Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump hwsecurity-fido from 2.4.5 to 4.1.0-patch2 #3510

Merged
merged 2 commits into from
Dec 18, 2023
Merged

Bump hwsecurity-fido from 2.4.5 to 4.1.0-patch2 #3510

merged 2 commits into from
Dec 18, 2023

Conversation

AndyScherzinger
Copy link
Member

@AndyScherzinger AndyScherzinger commented Dec 12, 2023
edited
Loading

Preparation for sdk=34, as needed by the files app where this fix got implemented first

🚧 TODO

  • check if this still works

🏁 Checklist

  • ⛑️ Tests (unit and/or integration) are included or not needed
  • 🔖 Capability is checked or not needed
  • 🔙 Backport requests are created or not needed: /backport to stable-xx.x
  • 📅 Milestone is set
  • 🌸 PR title is meaningful (if it should be in the changelog: is it meaningful to users?)

@AndyScherzinger
Copy link
Member Author

@tobiasKaminsky @mahibi is any of you able to test this? Asking since I do not have such a key that can be used with a phone

@AndyScherzinger AndyScherzinger added 3. to review Waiting for reviews and removed 2. developing Work in progress labels Dec 13, 2023
@AndyScherzinger AndyScherzinger added this to the 18.1.0 milestone Dec 13, 2023
@tobiasKaminsky
Copy link
Member

I can test this, yes.

@AndyScherzinger AndyScherzinger force-pushed the chore/noid/updateFido branch 2 times, most recently from 421b4c1 to 9e9b0f4 Compare December 16, 2023 12:16
@tobiasKaminsky
Copy link
Member

tobiasKaminsky commented Dec 18, 2023
edited
Loading

On Firefox on Android I can use my NFC Fido Key.
Within Talk it says "your browser does not support WebAuthn".

So either this is broken or something else…

2023-12-18 09:11:36.964  7298-7298  chromium                com.nextcloud.talk2                  I  [INFO:CONSOLE(6)] "fidobridge start execution", source:  (6)
2023-12-18 09:11:36.964  7298-7298  chromium                com.nextcloud.talk2                  I  [INFO:CONSOLE(75)] "fidobridge end execution", source:  (75)
2023-12-18 09:11:37.855  7298-7298  chromium                com.nextcloud.talk2                  I  [INFO:CONSOLE(2)] "JQMIGRATE: Migrate is installed, version 3.4.1", source: https://nextcloud.kaminsky.me/dist/core-common.js?v=d715ff10-58 (2)
2023-12-18 09:11:37.923  7298-7298  chromium                com.nextcloud.talk2                  I  [INFO:CONSOLE(2)] "session heartbeat polling started", source: https://nextcloud.kaminsky.me/dist/core-main.js?v=d715ff10-58 (2)
2023-12-18 09:11:54.845  7298-7298  chromium                com.nextcloud.talk2                  I  [INFO:CONSOLE(0)] "Error with Feature-Policy header: Unrecognized feature: 'payment'.", source:  (0)
2023-12-18 09:11:54.883  7298-7298  chromium                com.nextcloud.talk2                  I  [INFO:CONSOLE(6)] "fidobridge start execution", source:  (6)
2023-12-18 09:11:54.883  7298-7298  chromium                com.nextcloud.talk2                  I  [INFO:CONSOLE(75)] "fidobridge end execution", source:  (75)
2023-12-18 09:11:55.831  7298-7298  chromium                com.nextcloud.talk2                  I  [INFO:CONSOLE(2)] "JQMIGRATE: Migrate is installed, version 3.4.1", source: https://nextcloud.kaminsky.me/dist/core-common.js?v=d715ff10-58 (2)
2023-12-18 09:11:56.230  7298-7298  chromium                com.nextcloud.talk2                  I  [INFO:CONSOLE(2)] "[DEBUG] twofactor_webauthn: start sign [object Object]", source: https://nextcloud.kaminsky.me/apps/twofactor_webauthn/js/challenge.js?v=d715ff10-58 (2)
2023-12-18 09:11:56.231  7298-7298  chromium                com.nextcloud.talk2                  I  [INFO:CONSOLE(2)] "[DEBUG] twofactor_webauthn: Starting webauthn authentication [object Object]", source: https://nextcloud.kaminsky.me/apps/twofactor_webauthn/js/challenge.js?v=d715ff10-58 (2)
2023-12-18 09:11:56.234  7298-7298  chromium                com.nextcloud.talk2                  I  [INFO:CONSOLE(2)] "session heartbeat polling started", source: https://nextcloud.kaminsky.me/dist/core-main.js?v=d715ff10-58 (2)

With latest dev version of Files it still works.

@AndyScherzinger
Copy link
Member Author

Hmmm, webAuthn needs the fido2 dependency but I don't know if it auto-registers or if there is something on top that needs to be done.
We would need to check how Files implemented webAuthn support using the lib or if it has just been about adding the dependency and be done with it.

@tobiasKaminsky
Copy link
Member

I am currently adding webauthn, similar to what Files did.
Seems that I never tested it after our 2fa was migrated to webauthn serverside.

@tobiasKaminsky
Copy link
Member

Tested and works 👍

@AndyScherzinger
Copy link
Member Author

Tested and works 👍

Nice work @tobiasKaminsky and thanks for this xmas present 🎁

AndyScherzinger and others added 2 commits December 18, 2023 09:49
@github-actions GitHub Actions
Copy link
Contributor

Codacy

Lint

TypemasterPR
Warnings8383
Errors88

SpotBugs

CategoryBaseNew
Bad practice66
Correctness88
Dodgy code112112
Internationalization33
Malicious code vulnerability33
Performance66
Security11
Total139139

@github-actions GitHub Actions
Copy link
Contributor

APK file: https://www.kaminsky.me/nc-dev/android-artifacts/3510-talk.apk

qrcode

To test this change/fix you can simply download above APK file and install and test it in parallel to your existing Nextcloud Talk app.

@AndyScherzinger AndyScherzinger merged commit 8067240 into master Dec 18, 2023
16 checks passed
@delete-merged-branch delete-merged-branch bot deleted the chore/noid/updateFido branch December 18, 2023 09:21
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tobiasKaminsky tobiasKaminsky tobiasKaminsky approved these changes

@mahibi mahibi Awaiting requested review from mahibi

Assignees
No one assigned
Labels
3. to review Waiting for reviews dependencies technical debt Technical issue
Projects
None yet
Milestone
18.1.0
Development

Successfully merging this pull request may close these issues.
2 participants
@AndyScherzinger @tobiasKaminsky