By: Shobhan Biswas user 18 Oct 2022 at 11:37 p.m. CDT

0 Responses
Shobhan Biswas gravatar
Fido2 is not working when I'm using mac touchId with Safari. With Chrome it's working fine. During the Registration phase (Attestation) everything is working fine, but getting the error during login (Assertion). * Interception Script : fido2 * Browser : Safari 15.6.1 * Gluu Version: 4.4.1 Error Log: 2022-10-19 04:21:55,265 INFO [qtp952562199-15] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Fido2. Authenticate for step 1 2022-10-19 04:21:55,557 INFO [qtp952562199-20] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Fido2. Prepare for step 2 2022-10-19 04:21:55,559 INFO [qtp952562199-20] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Fido2. Initialization. Downloading Fido2 metadata 2022-10-19 04:21:55,572 INFO [qtp952562199-20] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Fido2. Prepare for step 2. Call Fido2 endpoint in order to start attestation flow 2022-10-19 04:21:55,574 INFO [qtp952562199-20] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - true 2022-10-19 04:21:55,575 INFO [qtp952562199-20] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - basic_json {'attestation': 'direct', 'displayName': u'passworduser', 'authenticatorSelection': {'authenticatorAttachment': 'platform', 'userVerification': 'discouraged', 'requireResidentKey': 'false'}, 'username': u'passworduser'} 2022-10-19 04:21:55,583 INFO [qtp952562199-20] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Fido2. Prepare for step 2. Successfully start flow with next requests. 2022-10-19 04:21:55,583 INFO [qtp952562199-20] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - fido2_assertion_request: 'None' 2022-10-19 04:21:55,583 INFO [qtp952562199-20] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - fido2_attestation_request: '{"attestation":"direct","authenticatorSelection":{"authenticatorAttachment":"platform","requireResidentKey":false,"userVerification":"discouraged"},"challenge":"ZgYQxt251VXknHomeZV9rldD0emoy9LAljGc6RAYxwc","pubKeyCredParams":[{"type":"public-key","alg":-257},{"type":"public-key","alg":-7}],"rp":{"name":"https://gluu-true-news.com","id":"gluu-true-news.com"},"user":{"id":"_RJoySqggJALSzwjnfofnMgW7ncOZWIZHkhug0FBq08","name":"passworduser","displayName":"passworduser"},"excludeCredentials":[]}' 2022-10-19 04:22:03,346 INFO [qtp952562199-20] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Fido2. Authenticate for step 2 2022-10-19 04:22:03,347 INFO [qtp952562199-20] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Fido2. Prepare for step 2. Call Fido2 in order to finish registration flow 2022-10-19 04:22:52,033 INFO [qtp952562199-15] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Fido2. Authenticate for step 1 2022-10-19 04:22:52,379 INFO [qtp952562199-20] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Fido2. Prepare for step 2 2022-10-19 04:22:52,383 INFO [qtp952562199-20] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Fido2. Prepare for step 2. Call Fido2 endpoint in order to start assertion flow 2022-10-19 04:22:52,401 INFO [qtp952562199-20] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Fido2. Prepare for step 2. Successfully start flow with next requests. 2022-10-19 04:22:52,401 INFO [qtp952562199-20] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - fido2_assertion_request: '{"userVerification":"preferred","challenge":"B7QIzbElLriHWoRXhrprZCho0hg1MgVMEj5e5gCJdVs","rpId":"gluu-true-news.com","allowCredentials":[{"type":"public-key","transports":["internal"],"id":"45jGQaC2aozaLqUesfdyIhA6qi8"}]}' 2022-10-19 04:22:52,402 INFO [qtp952562199-20] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - fido2_attestation_request: 'None' 2022-10-19 04:23:02,844 INFO [qtp952562199-15] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Fido2. Authenticate for step 2 2022-10-19 04:23:02,845 INFO [qtp952562199-15] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Fido2. Prepare for step 2. Call Fido2 in order to finish authentication flow 2022-10-19 04:23:02,862 INFO [qtp952562199-15] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Fido2. Authenticate for step 2. Get invalid authentication status from Fido2 server