Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allow longer credential_id values to accommodate Titan security key #2374

Merged
merged 1 commit into from
Mar 21, 2024
Merged

Allow longer credential_id values to accommodate Titan security key #2374

merged 1 commit into from
Mar 21, 2024

Conversation

frederikrothenberger
Copy link
Contributor

@frederikrothenberger frederikrothenberger commented Mar 21, 2024
edited by github-actions bot
Loading

As per report from a user, the Titan security key offered by Google generates credential_id values of 304 bytes. This PR increases the limit of that field up to 350 bytes to accommodate it. However, the limits for a single identity in general have not been raised. This means that the potential for abuse is negligible as users now just have more flexibility how to allocate their space among the different fields.

🟡 Some screens were changed

Allow longer credential_id values to accommodate Titan security key
026c590 
As per [report from a user](https://forum.dfinity.org/t/error-when-adding-fido-device/28523/4), the [Titan security key](https://store.google.com/us/product/titan_security_key)
offered by Google generates `credential_id` values of 304 bytes.
This PR increases the limit of that field up to 350 bytes to accommodate
it. However, the limits for a single identity in general have not been
raised. This means that the potential for abuse is negligible as users
now just have more flexibility _how_ to allocate their space among the
different fields.
przydatek
przydatek approved these changes Mar 21, 2024
View reviewed changes
Copy link
Collaborator

@przydatek przydatek left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, thanks!

@frederikrothenberger frederikrothenberger added this pull request to the merge queue Mar 21, 2024
Merged via the queue into main with commit f0dc1b6 Mar 21, 2024
65 checks passed
@frederikrothenberger frederikrothenberger deleted the frederik/increase-credential-id-limit branch March 21, 2024 11:11
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@przydatek przydatek przydatek approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@frederikrothenberger @przydatek