Bug 246339

Summary: [WebAuthn] window.PublicKeyCredential.isUserVerifyingPlatformAuthenticatorAvailable set to False for carnival.com | Safari IOS 16.1
Product: WebKit Reporter: Tal Peretz <tal>
Component: WebKit APIAssignee: Nobody <webkit-unassigned>
Status: NEW ---    
Severity: Normal CC: tal, webkit-bug-importer
Priority: P2 Keywords: InRadar
Version: Safari 16   
Hardware: Other   
OS: iOS 16   

Description Tal Peretz 2022-10-11 07:38:03 PDT 
While trying of using WebAuthn on carnival.com with IOS 16.1 (beta 4) and mobile Safari, we discovered that the PublicKeyCredential.isUserVerifyingPlatformAuthenticatorAvailable flag was set to false for unknown reasons. From the source code of Webkit, it appears that Webkit is blocking the use of Webauthn for a number of domains which are not publicly shared. The issue occurs only on carnival.com.

As far as I am aware, this is a bug because it works perfectly on IOS 16.0 with Safari (as passkeys) on the domain carnival.com.
Comment 1 Radar WebKit Bug Importer 2022-10-18 07:38:19 PDT 
<rdar://problem/101290643>