Skip to content

python-fido2 0.9.0
Compare
Choose a tag to compare
@dainnilsson dainnilsson released this 20 Jan 10:10
0.9.0
This tag was signed with the committer’s verified signature.
dainnilsson Dain Nilsson
GPG key ID: F04367096FBA95E8
Learn about vigilant mode.
3ee0104
This commit was signed with the committer’s verified signature.
dainnilsson Dain Nilsson
GPG key ID: F04367096FBA95E8
Learn about vigilant mode.

WARNING: Backwards-incompatible changes!

Version 0.9.0 (released 2021-01-20)

  • Server: Attestation is now done in two parts (to align better with the spec):
    First, type-specific validation is done to provide a trust chain.
    Second, validation of the trust chain is done.
  • Client: API changes to better support extensions.
    • Fido2Client can be configured with Ctap2Extensions to support.
    • Client.make_credential now returns a AuthenticatorAttestationResponse,
      which holds the AttestationObject and ClientData, as well as any client
      extension results for the credential.
    • Client.get_assertion now returns an AssertionSelection object, which is
      used to select between multiple assertions, resulting in an
      AuthenticatorAssertionResponse, which holds the ClientData, assertion
      values, as well as any client extension results for the assertion.
  • Renames: The CTAP1 and CTAP2 classes have been renamed to Ctap1 and Ctap2,
    respectively. The old names currently work, but will be removed in the
    future.
  • ClientPin: The ClientPin API has been restructured to support multiple PIN
    protocols, UV tokens, and token permissions.
  • CTAP 2.1 PRE: Several new features have been added for CTAP 2.1, including
    Credential Management, Bio Enrollment, Large Blobs, and Authenticator Config.
  • HID: The platform specific HID code has been revamped and cleaned up.
Assets 4
Loading