, 30, true, true, true, true, $GLOBALS['WEBAUTHN_UV_FLAG_LOGIN']); $getArgs = $WebAuthn->getGetArgs($cids, 30, true, true, true, true, $GLOBALS['WEBAUTHN_UV_FLAG_LOGIN']);
$getArgs->publicKey->extensions = array('appid' => "https://".$getArgs->publicKey->rpId); $getArgs->publicKey->extensions = array('appid' => "https://".$getArgs->publicKey->rpId);