epic #31170 Passkeys / WebAuthn

story #31173 register a new passkey

Artifact

Summary

As a

user

I want to *

So thatEmpty

Acceptance criteria

There is a WebAuthn pane in user preferences
By clicking on the add button, I can fill an input with the key name and then register my passkey
Then a button 'check my key' appear
On clicking on this button, I can use my passkey to check that it works

AttachmentsEmpty

CC listEmpty

Status

CategoryAuthentication & LDAP

Status *Done

Development

Checklist

[ ] Does it involves User Interface?
[ ] Are there any mockups?
[ ] Are permissions checked?
[ ] Does it need Javascript development?
[ ] Does it need a forge upgrade bucket?
[ ] Does it need to execute things in system events?
[ ] Does it impact project creation (templates)?
[ ] Is it exploratory?

Technical informations

Implement WebAuthnUser (get, create)
- WebAuthnUserManager
- WebAuthnUserDao
- table in database
Implement WebAuthnCredentialSource (getAll, create)
- composer require web-auth/webauthn-lib
- WebAuthnCredentialSourceManager implements PublicKeyCredentialSourceRepository
- WebAuthnCredentialSourceDao
- table in database
Implement WebAuthnOptions (create, get)
- WebAuthnOptionsManager
- WebAuthnOptionsDao
- table (registration) in database
Add REST route GET /api/webauthn/generate_registration_options
Add REST route POST /api/webauthn/check_registration
Implement interface
- WebAuthn plugin
- route GET /plugins/webauthn/account
- template with just a button
- js asset reacting on button click
Add REST route GET /api/webauthn/generate_authentication_options
Add REST route POST /api/webauthn/check_authentication
Add a check button in user preferences
- js asset

Details

Artifact ID#31173

Submitted ByKevin Traini (ktraini)

Last Modified On2023-05-19 14:17

Submitted On2023-03-20 12:05

Rank32760

Permissions

Restrict access to this artifact for the following user groups:

References

Is related to

Artifact links

Empty

Reverse artifact links

Releases

Epics

Parent

Artifact ID	Project	Tracker	Summary	Status	Last Update Date	Submitted By	Assigned to
epic #31170	Tuleap	Epics	Passkeys / WebAuthn	Closed	2023-08-12 09:50	Kevin Traini (ktraini)

Cross References

Referencing story #31173

Artifact Tracker v5

epic #31170 Passkeys / WebAuthn

rel #31538 14.9

Git commit

tuleap/tuleap/stable

feat: Implement WebAuthnCredentialSource 72eb0972b0

Kevin Traini (ktraini) , 2023-03-28 08:48

feat: Begin registration ceremony a114e231d0

Kevin Traini (ktraini) , 2023-04-03 15:56

chore: Explain Option::unwrapOr() df5c3c1ea1

Joris MASSON (jmasson) , 2023-04-03 18:34

chore: Move stubs to tests/lib/Stubs folder 74cb9fc612

Joris MASSON (jmasson) , 2023-04-05 10:10

feat: Store challenge of registration ceremony 8b7bab6381

Kevin Traini (ktraini) , 2023-04-05 15:32

refactor: Reduce list of allowed algorithms to minimum 1f65d68b44

Kevin Traini (ktraini) , 2023-04-06 08:49

Remove unused e932a0644f

Marie Ange Garnier (marieange) , 2023-04-11 10:18

feat: Begin check of registration ceremony a3e71b2e89

Kevin Traini (ktraini) , 2023-04-12 13:45

fix: POST /webauthn/registration-challenge returns 200 7c8b807570

Kevin Traini (ktraini) , 2023-04-12 16:20

feat: Create PasskeyStub 33516965af

Kevin Traini (ktraini) , 2023-04-13 16:11

feat: Retrieve challenge for registration ceremony 3ee9c6e69b

Kevin Traini (ktraini) , 2023-04-14 15:34

feat: Check attestation response f7130be348

Kevin Traini (ktraini) , 2023-04-18 11:20

feat: Save credential source d044ab5a81

Kevin Traini (ktraini) , 2023-04-19 15:54

feat: Restler error response f7380d62a7

Kevin Traini (ktraini) , 2023-04-20 13:49

feat: Empty WebAuthn plugin 8ec0afb782

Kevin Traini (ktraini) , 2023-04-24 10:10

feat: Add route for WebAuthn account settings a8200acddb

Kevin Traini (ktraini) , 2023-04-25 14:06

feat: Add template with just a button c9aaabb76a

Kevin Traini (ktraini) , 2023-04-28 12:07

feat: add ts asset to register a new passkey 2460d33ff9

Kevin Traini (ktraini) , 2023-05-04 13:49

feat: Begin authentication ceremony 7c9e722ece

Kevin Traini (ktraini) , 2023-05-09 09:31

feat: Begin last step of authentication ceremony 7b38918d9a

Kevin Traini (ktraini) , 2023-05-09 11:06

feat: finish authentication ceremony 9c7a9b3fd6

Kevin Traini (ktraini) , 2023-05-11 13:44

fix: Storage of credenial public key in database 6b0dc44978

Kevin Traini (ktraini) , 2023-05-15 13:26

refactor: Move register script into a subscript 721f308a18

Kevin Traini (ktraini) , 2023-05-16 12:29

feat: Button to check your passkey 218ea0d4e3

Kevin Traini (ktraini) , 2023-05-19 10:21

refactor: Split user preferences tabs in sections 7eab429712

Kevin Traini (ktraini) , 2023-06-02 08:57

Show items referenced by story #31173

Referenced by story #31173

Git commit

tuleap/tuleap/stable

feat: Button to check your passkey 218ea0d4e3

Kevin Traini (ktraini) , 2023-05-19 10:21

Other

Follow-ups

Joris MASSON (jmasson)

2023-05-19 14:17

gerrit #28576 integrated in Tuleap 14.8.99.116

Tracker Workflow Manager (forge__tracker_workflow_manager)

2023-05-19 14:15

Closed by @ktraini with git #tuleap/stable/218ea0d4e3edee9c11ba872735ead6ba754a9625.

Status changed from On going to Done

Nicolas Terray (nterray)

2023-05-17 11:56

gerrit #28580 integrated into Tuleap 14.8.99.110

Joris MASSON (jmasson)

2023-05-15 15:41

gerrit #28571 (fix: Storage of credenial public key in database) integrated in Tuleap 14.8.99.96

Joris MASSON (jmasson)

2023-05-12 15:02

gerrit #28547 (finish authentication ceremony) integrated in Tuleap 14.8.99.86

Nicolas Terray (nterray)

2023-05-10 12:09

gerrit #28538 integrated into Tuleap 14.8.99.68

Nicolas Terray (nterray)

2023-05-09 10:37

gerrit #28526 integrated into Tuleap 14.8.99.59

Joris MASSON (jmasson)

2023-05-04 17:21

gerrit #28507 (add ts asset to register a new passkey) integrated in Tuleap 14.8.99.47

Nicolas Terray (nterray)

2023-04-28 13:09

gerrit #28484 integrated into Tuleap 14.8.99.6

Nicolas Terray (nterray)

2023-04-28 10:26

gerrit #28453 integrated into Tuleap 14.8.99.2

Nicolas Terray (nterray)

2023-04-25 09:36

gerrit #28427 integrated into Tuleap 14.7.99.166

Joris MASSON (jmasson)

2023-04-20 15:08

gerrit #28419 (Restler error response) integrated in Tuleap 14.7.99.138

Joris MASSON (jmasson)

2023-04-20 08:30

gerrit #28394 (Save credential source) integrated in Tuleap 14.7.99.135

Joris MASSON (jmasson)

2023-04-18 13:00

gerrit #28387 (Check attestation response) integrated in Tuleap 14.7.99.120

Joris MASSON (jmasson)

2023-04-17 10:11

gerrit #28374 (Retrieve challenge for registration ceremony) integrated in Tuleap 14.7.99.107

Joris MASSON (jmasson)

2023-04-13 17:18

gerrit #28361 (Create PasskeyStub) integrated in Tuleap 14.7.99.97

Joris MASSON (jmasson)

2023-04-12 17:23

gerrit #28355 (POST /webauthn/registration-challenge returns 200) integrated in Tuleap 14.7.99.89

Joris MASSON (jmasson)

2023-04-12 14:37

gerrit #28305 (Begin check of registration ceremony) integrated in Tuleap 14.7.99.87

Thomas Gerbet (tgerbet)

2023-04-11 12:14

gerrit #28346 integrated into Tuleap 14.7.99.81.

Nicolas Terray (nterray)

2023-04-06 10:04

gerrit #28301 integrated into Tuleap 14.7.99.52

Nicolas Terray (nterray)

2023-04-05 16:56

gerrit #28281 integrated into Tuleap 14.7.99.46

Nicolas Terray (nterray)

2023-04-05 11:12

gerrit #28277 integrated into Tuleap 14.7.99.40

Nicolas Terray (nterray)

2023-04-04 10:23

gerrit #28278 integrated into Tuleap 14.7.99.34

Nicolas Terray (nterray)

2023-04-03 17:16

gerrit #28223 integrated into Tuleap 14.7.99.31

Joris MASSON (jmasson)

2023-03-28 09:56

gerrit #28175 (Implement WebAuthnCredentialSource) integrated in Tuleap 14.6.99.211

Status changed from Idea / Sandbox to On going
Permissions set to

Kevin Traini (ktraini)

2023-03-20 15:45

Acceptance criteria

Something went wrong, the follow up content couldn't be loaded

Only formatting have been changed, you should switch to markup to see the changes
Technical informations

Something went wrong, the follow up content couldn't be loaded

Only formatting have been changed, you should switch to markup to see the changes

Kevin Traini (ktraini)

2023-03-20 14:53

Acceptance criteria

Something went wrong, the follow up content couldn't be loaded

Only formatting have been changed, you should switch to markup to see the changes
Technical informations

Something went wrong, the follow up content couldn't be loaded

Only formatting have been changed, you should switch to markup to see the changes

Kevin Traini (ktraini)

2023-03-20 12:06

Technical informations

Something went wrong, the follow up content couldn't be loaded

Only formatting have been changed, you should switch to markup to see the changes

Kevin Traini (ktraini)

2023-03-20 12:06

Acceptance criteria

Something went wrong, the follow up content couldn't be loaded

Only formatting have been changed, you should switch to markup to see the changes

Public

Artifact links

Reverse artifact links

Releases

Epics

Parent

Referencing story #31173

Artifact Tracker v5

Git commit

tuleap/tuleap/stable

Referenced by story #31173

Git commit

tuleap/tuleap/stable

Other

Follow-ups