commit | 837c696f0eae49e5b69522871eaa9b8d94493b97 | [log] [tgz] |
---|---|---|
author | Martin Kreichgauer <martinkr@google.com> | Tue Jun 25 20:12:57 2019 |
committer | Commit Bot <commit-bot@chromium.org> | Tue Jun 25 20:12:57 2019 |
tree | d853593725c74f765cdc74c4539d802c4cdbd45d | |
parent | c4f8604e0354856ae2e2203dcf3000b2fad05efa [diff] |
fido: support bulk deletion of credentials This adds a DeleteCredentials() method to CredentialManagementHandler to support deletion of multiple credentials identified by the CBOR-serialized PublicKeyCredentialDescriptor. It also extends EnumerateCredentialsResponse with the CBOR-serialized PublicKeyCredentialDescriptor such that the UI can use it as an opaque identifier for the credentials without having to do CBOR-serialization. The FidoAuthenticator::DeleteCredential is changed to take PublicKeyCredentialDescriptor rather than a sequence of bytes to identify the to-be-deleted credential. On a CTAP2 level, credentials are identified for deletion not just via their credential ID but via the full PublicKeyCredentialDescriptor. The spec is unclear on whether the non-ID related fields ('transports' in particular) are significant or not. Hence, it's probably wise to just echo the descriptor as it was received during credential enumeration, rather than send an empty descriptor with only the credential ID. Bug: 955859 Change-Id: Id1b7a9094876c701b21000399870bf439de4d8b9 Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/1674411 Commit-Queue: Martin Kreichgauer <martinkr@google.com> Reviewed-by: Adam Langley <agl@chromium.org> Cr-Commit-Position: refs/heads/master@{#672229}
Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web.
The project's web site is https://www.chromium.org.
Documentation in the source is rooted in docs/README.md.
Learn how to Get Around the Chromium Source Code Directory Structure .