commit | 7acb4716808f303c7c8bafc762f1fcda769a33bd | [log] [tgz] |
---|---|---|
author | Martin Kreichgauer <martinkr@google.com> | Tue Jun 05 19:14:16 2018 |
committer | Commit Bot <commit-bot@chromium.org> | Tue Jun 05 19:14:16 2018 |
tree | 6fa339825dbbacf44517b1cf3dddf7420895ebae | |
parent | 1e7212497515530360a66a94ffe5be978d4a3461 [diff] |
device/fido/mac: encrypt credential metadata in the macOS keychain This adds a CredentialMetadata class to encrypt any account metadata associated with a WebAuthn credential (user ID, user name, user display name, and RP ID) before writing it to the macOS keychain. The key will be generated and stored in the Chrome profile under which the credential was created. (It is currently hardcoded but I'm changing that in a follow-up CL.) Deletion of the profile or key will therefore render the data unreadable. Bug: 678128 Change-Id: I536d537e9220cc5f89d487c7f94e169d06d62e7a Reviewed-on: https://chromium-review.googlesource.com/1073708 Reviewed-by: Balazs Engedy <engedy@chromium.org> Reviewed-by: Adam Langley <agl@chromium.org> Commit-Queue: Martin Kreichgauer <martinkr@google.com> Cr-Commit-Position: refs/heads/master@{#564609}
Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web.
The project's web site is https://www.chromium.org.
Documentation in the source is rooted in docs/README.md.
Learn how to Get Around the Chromium Source Code Directory Structure .