<title>feat(ops/modules/open_eid): add support for Web eID extension</title>
<updated>2023-04-28T13:14:24+00:00</updated>
<author>
<name>Florian Klink</name>
<email>flokli@flokli.de</email>
...</author>
<published>2023-04-20T22:04:23+00:00</published>
<link rel="alternate" type="text/html" href="http://code.tvl.fyi/commit/?id=b58f6f1d618378d0673a247d0ed9645e305852f5"/>
<id>urn:sha1:b58f6f1d618378d0673a247d0ed9645e305852f5</id>
<content type="text">
Most likely due to bad UX in browsers for hardware-backed TLS client
cert auth, most websites have switched from client-side TLS to the "Web
eID" extension.
Once installed, the extension uses [Native Messaging] to talk to a
`web-eid-app` application, which handles the communication with the
smart card itself.
This can be tested on https://web-eid.eu/ .
The commit needs nixpkgs to be bumped past
https://github.com/NixOS/nixpkgs/pull/227354 .
[Native Messaging]: https://developer.mozilla.org/en-US/docs/Mozilla/Add-ons/WebExtensions/Native_messaging
Change-Id: Iffe6d81ecf7cee25406fa39a983ff52cf669c373
Reviewed-on: https://cl.tvl.fyi/c/depot/+/8490
Reviewed-by: tazjin <tazjin@tvl.su>
Tested-by: BuildkiteCI
</content>