[PM-1222] Passkeys in the Bitwarden vault (#2679)

* [EC-598] feat: add support for saving fido2 keys * [EC-598] feat: add additional data * [EC-598] feat: add counter, nonDiscoverableId; remove origin * [EC-598] fix: previous incomplete commit * [EC-598] fix: previous incomplete commit.. again * [EC-598] fix: failed merge * [EC-598] fix: move files around to match new structure * [EC-598] feat: add implementation for non-discoverable credentials * [EC-598] chore: remove some changes introduced by vs * [EC-598] fix: linting issues * [PM-1500] Add feature flag to enable pass keys (#2916) * Added feature flag to enable pass keys * Renamed enable pass keys to fido2 vault credentials * only sync fido2key ciphers on clients >=2023.9.0 (#3244) * Renamed fido2key property username to userDisplayName (#3172) * [PM-1859] Renamed NonDiscoverableId to credentialId (#3198) * PM-1859 Refactor to credentialId * PM-1859 Removed unnecessary import --------- Co-authored-by: Andreas Coroiu <andreas.coroiu@gmail.com> * [PM-3807] Store all passkeys as login cipher type (#3261) * [PM-3807] feat: add discoverable property to fido2key * [PM-3807] feat: remove standalone Fido2Key * [PM-3807] chore: clean up unusued constant * [PM-3807] fix: remove standadlone Fido2Key property that I missed * [PM-3807] Store passkeys in array (#3268) * [PM-3807] feat: store passkeys in array * [PM-3807] amazing adventures with the c# linter * [PM-3980] Added creationDate property to the Fido2Key object (#3279) * Added creationDate property to the Fido2Key object * Fixed lint issues * fixed comments * made createionDate required * [PM-3808] [Storage v2] Add old client/new server backward compatibility (#3262) * [PM-3807] feat: add discoverable property to fido2key * [PM-3807] feat: remove standalone Fido2Key * [PM-3807] chore: clean up unusued constant * [PM-3808] feat: add fido2 compatibility check before saving ciphers * Resolved merge conflicts. * Setting minimum version for QA. --------- Co-authored-by: Todd Martin <tmartin@bitwarden.com> * [PM-4054] Rename Fido2Key to Fido2Credential (#3306) * Add server version compatibility check for Fido2Credentials on sharing with org (#3328) * Added compatibility checks. * Refactored into separate methods for easier removal. * Added check on ShareMany * Updated method order to be consistent. * Linting * Updated minimum server version for release, as well as defaulting the feature on for self-hosted. * Added trailing space. * Removed extra assignment --------- Co-authored-by: gbubemismith <gsmithwalter@gmail.com> Co-authored-by: SmithThe4th <gsmith@bitwarden.com> Co-authored-by: Todd Martin <tmartin@bitwarden.com> Co-authored-by: Kyle Spearrin <kspearrin@users.noreply.github.com> Co-authored-by: Carlos Gonçalves <carlosmaccam@gmail.com> Co-authored-by: Todd Martin <106564991+trmartin4@users.noreply.github.com> Co-authored-by: Oscar Hinton <Hinton@users.noreply.github.com>
2025-07-02 16:42:50 -05:00 · 2023-10-17 18:17:13 +02:00
parent 8177821e8b
commit 8c77c65ce8
8 changed files with 151 additions and 7 deletions
--- a/src/Core/Constants.cs
+++ b/src/Core/Constants.cs
@ -20,6 +20,8 @@ public static class Constants
    /// </summary>
    public const int OrganizationSelfHostSubscriptionGracePeriodDays = 60;

+    public const string Fido2KeyCipherMinimumVersion = "2023.10.0";
+
    public const string CipherKeyEncryptionMinimumVersion = "2023.9.2";
 }

@ -38,6 +40,7 @@ public static class FeatureFlagKeys
    public const string DisplayEuEnvironment = "display-eu-environment";
    public const string DisplayLowKdfIterationWarning = "display-kdf-iteration-warning";
    public const string TrustedDeviceEncryption = "trusted-device-encryption";
+    public const string Fido2VaultCredentials = "fido2-vault-credentials";
    public const string AutofillV2 = "autofill-v2";
    public const string BrowserFilelessImport = "browser-fileless-import";

@ -54,7 +57,8 @@ public static class FeatureFlagKeys
        // place overriding values when needed locally (offline), or return null
        return new Dictionary<string, string>()
        {
-            { TrustedDeviceEncryption, "true" }
+            { TrustedDeviceEncryption, "true" },
+            { Fido2VaultCredentials, "true" }
        };
    }
 }
--- a/src/Core/Vault/Enums/CipherType.cs
+++ b/src/Core/Vault/Enums/CipherType.cs
@ -7,5 +7,5 @@ public enum CipherType : byte
    Login = 1,
    SecureNote = 2,
    Card = 3,
-    Identity = 4
+    Identity = 4,
 }
--- a/src/Core/Vault/Models/Data/CipherLoginData.cs
+++ b/src/Core/Vault/Models/Data/CipherLoginData.cs
@ -19,6 +19,7 @@ public class CipherLoginData : CipherData
    public DateTime? PasswordRevisionDate { get; set; }
    public string Totp { get; set; }
    public bool? AutofillOnPageLoad { get; set; }
+    public CipherLoginFido2CredentialData[] Fido2Credentials { get; set; }

    public class CipherLoginUriData
    {
--- a/src/Core/Vault/Models/Data/CipherLoginFido2CredentialData.cs
+++ b/src/Core/Vault/Models/Data/CipherLoginFido2CredentialData.cs
@ -0,0 +1,19 @@
+namespace Bit.Core.Vault.Models.Data;
+
+public class CipherLoginFido2CredentialData
+{
+    public CipherLoginFido2CredentialData() { }
+
+    public string CredentialId { get; set; }
+    public string KeyType { get; set; }
+    public string KeyAlgorithm { get; set; }
+    public string KeyCurve { get; set; }
+    public string KeyValue { get; set; }
+    public string RpId { get; set; }
+    public string RpName { get; set; }
+    public string UserHandle { get; set; }
+    public string UserDisplayName { get; set; }
+    public string Counter { get; set; }
+    public string Discoverable { get; set; }
+    public DateTime CreationDate { get; set; }
+}