File: web-authentication-get-assertion-u2f-no-credentials.html

package info (click to toggle)
webkit2gtk 2.46.1-2~bpo12%2B1
  • links: PTS, VCS
  • area: main
  • in suites: bookworm-backports
  • size: 420,212 kB
  • sloc: cpp: 3,538,579; javascript: 195,655; ansic: 170,215; python: 45,490; ruby: 18,411; asm: 18,016; perl: 16,533; xml: 4,605; yacc: 2,359; sh: 2,068; java: 1,711; lex: 1,327; pascal: 366; makefile: 316
file content (18 lines) | stat: -rw-r--r-- 747 bytes parent folder | download | duplicates (11) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
 
<input type="text" id="input">
<script>
    const testU2fApduWrongDataOnlyResponseBase64 = "aoA=";
    const testU2fApduNoErrorOnlyResponseBase64 = "kAA=";
    if (window.internals) {
        internals.setMockWebAuthenticationConfiguration({ silentFailure: true, hid: { stage: "request", subStage: "msg", error: "malicious-payload", isU2f: true, payloadBase64: [testU2fApduWrongDataOnlyResponseBase64, testU2fApduNoErrorOnlyResponseBase64] } });
        internals.withUserGesture(() => { input.focus(); });
    }

    const options = {
        publicKey: {
            challenge: new Uint8Array(16),
            allowCredentials: [{ type: "public-key", id: new Uint8Array(16) }]
        }
    };

    navigator.credentials.get(options);
</script>