Spiegel von
https://github.com/dani-garcia/vaultwarden.git
synchronisiert 2024-11-25 05:40:29 +01:00
Fix incorrect WebAuthn origin
This mainly affects users running Vaultwarden under a subpath. Refs: * https://github.com/kanidm/webauthn-rs/blob/b2cbb34/src/core.rs#L941-L948 * https://github.com/kanidm/webauthn-rs/blob/b2cbb34/src/core.rs#L316 * https://w3c.github.io/webauthn/#dictionary-client-data
Dieser Commit ist enthalten in:
Ursprung
a23f4a704b
Commit
0cdc0cb147
1 geänderte Dateien mit 4 neuen und 1 gelöschten Zeilen
|
@ -22,12 +22,14 @@ pub fn routes() -> Vec<Route> {
|
|||
|
||||
struct WebauthnConfig {
|
||||
url: String,
|
||||
origin: String,
|
||||
rpid: String,
|
||||
}
|
||||
|
||||
impl WebauthnConfig {
|
||||
fn load() -> Webauthn<Self> {
|
||||
let domain = CONFIG.domain();
|
||||
let domain_origin = CONFIG.domain_origin();
|
||||
Webauthn::new(Self {
|
||||
rpid: reqwest::Url::parse(&domain)
|
||||
.map(|u| u.domain().map(str::to_owned))
|
||||
|
@ -35,6 +37,7 @@ impl WebauthnConfig {
|
|||
.flatten()
|
||||
.unwrap_or_default(),
|
||||
url: domain,
|
||||
origin: domain_origin,
|
||||
})
|
||||
}
|
||||
}
|
||||
|
@ -45,7 +48,7 @@ impl webauthn_rs::WebauthnConfig for WebauthnConfig {
|
|||
}
|
||||
|
||||
fn get_origin(&self) -> &str {
|
||||
&self.url
|
||||
&self.origin
|
||||
}
|
||||
|
||||
fn get_relying_party_id(&self) -> &str {
|
||||
|
|
Laden …
In neuem Issue referenzieren