webauthn-open-source / webauthn-simple-app Goto Github PK

Hello,
how i can Take "Documentation for all classes and advanced options " when i click on then
the error is "404 There isn't a GitHub Pages site here."
thank you

Hello,

today I noticed that live demo www.webauthn.org is not working.

>ping webauthn.org

Pinging webauthn.org [45.55.1.178] with 32 bytes of data:
Request timed out.
Request timed out.
Request timed out.
Request timed out.

Also https://downforeveryoneorjustme.com/webauthn.org reports It's not just you! webauthn.org looks down from here.

Can you check it? Thank you!

One of the most important part is configuring the App (for instance set specific endpoints) and it's not describe in the documentation !

Hi,

I am working on building a test system, both a FIDO2 server and front end and leveraged your code. I am using this as the FIDO backend:
https://github.com/web-auth/webauthn-framework

I was not too familiar with how server and client interacted, but while building up the "attestation" side of the server to connect with your front end, I kept getting an error code back of "type" missing from the response object. I patched the code with a few lines similar to this:
this.type = coerceToBase64Url("public-key", "type");

The server now responds properly, I can't say this is valid for all aspects of the FIDO2 standard. I am not too familiar with the fine detail yet (one of the reasons I am building the test server).

Here is the link to debugging on the server side that has more information:
web-auth/webauthn-framework#121

Refactor to send / receive messages in a standard format. Include clientPreferences in messages sent to the server. Receive and merge / resolve serverPreferences in server response.

Use event listeners rather than having on submit function calls. Required for CSP.

Would you consider writing the module as an ES6 module (with export statements) and transform it into an UMD module (for example with rollup) to allow it to be used in all common environments?

Would it be necessary to protect the POST requests in this library with a CSRF token? The response can't be read from other security contexts but it might still be abused to wrongly trigger risk engines.

Hi there! Not sure if this would be the appropriate place to ask, but I noticed that the live demo page has an expired certificate. As a result, the site is giving giving in errors in Chrome, Firefox, and Edge. I attached a screenshot below:

Wait for on load event before throwing secure context or browser supported events.

Hello, how can i run this project. I have tried to run it with npm and nodeJS but it only can be installed with npm, where is the main js file for web page running?

Where is the server and how do i set the url