View GitHub Repository simplesamlphp-module-webauthn

Schedule Inspection
Subscribe
Passed
Pull Request — master (#1)
by Tim
02:54
created
Status
Category
Toggle Patches
lib/WebAuthn/WebAuthnRegistrationEvent.php 1 patch
Spacing   +4 added lines, -4 removed lines patch added patch discarded remove patch 
@@ -170,16 +170,16 @@
 
 block discarded – undo
170 170 
              */
171 171 
             $certProps = openssl_x509_parse($this->der2pem($stmtDecoded['x5c'][0]));
172 172 
             $this->debugBuffer .= "Attestation Certificate:" . print_r($certProps, true) . "<br/>";
173 
-            if ($certProps['version'] != 2 ||                                                                      /** §8.2.1 Bullet 1 */
174 
-                    $certProps['subject']['OU'] != "Authenticator Attestation" ||                                  /** §8.2.1 Bullet 2 [Subject-OU] */
175 
-                    !isset($certProps['subject']['CN']) ||                                                         /** §8.2.1 Bullet 2 [Subject-CN] */
173 
+            if ($certProps['version'] != 2 || /** §8.2.1 Bullet 1 */
174 
+                    $certProps['subject']['OU'] != "Authenticator Attestation" || /** §8.2.1 Bullet 2 [Subject-OU] */
175 
+                    !isset($certProps['subject']['CN']) || /** §8.2.1 Bullet 2 [Subject-CN] */
176 176 
                     !isset($certProps['extensions']['basicConstraints']) ||
177 177 
                     strstr("CA:FALSE", $certProps['extensions']['basicConstraints']) === false                     /** §8.2.1 Bullet 4 */
178 178 
             ) {
179 179 
                 $this->fail("Attestation certificate properties are no good.");
180 180 
             }
181 181 
             if (isset(AAGUID::AAGUID_DICTIONARY[strtolower($this->AAGUID)])) {
182 
-                if ($certProps['subject']['O'] != AAGUID::AAGUID_DICTIONARY[strtolower($this->AAGUID)]['O'] ||     /** §8.2.1 Bullet 2 [Subject-O] */
182 
+                if ($certProps['subject']['O'] != AAGUID::AAGUID_DICTIONARY[strtolower($this->AAGUID)]['O'] || /** §8.2.1 Bullet 2 [Subject-O] */
183 183 
                         $certProps['subject']['C'] != AAGUID::AAGUID_DICTIONARY[strtolower($this->AAGUID)]['C']) { /** §8.2.1 Bullet 2 [Subject-C] */
184 184 
                     $this->fail("AAGUID does not match vendor data.");
185 185 
                 }
Please login to merge, or discard this patch.
www/authprocess.php 1 patch
Spacing   +2 added lines, -2 removed lines patch added patch discarded remove patch 
@@ -73,10 +73,10 @@
 
 block discarded – undo
73 73 
 if ($debugEnabled) {
74 74 
     echo $authObject->debugBuffer;
75 75 
     echo $authObject->validateBuffer;
76 
-    echo "Debug mode, not continuing to ". ($state['FIDO2WantsRegister'] ? "credential registration page." : "destination.");
76 
+    echo "Debug mode, not continuing to " . ($state['FIDO2WantsRegister'] ? "credential registration page." : "destination.");
77 77 
 } else {
78 78 
     if ($state['FIDO2WantsRegister']) {
79 
-        header("Location: ".\SimpleSAML\Module::getModuleURL('webauthn/webauthn.php?StateId='.urlencode($id)));
79 
+        header("Location: " . \SimpleSAML\Module::getModuleURL('webauthn/webauthn.php?StateId=' . urlencode($id)));
80 80 
     } else {
81 81 
         \SimpleSAML\Auth\ProcessingChain::resumeProcessing($state);
82 82 
     }
Please login to merge, or discard this patch.