diff --git a/web/src/main/java/org/springframework/security/web/webauthn/management/Webauthn4JRelyingPartyOperations.java b/web/src/main/java/org/springframework/security/web/webauthn/management/Webauthn4JRelyingPartyOperations.java index d8341b8ac4..4dc7efc5a8 100644 --- a/web/src/main/java/org/springframework/security/web/webauthn/management/Webauthn4JRelyingPartyOperations.java +++ b/web/src/main/java/org/springframework/security/web/webauthn/management/Webauthn4JRelyingPartyOperations.java @@ -183,7 +183,7 @@ public class Webauthn4JRelyingPartyOperations implements WebAuthnRelyingPartyOpe List credentialRecords = this.userCredentials.findByUserId(userEntity.getId()); PublicKeyCredentialCreationOptions options = PublicKeyCredentialCreationOptions.builder() - .attestation(AttestationConveyancePreference.DIRECT) + .attestation(AttestationConveyancePreference.NONE) .pubKeyCredParams(PublicKeyCredentialParameters.EdDSA, PublicKeyCredentialParameters.ES256, PublicKeyCredentialParameters.RS256) .authenticatorSelection(authenticatorSelection) diff --git a/web/src/test/java/org/springframework/security/web/webauthn/api/TestPublicKeyCredentialCreationOptions.java b/web/src/test/java/org/springframework/security/web/webauthn/api/TestPublicKeyCredentialCreationOptions.java index 8e65a6a79d..715b09b629 100644 --- a/web/src/test/java/org/springframework/security/web/webauthn/api/TestPublicKeyCredentialCreationOptions.java +++ b/web/src/test/java/org/springframework/security/web/webauthn/api/TestPublicKeyCredentialCreationOptions.java @@ -40,7 +40,7 @@ public final class TestPublicKeyCredentialCreationOptions { ImmutableAuthenticationExtensionsClientInputs clientInputs = new ImmutableAuthenticationExtensionsClientInputs( ImmutableAuthenticationExtensionsClientInput.credProps); return PublicKeyCredentialCreationOptions.builder() - .attestation(AttestationConveyancePreference.DIRECT) + .attestation(AttestationConveyancePreference.NONE) .user(userEntity) .pubKeyCredParams(PublicKeyCredentialParameters.EdDSA, PublicKeyCredentialParameters.ES256, PublicKeyCredentialParameters.RS256) diff --git a/web/src/test/java/org/springframework/security/web/webauthn/jackson/JacksonTests.java b/web/src/test/java/org/springframework/security/web/webauthn/jackson/JacksonTests.java index 88ed4639ff..bff4498ccf 100644 --- a/web/src/test/java/org/springframework/security/web/webauthn/jackson/JacksonTests.java +++ b/web/src/test/java/org/springframework/security/web/webauthn/jackson/JacksonTests.java @@ -149,7 +149,7 @@ class JacksonTests { void writePublicKeyCredentialCreationOptions() throws Exception { String expected = """ { - "attestation": "direct", + "attestation": "none", "authenticatorSelection": { "residentKey": "required" }, diff --git a/web/src/test/java/org/springframework/security/web/webauthn/registration/PublicKeyCredentialCreationOptionsFilterTests.java b/web/src/test/java/org/springframework/security/web/webauthn/registration/PublicKeyCredentialCreationOptionsFilterTests.java index 5caffc365b..38a108844c 100644 --- a/web/src/test/java/org/springframework/security/web/webauthn/registration/PublicKeyCredentialCreationOptionsFilterTests.java +++ b/web/src/test/java/org/springframework/security/web/webauthn/registration/PublicKeyCredentialCreationOptionsFilterTests.java @@ -153,7 +153,7 @@ class PublicKeyCredentialCreationOptionsFilterTests { "residentKey": "required", "userVerification": "preferred" }, - "attestation": "direct", + "attestation": "none", "extensions": { "credProps": true }