-
-
Notifications
You must be signed in to change notification settings - Fork 157
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Fido2NetLib.Fido2VerificationException: SafetyNet response security token validation failed when attempting to register from android device. #291
Comments
I tried to reproduce this, but I am unable to with the current build. Which version of the library are you using? I don't see anything immediately wrong with the data in the token supplied, not real sure what's happening here. |
Thanks for taking a look. I am using v2.0.2 via nuget. The only somewhat unusual thing is that this is for a classic asp.net website, i.e. not a web application, and is not using MVC. I couldn't see why that would matter, but worth stating anyway. Possibly stating the obvious, but the error doesn't happen if I switch off attestation, i.e. using fido2.RequestNewCredential(user, existingKeys, AuthenticatorSelection.Default, AttestationConveyancePreference.None); We've decided that, in our case, we don't actually need attestation, so the problem has gone away as it happens. |
While only slightly related to this issue, we should probably improve documentation to instruct people to turn of attestation. Very few actually need it, and those who do probably already know to turn it on and verify. |
Yeah, we should probably make this configurable. |
Hi, can anyone give me any clues on this error please.
I get the error when trying to call
fido2.MakeNewCredentialAsync
. The error only happens when trying to register on an android device. It works ok when I use windows hello on a windows device.Many thanks.
The text was updated successfully, but these errors were encountered: