spring-security

History

Yoshikazu Nojima d7d5253607 Change attestation in PublicKeyCredentialCreationOptions to none The attestation option in PublicKeyCredentialCreationOptions is a parameter that controls whether to request attestation from the security key. However, Spring Security Passkeys currently doesn't implement attestation verification. Therefore, requesting attestation is unnecessary. Specifying `direct` to request attestation may trigger browsers to display additional privacy related dialog to users, so it is best to avoid specifying `direct` unnecessarily.	2024-12-11 17:18:18 -06:00
..
main	Change attestation in PublicKeyCredentialCreationOptions to none	2024-12-11 17:18:18 -06:00
test	Change attestation in PublicKeyCredentialCreationOptions to none	2024-12-11 17:18:18 -06:00

Yoshikazu Nojima d7d5253607 Change attestation in PublicKeyCredentialCreationOptions to none

The attestation option in PublicKeyCredentialCreationOptions is a
parameter that controls whether to request attestation from the security key.
However, Spring Security Passkeys currently doesn't implement attestation verification.
Therefore, requesting attestation is unnecessary.
Specifying `direct` to request attestation may trigger browsers to
display additional privacy related dialog to users, so it is best to
avoid specifying `direct` unnecessarily.

2024-12-11 17:18:18 -06:00

main

Change attestation in PublicKeyCredentialCreationOptions to none

2024-12-11 17:18:18 -06:00

test

Change attestation in PublicKeyCredentialCreationOptions to none

2024-12-11 17:18:18 -06:00