Context Navigation

← Previous Changeset
Next Changeset →

Changeset 258442 in webkit

Timestamp:

Mar 13, 2020 4:15:31 PM (4 years ago)

Author:

jiewen_tan@apple.com

Message:

[WebAuthn] Customize a bit more on the macOS LocalAuthentication prompt
https://bugs.webkit.org/show_bug.cgi?id=208703
<rdar://problem/60136974>

Reviewed by Darin Adler.

Source/WebCore:

en.lproj/Localizable.strings:
platform/LocalizedStrings.cpp:

(WebCore::touchIDPromptTitle):

platform/LocalizedStrings.h:

Adds a new formatted UI string to help with RP ID.

Source/WebKit:

On macOS, LocalAuthentication prompt can be shown anywhere that is probably not on top of
our UI clients. Therefore, add a RP ID to the dialog to help users to identify what has
happened. In addition, it removes the password fallback button.

Platform/spi/Cocoa/LocalAuthenticationSPI.h:
UIProcess/WebAuthentication/Cocoa/LocalAuthenticator.mm:

(WebKit::LocalAuthenticator::continueMakeCredentialAfterDecidePolicy):
(WebKit::LocalAuthenticator::continueGetAssertionAfterResponseSelected):

UIProcess/WebAuthentication/Cocoa/LocalConnection.h:
UIProcess/WebAuthentication/Cocoa/LocalConnection.mm:

(WebKit::LocalConnection::verifyUser const):

UIProcess/WebAuthentication/Mock/MockLocalConnection.h:
UIProcess/WebAuthentication/Mock/MockLocalConnection.mm:

(WebKit::MockLocalConnection::verifyUser const):

Location:

trunk/Source

Files:

: 11 edited

WebCore/ChangeLog (modified) (1 diff)
WebCore/en.lproj/Localizable.strings (modified) (1 diff)
WebCore/platform/LocalizedStrings.cpp (modified) (1 diff)
WebCore/platform/LocalizedStrings.h (modified) (1 diff)
WebKit/ChangeLog (modified) (1 diff)
WebKit/Platform/spi/Cocoa/LocalAuthenticationSPI.h (modified) (1 diff)
WebKit/UIProcess/WebAuthentication/Cocoa/LocalAuthenticator.mm (modified) (4 diffs)
WebKit/UIProcess/WebAuthentication/Cocoa/LocalConnection.h (modified) (1 diff)
WebKit/UIProcess/WebAuthentication/Cocoa/LocalConnection.mm (modified) (1 diff)
WebKit/UIProcess/WebAuthentication/Mock/MockLocalConnection.h (modified) (1 diff)
WebKit/UIProcess/WebAuthentication/Mock/MockLocalConnection.mm (modified) (1 diff)

Legend:

: Unmodified
: Added
: Removed

trunk/Source/WebCore/ChangeLog

-                      r258434
+                      r258442
+-03-13  Jiewen Tan  <jiewen_tan@apple.com>
+        [WebAuthn] Customize a bit more on the macOS LocalAuthentication prompt
+        https://bugs.webkit.org/show_bug.cgi?id=208703
+        <rdar://problem/60136974>
+        Reviewed by Darin Adler.
+        * en.lproj/Localizable.strings:
+        * platform/LocalizedStrings.cpp:
+        (WebCore::touchIDPromptTitle):
+        * platform/LocalizedStrings.h:
+        Adds a new formatted UI string to help with RP ID.
 -03-13  Peng Liu  <peng.liu6@apple.com>

trunk/Source/WebCore/en.lproj/Localizable.strings

-                      r258092
+                      r258442
 "Touch ID to sign into this website." = "Touch ID to sign into this website.";
+/* Allow using Touch ID to sign into the specified website on this device */
+"Touch ID to allow signing into “%@” with Touch ID." = "Touch ID to allow signing into “%@” with Touch ID.";
 /* Transformations context sub-menu item */
 "Transformations" = "Transformations";

trunk/Source/WebCore/platform/LocalizedStrings.cpp

r257877	r258442
1209	1209
1210	1210	#if ENABLE(WEB_AUTHN)
1211		String touchIDPromptTitle()
	1211	String genericTouchIDPromptTitle()
1212	1212	{
1213	1213	return WEB_UI_STRING("Touch ID to sign into this website.", "Use Touch ID to sign into this website");
1214	1214	}
1215	1215
	1216	String makeCredentialTouchIDPromptTitle(const String& domain)
	1217	{
	1218	return formatLocalizedString(WEB_UI_CFSTRING("Touch ID to allow signing into “%@” with Touch ID.", "Allow using Touch ID to sign into the specified website on this device"), domain.createCFString().get());
	1219	}
	1220
1216	1221	String biometricFallbackPromptTitle()
1217	1222	{

trunk/Source/WebCore/platform/LocalizedStrings.h

-                      r257877
+                      r258442
 #if ENABLE(WEB_AUTHN)
+    WEBCORE_EXPORT String touchIDPromptTitle();
+    WEBCORE_EXPORT String genericTouchIDPromptTitle();
+    WEBCORE_EXPORT String makeCredentialTouchIDPromptTitle(const String& domain);
     WEBCORE_EXPORT String biometricFallbackPromptTitle();
 #endif

trunk/Source/WebKit/ChangeLog

-                      r258441
+                      r258442
+-03-13  Jiewen Tan  <jiewen_tan@apple.com>
+        [WebAuthn] Customize a bit more on the macOS LocalAuthentication prompt
+        https://bugs.webkit.org/show_bug.cgi?id=208703
+        <rdar://problem/60136974>
+        Reviewed by Darin Adler.
+        On macOS, LocalAuthentication prompt can be shown anywhere that is probably not on top of
+        our UI clients. Therefore, add a RP ID to the dialog to help users to identify what has
+        happened. In addition, it removes the password fallback button.
+        * Platform/spi/Cocoa/LocalAuthenticationSPI.h:
+        * UIProcess/WebAuthentication/Cocoa/LocalAuthenticator.mm:
+        (WebKit::LocalAuthenticator::continueMakeCredentialAfterDecidePolicy):
+        (WebKit::LocalAuthenticator::continueGetAssertionAfterResponseSelected):
+        * UIProcess/WebAuthentication/Cocoa/LocalConnection.h:
+        * UIProcess/WebAuthentication/Cocoa/LocalConnection.mm:
+        (WebKit::LocalConnection::verifyUser const):
+        * UIProcess/WebAuthentication/Mock/MockLocalConnection.h:
+        * UIProcess/WebAuthentication/Mock/MockLocalConnection.mm:
+        (WebKit::MockLocalConnection::verifyUser const):
 -03-13  Brent Fulgham  <bfulgham@apple.com>

trunk/Source/WebKit/Platform/spi/Cocoa/LocalAuthenticationSPI.h

r257877	r258442
37	37	LAOptionAuthenticationTitle,
38	38	LAOptionPasscodeTitle,
	39	LAOptionFallbackVisible,
39	40	};
40	41

trunk/Source/WebKit/UIProcess/WebAuthentication/Cocoa/LocalAuthenticator.mm

-                      r258293
+                      r258442
     m_state = State::PolicyDecided;
+    auto& creationOptions = WTF::get<PublicKeyCredentialCreationOptions>(requestData().options);
     if (policy == LocalAuthenticatorPolicy::Disallow) {
         receiveRespond(ExceptionData { UnknownError, "Disallow local authenticator."_s });
 …
         weakThis->continueMakeCredentialAfterUserVerification(accessControl.get(), verification, context);
     };
     m_connection->verifyUser(accessControlRef, WTFMove(callback));
+    m_connection->verifyUser(creationOptions.rp.id, accessControlRef, WTFMove(callback));
+}
 …
     m_state = State::ResponseSelected;
+    auto& requestOptions = WTF::get<PublicKeyCredentialRequestOptions>(requestData().options);
     auto accessControlRef = response->accessControl();
     auto callback = [
 …
         weakThis->continueGetAssertionAfterUserVerification(WTFMove(response), verification, context);
     };
     m_connection->verifyUser(accessControlRef, WTFMove(callback));
+    m_connection->verifyUser(requestOptions.rpId, accessControlRef, WTFMove(callback));
+}

trunk/Source/WebKit/UIProcess/WebAuthentication/Cocoa/LocalConnection.h

r257877	r258442
63	63
64	64	// Overrided by MockLocalConnection.
65		virtual void verifyUser(SecAccessControlRef, UserVerificationCallback&&) const;
	65	virtual void verifyUser(const String& rpId, SecAccessControlRef, UserVerificationCallback&&) const;
66	66	virtual RetainPtr<SecKeyRef> createCredentialPrivateKey(LAContext , SecAccessControlRef, const String& secAttrLabel, NSData secAttrApplicationTag) const;
67	67	virtual void getAttestation(SecKeyRef, NSData authData, NSData hash, AttestationCallback&&) const;

trunk/Source/WebKit/UIProcess/WebAuthentication/Cocoa/LocalConnection.mm

-                      r257891
+                      r258442
 namespace WebKit {
 void LocalConnection::verifyUser(SecAccessControlRef accessControl, UserVerificationCallback&& completionHandler) const
+void LocalConnection::verifyUser(const String& rpId, SecAccessControlRef accessControl, UserVerificationCallback&& completionHandler) const
+{
     auto context = adoptNS([allocLAContextInstance() init]);
     auto options = adoptNS([[NSMutableDictionary alloc] init]);
+    if ([context biometryType] == LABiometryTypeTouchID)
+        [options setObject:WebCore::touchIDPromptTitle() forKey:@(LAOptionAuthenticationTitle)];
+#if PLATFORM(iOS)
+    if ([context biometryType] == LABiometryTypeTouchID) {
+#if PLATFORM(IOS)
+        [options setObject:WebCore::genericTouchIDPromptTitle() forKey:@(LAOptionAuthenticationTitle)];
+        ASSERT_UNUSED(rpId, rpId);
+#else
+        [options setObject:WebCore::makeCredentialTouchIDPromptTitle(rpId) forKey:@(LAOptionAuthenticationTitle)];
+#endif
+        [options setObject:@NO forKey:@(LAOptionFallbackVisible)];
+    }
+#if PLATFORM(IOS)
     [options setObject:WebCore::biometricFallbackPromptTitle() forKey:@(LAOptionPasscodeTitle)];
 #endif

trunk/Source/WebKit/UIProcess/WebAuthentication/Mock/MockLocalConnection.h

r257877	r258442
38	38
39	39	private:
40		void verifyUser(SecAccessControlRef, UserVerificationCallback&&) const final;
	40	void verifyUser(const String&, SecAccessControlRef, UserVerificationCallback&&) const final;
41	41	RetainPtr<SecKeyRef> createCredentialPrivateKey(LAContext , SecAccessControlRef, const String& secAttrLabel, NSData secAttrApplicationTag) const final;
42	42	void getAttestation(SecKeyRef, NSData authData, NSData hash, AttestationCallback&&) const final;

trunk/Source/WebKit/UIProcess/WebAuthentication/Mock/MockLocalConnection.mm

r258293	r258442
45	45	}
46	46
47		void MockLocalConnection::verifyUser(SecAccessControlRef, UserVerificationCallback&& callback) const
	47	void MockLocalConnection::verifyUser(const String&, SecAccessControlRef, UserVerificationCallback&& callback) const
48	48	{
49	49	// Mock async operations.

Note: See TracChangeset for help on using the changeset viewer.

Context Navigation

Changeset 258442 in webkit

Legend:

Download in other formats: