Two PRs should correct the issue with webauthn device registration. I do not know if the crossover with mfa-gauth is also corrected, as I wanted to get webauthn registration working for POC purpose, only.
Note that, for now, the two PRs are rejected as there is no test associated to them: - PR ( 7.1.x) https://github.com/apereo/cas/pull/6252 - PR (master) : https://github.com/apereo/cas/pull/6254 Modification is trivial so the patch should be easy to apply for other revisions. Regards, P. Le jeudi 28 novembre 2024 à 02:59:25 UTC+1, P Assenger a écrit : > Hi, > We encounter the same issue under v7.1.2, with only the web-authn > dependencies : while the new device is registered, an error occurs at the > interface. > > In CAS logs, the error is as you described it : *Exception thrown in > state 'viewRegistrationWebAuthn' of flow 'account'.* Albeit with this > added message : *no ''saveRegistration' state in flow 'account'.* > > The culprit code seems to be in " > *support/cas-server-support-webauthn-core-webflow/src/main/java/org/apereo/cas/webauthn/web/flow/account/WebAuthnMultifactorAccountProfileWebflowConfigurer.java*'. > > BTW, this class does not seem to have a TestCase. > > Harsh to be blocked on such a problem :(. > > P. > > Le mercredi 11 septembre 2024 à 16:21:46 UTC+2, Frédéric Dussurget a > écrit : > >> Hi, >> >> Context : version=7.2.0-SNAPSHOT >> >> Extract of build.gradle : >> //MFA TOTP >> implementation "org.apereo.cas:cas-server-support-gauth" >> implementation "org.apereo.cas:cas-server-support-gauth-redis" >> >> // MFA FIDO2 WEBAUTHN >> implementation "org.apereo.cas:cas-server-support-webauthn" >> implementation "org.apereo.cas:cas-server-support-webauthn-redis" >> >> //MFA TRUSTED DEVICE >> implementation "org.apereo.cas:cas-server-support-trusted-mfa" >> implementation "org.apereo.cas:cas-server-support-trusted-mfa-redis" >> >> My issue : >> I have an issue with Account Profile Management (/cas/login page), but >> only with webauthn devices (mfa-gauth devices work fine) : >> >> - with build.gradle containing only web-authn dependencies, I'm able to >> register a webauthn device thru account profile management, but I get an >> 500 error message at the very end of the ceremony : >> Error: jakarta.servlet.ServletException: Request processing failed: >> org.springframework.webflow.execution.FlowExecutionException: Exception >> thrown in state 'viewRegistrationWebAuthn' of flow 'account' >> >> BUT, the webauthn device is registered and fully functionnal. >> >> - with build.gradle containing web-authn AND mfa-gauth dependencies, I >> cannot get the webauthn device registering ceremony : every time I end up >> on the mfa-gauth device registering ceremony. So, the only way to register >> mfa-webauthn devices is on the fly, accessing directly to a service. >> >> Regards, >> >> -- - Website: https://apereo.github.io/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/99839e33-bf35-4089-a78e-9fc325006de6n%40apereo.org.
