RE: U2F registration issues

RE: U2F registration issues

@mgeffro Github and Google don't really surprise me. if I remember correctly, these weren't being asked on chrome meaning the registration just passed. although it might be worth a look for the recent chrome source since it changed the result of that dialog. Deny is now no longer an error but instead chrome changing the attestation cert and masking the U2F device.

it in general might be good to let all dialogs from chrome pass through somehow (if possible) even if they look awkward, unless opera properly replaced or otherwise dealth with them, better awkward than not working

RE: U2F registration issues

@nvmjustagirl said in U2F registration issues:

Are you on a desktop computer.. laptop..
Note - Since this computer lacks a platform authenticator, the website may require the user to present their USB security key from time to time or each time the user interacts with the website. This is at the website’s discretion

desktop but irrelevant, it isnt the website kicking me out but the U2F not triggering (recent) or the registration triggering but failing hilariously (earlier issue), with the recent one being confirmed by opera meaning it isnt the website doing weird stuff.

RE: U2F registration issues

@mgeffro said in U2F registration issues:

@my1xt I can confirm that recently we fixed issue with U2F not working on on our beta (55) and developer (56) streams. It was already fixed in latest developer release and should be available with next beta update. Will have to look into the registration issue.

Okay nice to know that at least login will work again.

Regarding U2F Register while I did state it a bit weirdly I still believe this is an issue which has been brought from chrome but opera not having been prepared for it!

0_1533713445433_Screenshot (492).png

RE: U2F registration issues

@vashiru said in U2F registration issues:

@nvmjustagirl This doesn't solve the issue. The Web Authentication API is already enabled. I can use it to authenticate. It's just the registration of new U2F keys that's broken.

well funnily enough I now cant even auth anymore in Opera (Beta 55.0.2994.29) the U2F device wont even blink. Chrome and Vivaldi on the other hand just do both registering and Authing.

RE: New Opera stable 53

@l33t4opera why not make a setting for this? everytime I add stuff to the dial I need to move them cause the newly added ones kill the arrangement when they come on first.

RE: Double tabs

@burnout426 It might also be a mouse hardware issue. my mouse for example has the issue that it sometimes fire a double click instead of a single one, which can happen when the contact of the button isnt perfect.

RE: New Opera stable 53

logging in isnt the problem.

Adding a key is the problem.

while some sites like the yubico demo page spawn on both chrome and opera a notification asking whether the site may get key data, some other sites like github, dropbox or localhost dont spawn such a notification and while they just pass in chrome, opera throws U2F error 1.

more info here:
https://forums.opera.com/topic/26772/u2f-registration-issues

RE: How to open all links in new tabs without Ctrl key??

you can also click the wheel if you have one or the middle mouse button if you are on a laptop that has that or such an old mouse.

some laptops also allow to treat click both mousekeys to middle mouse button.

RE: New Opera stable 53

The new opera version introduced issues with Registering U2F devices though.

U2F registration issues

In Opera 53 stable they apparently tried to make U2F even more secure by pulling out a prompt whenever a page wants to register a U2F token about whether the site may see the "serial number" of the Security key.

but there are 2 problems with that whole thing:

1. apparently this thing is kinda broken and doesnt come down on every site leaving a client error 1 (unknown error) instead
2. The serial number doesnt even get transmitted as U2F sticks usually pull keypairs out of nowhere (aka generating them by using random and deterministic data), the only thing that CAN even remotely trance a U2F stick is the attestation cert, although that isnt always 1 cert per stick (which would also completely crash the anonymity point of U2F)

I have now so far seen this issue on both Github and dropbox, 2 sites which are fairly big, and therefore should really have a proper U2F implementation.