Fix credential parameters conversion to WebAuthn4j

ltanguy · ltanguy-s4a · commit f5d714a2777f · 2025-07-21T11:00:09.000+02:00
Replace comparison with != operator by an .equals() comparison based on text value.
The 2 objects have the same value in most setups, but not when used in conjunction with Spring Session for example, as the object in session is built for each request

Signed-off-by: ltanguy &lt;loeiz.tanguy@gmail.com&gt;
diff --git a/web/src/main/java/org/springframework/security/web/webauthn/management/Webauthn4JRelyingPartyOperations.java b/web/src/main/java/org/springframework/security/web/webauthn/management/Webauthn4JRelyingPartyOperations.java
@@ -290,7 +290,7 @@ private List<com.webauthn4j.data.PublicKeyCredentialParameters> convertCredentia
 
 	private com.webauthn4j.data.PublicKeyCredentialParameters convertParamToWebauthn4j(
 			PublicKeyCredentialParameters parameter) {
-		if (parameter.getType() != PublicKeyCredentialType.PUBLIC_KEY) {
+		if (!PublicKeyCredentialType.PUBLIC_KEY.getValue().equals(parameter.getType().getValue())) {
 			throw new IllegalArgumentException(
 					"Cannot convert unknown credential type " + parameter.getType() + " to webauthn4j");
 		}

Original file line number	Diff line number	Diff line change
`@@ -290,7 +290,7 @@ private List<com.webauthn4j.data.PublicKeyCredentialParameters> convertCredentia`
`290`	`290`
`291`	`291`	`private com.webauthn4j.data.PublicKeyCredentialParameters convertParamToWebauthn4j(`
`292`	`292`	`PublicKeyCredentialParameters parameter) {`
`293`		`- if (parameter.getType() != PublicKeyCredentialType.PUBLIC_KEY) {`
	`293`	`+ if (!PublicKeyCredentialType.PUBLIC_KEY.getValue().equals(parameter.getType().getValue())) {`
`294`	`294`	`throw new IllegalArgumentException(`
`295`	`295`	`"Cannot convert unknown credential type " + parameter.getType() + " to webauthn4j");`
`296`	`296`	`}`