File: web-authentication-get-assertion-u2f-no-credentials.html

package info (click to toggle)
webkit2gtk 2.42.2-1~deb11u1
  • links: PTS, VCS
  • area: main
  • in suites: bullseye
  • size: 362,432 kB
  • sloc: cpp: 2,881,947; javascript: 282,447; ansic: 134,088; python: 43,789; ruby: 18,308; perl: 15,872; asm: 14,389; xml: 4,395; yacc: 2,350; sh: 2,074; java: 1,734; lex: 1,323; makefile: 296; pascal: 60
file content (18 lines) | stat: -rw-r--r-- 747 bytes parent folder | download | duplicates (11) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
 
<input type="text" id="input">
<script>
    const testU2fApduWrongDataOnlyResponseBase64 = "aoA=";
    const testU2fApduNoErrorOnlyResponseBase64 = "kAA=";
    if (window.internals) {
        internals.setMockWebAuthenticationConfiguration({ silentFailure: true, hid: { stage: "request", subStage: "msg", error: "malicious-payload", isU2f: true, payloadBase64: [testU2fApduWrongDataOnlyResponseBase64, testU2fApduNoErrorOnlyResponseBase64] } });
        internals.withUserGesture(() => { input.focus(); });
    }

    const options = {
        publicKey: {
            challenge: new Uint8Array(16),
            allowCredentials: [{ type: "public-key", id: new Uint8Array(16) }]
        }
    };

    navigator.credentials.get(options);
</script>