Skip to content

feat: remove registration store for passkeys #101

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
paolodamico wants to merge 3 commits into
base: main
Choose a base branch
from
Draft

feat: remove registration store for passkeys #101

paolodamico wants to merge 3 commits into from

Conversation

@paolodamico
Copy link
Contributor

@paolodamico paolodamico commented Sep 6, 2025

Stops storing the registration object in the serialized metadata. This reduces the surface area to only allow registration objects once.

@paolodamico paolodamico mentioned this pull request Sep 6, 2025
Closed
aurel-fr
aurel-fr approved these changes Sep 6, 2025
View reviewed changes
src/types/backup_metadata.rs
webauthn_credential,
..
} => ExportedFactorKind::Passkey {
credential_id: serde_plain::to_string(webauthn_credential.cred_id())
Copy link
Contributor

@aurel-fr aurel-fr Sep 6, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Sligthly confused by the comment below saying credential_id is base64 encoded, but this is not the case here?

Copy link
Contributor Author

@paolodamico paolodamico Sep 6, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It is base64 encoded, CredentialId is base64 encoded in its serialization implementation. We use serde_plain to explicitly use the existing serializing logic.

https://github.com/kanidm/webauthn-rs/blob/master/webauthn-rs-core/src/interface.rs#L244

@paolodamico paolodamico marked this pull request as draft September 6, 2025 19:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@aurel-fr aurel-fr aurel-fr approved these changes

@murph murph Awaiting requested review from murph murph is a code owner

@thomas-waite thomas-waite Awaiting requested review from thomas-waite thomas-waite is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@paolodamico @aurel-fr