You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Currently the demo relies on the PRF extension to handle UCAN signatures and WNFS encryption.
The support for this extension is still limited across devices and browsers, check the following sections to have a better picture of what works and what doesn't.
Auth flows tracking list
MacOS
Chrome using Yubikey ✅
Chrome on an Android device (Device Pairing) ✅
Chrome on an Android device (QR Code Pairing) ✅
Chrome using Touch ID ❌
Safari ❌
Firefox ❌
Android
Chrome using Device Lock ✅
Chrome using another Android device (Cloud Sync) ✅
iOS
Webkit ❌
Windows
🤷🏻♂️
Support
Feature
Android
iOS
MacOS
Windows
Passkey
9+ ✅
16+ ✅
13+ ✅
10+ ✅
Cross-Device Authentication
✅
✅
Chromium ✅ Safari ❌
❌ 2
Cloud Sync
✅
✅
Safari ✅ Chromium 1 🚧
❌
PRF Extension
Chromium 3 ✅
❌
Chromium 3,4 🚧 Safari ❌
❔
1 Planned using iCloud.
2 No support on the OS level but works directly on Chromium.
3 Behind chrome://flags/#enable-experimental-web-platform-features, doesn't work with CDA.
4 Platform authenticator on mac doesnt support it but yubikey does.
I believe based on the last comments from the intent to ship thread this has landed already in Chrome M116, right? FWIW I tested Chrome Canary m118 with beta features enabled in https://securitykeys.info/ts/test_suite.html and still got a No PRF error.
FWIW not sure if it helps but largeBlob is now generally available in iOS and macOS for Safari 17. Might be a good alternative to prf if we can secure the client and only store the needed output as a largeBlob.
@0xjjpa it looks like there is a (possibly new?) same-origin policy enforced, to use your example I had to pop out of the glitch frame and open https://webauthn-large-blob.glitch.me/ in its own tab.
I can confirm largeBlob working on Safari 17.1 (MacOS 14.1.1) and Safari in iOS 17.1.1
Currently the demo relies on the PRF extension to handle UCAN signatures and WNFS encryption.
The support for this extension is still limited across devices and browsers, check the following sections to have a better picture of what works and what doesn't.
Auth flows tracking list
Support
Safari ❌
Chromium 1 🚧
Safari ❌
1 Planned using iCloud.
2 No support on the OS level but works directly on Chromium.
3 Behind chrome://flags/#enable-experimental-web-platform-features, doesn't work with CDA.
4 Platform authenticator on mac doesnt support it but yubikey does.
References
The text was updated successfully, but these errors were encountered: