Hello,
We are using Firefox on macOS to access web services that require Certificate Based Authentication. Our certificates are stored on YubiKeys PIV slots.
If we plug… (read more)
Hello,
We are using Firefox on macOS to access web services that require Certificate Based Authentication. Our certificates are stored on YubiKeys PIV slots.
If we plug the token, open Firefox and access the website, it works just fine. The Certificate picker is shown and the OS ask for the PIV PIN to validate the access.
However, if we do the request when the token isn't plugged, Firefox does not ask for it, the website deny the authentication and the context is kept in cache. Requesting again the web site with the token added in between does not restart the certificate lookup and we are forced to close Firefox or move to a private window to make it works.
What is the proper way to avoid this issue? Is it a known bug? Is there a way to configure Firefox to always show the certificate picker even if no certificate are found and then reload the list of certificate based on connections events?
Thanks