PaulMcMillan / webauthn-wall-of-shame

A list of vendors who don't allow their customers to adopt WebAuthN and prevent phishing attacks.

Home Page:https://fido.fail

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

webauthn-wall-of-shame

A list of vendors that are preventing widespread enforcement of WebAuthN, leaving organizations unncessarily vulnerable to phishing.

Page structure lives in index.md, including intro text and FAQs for now.

Vendor data lives in _vendors/.

Adding another product to this repositsory

  1. Duplicate an existing file in _vendors
  2. Rename to to correspond to the product you're trying to add
  3. Fill in its details in the YAML file
  4. Run the repo locally to confirm things look the way you intended/expected
  5. Commit, push, and create a PR

Change the data being presented

  1. Find the corresponding .yaml file in _vendors
  2. Input the corrected value for the appropriate app platform, supported values are:
  • true: the application on this platform supports WebAuthN/FIDO2
  • webview: the application on this platform fails to support WebAuthN/FIDO2 becuase it uses a WebView
  • unclear: the application on this platform fails to support WebAuthN/FIDO2 and it's not due to a WebView

Testing Changes / Running Locally

To run this code, such as to begin making changes, clone this repo and run:

make

This will start the webapp running on 127.0.0.1:8080 where it should be accessible at http://127.0.0.1:8080. The source files are bind-mounted so you can edit them with an editor of your choice and should generally see our changes reflected on page refresh. Certain changes may require restarting the container, which can be done by running exit in the container and then make again from the repo basedir.

About

A list of vendors who don't allow their customers to adopt WebAuthN and prevent phishing attacks.

https://fido.fail

License:Apache License 2.0


Languages

Language:JavaScript 90.9%Language:SCSS 3.3%Language:Makefile 2.5%Language:Ruby 2.3%Language:Dockerfile 1.0%