python-fido2 1.2.0

Version 1.2.0 (released 2024-11-27)

• Improved extension handling:
  Several new extensions are now supported, both for Fido2Client and WindowsClient.
  Extension APIs have been redesigned, and old APIs have been deprecated, slated for
  removal in version 2.0.
  • Disable hmac-secret extension by default, preferring prf.
• Improved (de-)serialization of dataclasses to/from JSON-friendly dicts.
• Fido2Client:
  • Support allowCredentials/excludeCredentials of arbitrary length.
  • Handle PUAT_REQUIRED by re-attempting with PIN/UV.
• Allow localhost (and subdomains) to use http:// in RP ID verification by default.
• NFC: Support for Authenticators that return SW=61XX on SELECT.
• USB: Improve connection recovery and use more specific exceptions for errors.
• Fix: Handle residentKey=preferred properly.
• Fix: Handle Authentictors that do not pass extensions in GetInfo.

python-fido2 1.1.3

Version 1.1.3 (released 2024-03-13)

• Fix USB HID issue on MacOS that sometimes caused a pause while waiting for a timeout.
• Fix argument to CredProp extension where an enum value was required instead of also allowing a string.
• Fix parsing of some key types (ES384, ES512) causing signature verification to fail.
• Deprecation: Calling websafe_decode with a bytes argument instead of str. This will raise a TypeError in the next major version of the library.

python-fido2 1.1.2

Version 1.1.2 (released 2023-07-06)

• Fix ClientPin usage for Authenticators that do not support passing a PIN.
• Fix: Handle correct CTAP response codes in authenticatorSelection.

python-fido2 1.1.1

Version 1.1.1 (released 2023-04-05)

• Add community provided support for NetBSD.
• Bugfix: Don't set length for largeBlob when offset is 0.
• Bugfix: Remove print statement in webauthn parsing.

python-fido2 1.1.0

Version 1.1.0 (released 2022-10-17)

• Bugfix: Fix name of "crossOrigin" in CollectedClientData.create().
• Bugfix: Some incorrect type hints in the MDS3 classes were fixed.
• Stricter checking of dataclass field types.
• Add support for JSON-serialization of WebAuthn data classes.
  This changes the objects dict representation to align with new additions in the
  WebAuthn specification. As this may break compatibility, the new behavior
  requires explicit opt-in until python-fido2 2.0 is released.
• Update server example to use JSON serialization.
• Server: Add support for passing RegistrationResponse/AuthenticationResponse (or
  their deserialized JSON data) to register_complete/authenticate_complete.
• Add new "hybrid" AuthenticatorTransport.
• Add new AuthenticatorData flags, and use 2-letter names as in the WebAuthn spec
  (long names are still available as aliases).

python-fido2 1.0.0

Version 1.0.0 (released 2022-06-08)

• First stable release.

python-fido2 1.0.0rc1

Version 1.0.0rc1 (released 2022-05-02)

• Release Candidate 1 of first stable release.
• Require Python 3.7 or later.
• APIs have updated to align with WebAuthn level 2.
• Several CTAP 2.1 features have been implemented.

python-fido2 0.9.3

Version 0.9.3 (released 2021-11-09)

• Bugfix: Linux - Don't fail device discovery when hidraw doesn't support HIDIOCGRAWUNIQ (Linux kernels before 5.6).

python-fido2 0.9.2

Version 0.9.2 (released 2021-10-14)

• Support the latest Windows webauthn.h API (included in Windows 11).
• Add product name and serial number to HidDescriptors.
• Remove the need for the uhid-freebsd dependency on FreeBSD.

python-fido2 0.9.1

Version 0.9.1 (released 2021-02-03)

• Add new CTAP error codes and improve handling of unknown codes.