Re: [webauthn] Provide the public key in `AuthenticatorAttestationResponse` (#1363) from Adam Langley via GitHub on 2020-09-25 (public-webauthn@w3.org from September 2020)

From: Adam Langley via GitHub <sysbot+gh@w3.org>
Date: Fri, 25 Sep 2020 19:28:23 +0000
To: public-webauthn@w3.org
Message-ID: <issue_comment.created-699113134-1601062101-sysbot+gh@w3.org>

(@CrazyChris75 this issue is closed so people might not see your updates.)

This line gives me pause:

> byte[] clientDataJSON = Base64UrlUtil.decode(json.getAsString("response.clientDataJSON"));

`clientDataJSON` is an ArrayBuffer that contains the JSON [directly](https://w3c.github.io/webauthn/#iface-authenticatorresponse), i.e. not base64url encoded. Are you encoding the Javascript object yourself? Are you sure that the encoder is using base64url, not base64?

-- 
GitHub Notification of comment by agl
Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1363#issuecomment-699113134 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Friday, 25 September 2020 19:28:25 UTC