Serve message to user when safari is detected #3674

ericherscovich · 2023-03-31T21:13:18Z

What problem are you solving?

The web socket does not work on Safari due to limitations imposed by Apple. So, we need to direct users away from Safari onto another browser.

What approach did you choose and why?

When Safari is detected, a user will be served a message telling them to use a different browser, and the authentication button will be disabled.

When using Safari:

When not using Safari:

What should reviewers focus on?

Take a gander at the logic added on the prompt page for this. Also, there was some issues when trying to create a test.. I was unable to figure out how to force Capybara to use Safari, documentation on this is very slim. If anyone knows how to do this, please leave a comment!

Testing

You can validate that when using any other browser, the authentication page looks the same as before. Then, you can attempt to authenticate on Safari, and note that the message appears and the authentication button is blocked.

codecov · 2023-03-31T21:25:45Z

Codecov Report

Merging #3674 (fea647f) into webauthn-cli (a97a9af) will decrease coverage by 0.05%.
The diff coverage is 100.00%.

@@               Coverage Diff                @@
##           webauthn-cli    #3674      +/-   ##
================================================
- Coverage         98.77%   98.72%   -0.05%     
================================================
  Files               202      201       -1     
  Lines              5044     5028      -16     
================================================
- Hits               4982     4964      -18     
- Misses               62       64       +2

Impacted Files	Coverage Δ
app/helpers/application_helper.rb	`97.22% <100.00%> (+0.16%)`	⬆️

... and 4 files with indirect coverage changes

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

app/views/webauthn_verifications/prompt.html.erb

jchestershopify

One suggestion. Apart from that and @segiddins' suggestion, LGTM.

config/locales/en.yml

app/views/webauthn_verifications/prompt.html.erb

simi · 2023-04-03T14:37:11Z

Wouldn't be possible to make this based on feature check instead of browser check?

Is there any way to report on this on the CLI side (is this related to CLI, right?) for potential Safari users? https://stackoverflow.com/a/69783360/319233

jchestershopify · 2023-04-03T14:44:26Z

Is there any way to report on this on the CLI side (is this related to CLI, right?) for potential Safari users? https://stackoverflow.com/a/69783360/319233

That's an interesting idea, but I think it'd be out of scope for this PR. We could look at a followup.

simi · 2023-04-03T15:40:10Z

Is there any way to report on this on the CLI side (is this related to CLI, right?) for potential Safari users? https://stackoverflow.com/a/69783360/319233

That's an interesting idea, but I think it'd be out of scope for this PR. We could look at a followup.

Ahh, I forgot to mention this. Clearly out of this PRs scope. It needs to be integrated into RubyGems itself if I understand it well. Also definitely not blocker, but could be more friendly.

Linting

Fix spacing Update translation file

test/system/webauthn_verification_test.rb

simi · 2023-04-04T00:15:19Z

🤔 rebase should fix tests 🙏

jenshenny · 2023-04-06T19:33:55Z

@simi FYI Shopify/rubygems#106 adds a warning to the command line (it's on a fork since the feature branch is on the fork ruby/rubygems#6560)

segiddins approved these changes Apr 1, 2023

View reviewed changes

app/views/webauthn_verifications/prompt.html.erb Outdated Show resolved Hide resolved

jchestershopify reviewed Apr 3, 2023

View reviewed changes

config/locales/en.yml Outdated Show resolved Hide resolved

simi reviewed Apr 3, 2023

View reviewed changes

app/views/webauthn_verifications/prompt.html.erb Outdated Show resolved Hide resolved

jchestershopify mentioned this pull request Apr 3, 2023

Update docs for WebAuthn / Passkey rubygems/guides#332

Closed

Serve message to user when safari is detected

13a6c42

Linting

ericherscovich force-pushed the eric/alert-safari branch from a54a0d4 to 2e2ebda Compare April 3, 2023 15:54

Make browser a helper, improve explanation text

4480fe5

Fix spacing Update translation file

ericherscovich force-pushed the eric/alert-safari branch from f3a7906 to 4480fe5 Compare April 3, 2023 16:04

simi reviewed Apr 3, 2023

View reviewed changes

test/system/webauthn_verification_test.rb Show resolved Hide resolved

Add test for testing with safari user agent

fea647f

jenshenny merged commit 20ad1a1 into rubygems:webauthn-cli Apr 4, 2023

rubygems-org-shipit bot deployed to webauthn-review April 4, 2023 15:15 View deployment

jenshenny mentioned this pull request Apr 6, 2023

Show webauthn warning if default browser is Safari Shopify/rubygems#106

Closed

4 tasks

jenshenny mentioned this pull request Apr 12, 2023

Show webauthn warning if default browser is Safari ruby/rubygems#6605

Closed

4 tasks

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Serve message to user when safari is detected #3674

Serve message to user when safari is detected #3674

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

5 participants

Uh oh!

Serve message to user when safari is detected #3674

Serve message to user when safari is detected #3674

Uh oh!

Conversation

What problem are you solving?

What approach did you choose and why?

What should reviewers focus on?

Testing

Uh oh!

Uh oh!

Codecov Report

Uh oh!

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

5 participants