Expected Behavior
the webauthn filter urls are configurable.
Current Behavior
WebAuthnConfigurer does not support configuration of the webauthn urls and the defaults are used (login/webauthn, /webauthn/...).
Context
being able to configure the urls is especially important when multiple security filter chains are involved (e.g. /api/... vs. /something-else/...) and webauthn should only be enabled for a subset of these security filter chains.
thanks for consideration.
Comment From: franticticktick
Hey @zyro23, i have already received similar feedback from my friends who are now actively using passkeys. I think this is a good point and we should expand webauthn customization. Maybe @rwinch will pay attention to this ticket and we will be able to make the necessary contributions :)
Comment From: osiegmar
See https://github.com/spring-projects/spring-security/issues/16361