Commit graph

4 commits

Author SHA1 Message Date
Luke "Jared" Bennett
b285abeccc
Improved the u2f flow
Added tests
2016-12-27 00:18:17 +00:00
Timothy Andrew
961e86bf24 Add feature specs to cover naming and deleting U2F devices. 2016-08-18 22:12:02 +05:30
Timothy Andrew
3572582dd2 Use a single challenge for U2F authentication.
1. According to the spec, either we have a single challenge with
   a number of `signRequests`, or a number of `signRequests`, each with
   it's own challenge.

2. Previously, we had both these - per-request challenges, as well as a
   single extra challenge.

3. This commit changes this so that the per-request challenges are
   removed, leaving only a single challenge, as per the v1.1 U2F API.

4. The existing implementation didn't work in Firefox, because the
   Firefox (extension) implementation is less flexible with regard to
   the inputs.

5. Fix teaspoon specs.

6. References: https://fidoalliance.org/specs/fido-u2f-v1.0-nfc-bt-amendment-20150514/fido-u2f-javascript-api.html#h2_background
2016-07-14 08:19:09 +05:30
Timothy Andrew
7232bdb9ad Add feature specs covering U2F registration and authentication. 2016-06-06 12:50:31 +05:30