-
Notifications
You must be signed in to change notification settings - Fork 53
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Readme improvements #27
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Niice
README.md
Outdated
@@ -5,6 +5,24 @@ Easily implement WebAuthn in your ruby web server | |||
[![Gem](https://img.shields.io/gem/v/webauthn.svg?style=flat-square)](https://rubygems.org/gems/webauthn) | |||
[![Travis](https://img.shields.io/travis/cedarcode/webauthn-ruby.svg?style=flat-square)](https://travis-ci.org/cedarcode/webauthn-ruby) | |||
|
|||
## WARNING: THIS IS AN EXPERIMENTAL GEM BASED ON A RECOMENDATION DRAFT AND CURRENTLY UNDER DEVELOPMENT. IT'S NOT ADVISED TO USE IT IN A PRODUCTION ENVIRONMENT. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I'd rather say "WARNING: This gem is in the early development phase. Use on production at your own risk."
README.md
Outdated
- Mozilla Firefox Quantum 60+ (Enabled by default). | ||
- Google Chrome 65+ (Disabled by default, go to chrome:https://flags to enable Web Authentication API feature). Note: it is enabled by default in 67+ as stated [here](https://www.chromestatus.com/feature/5669923372138496). | ||
|
||
## Authenticator devises compatibility |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
devices
README.md
Outdated
@@ -51,13 +69,27 @@ attestation_response = WebAuthn::AuthenticatorAttestationResponse.new( | |||
client_data_json: client_data_json | |||
) | |||
|
|||
if attestation_response.valid?(original_challenge) | |||
# This value needs to match `window.location.origin` evaludated by |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
evaluated
README.md
Outdated
|
||
## Authenticator devises compatibility | ||
|
||
The user agents mentioned in the previous section, only support USB FIDO2 or FIDO U2F enabled devises in their current implementations. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Somehow make it more clear that we are talking about physical security keys like https://www.yubico.com/product/security-key-by-yubico/ ?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Maybe add an example of what is a FIDO2 enabled device
README.md
Outdated
|
||
## Authenticator devises compatibility | ||
|
||
The user agents mentioned in the previous section, only support USB FIDO2 or FIDO U2F enabled devises in their current implementations. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
device typo also
README.md
Outdated
@@ -5,6 +5,24 @@ Easily implement WebAuthn in your ruby web server | |||
[![Gem](https://img.shields.io/gem/v/webauthn.svg?style=flat-square)](https://rubygems.org/gems/webauthn) | |||
[![Travis](https://img.shields.io/travis/cedarcode/webauthn-ruby.svg?style=flat-square)](https://travis-ci.org/cedarcode/webauthn-ruby) | |||
|
|||
## WARNING: THIS IS AN EXPERIMENTAL GEM BASED ON A RECOMENDATION DRAFT AND CURRENTLY UNDER DEVELOPMENT. IT'S NOT ADVISED TO USE IT IN A PRODUCTION ENVIRONMENT. | |||
|
|||
## Useful documentation on WebAuthn |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
What about changing the title to "What is WebAuthn?"
README.md
Outdated
- [Web Authentication API draft article by Mozilla](https://developer.mozilla.org/en-US/docs/Web/API/Web_Authentication_API) | ||
- [W3C Draft Recommendation](https://w3c.github.io/webauthn/) | ||
|
||
## User Agent compatibility |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
What about making "User agent compatibility" and "Authenticator devices compatibility" subsections of a section called "Prerequisites"?
### Validation phase | ||
|
||
*Currently under development* | ||
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Nice!
No description provided.