From e456defffe3435d85436af102c7dfea83a66eb06 Mon Sep 17 00:00:00 2001
From: Florent Morselli <florent.morselli@spomky-labs.com>
Date: Sat, 4 Jan 2025 09:47:52 +0100
Subject: [PATCH] Add 'REVOKED' status to authenticator status checks

Include 'AuthenticatorStatus::REVOKED' in the list of valid statuses for status checks. This ensures proper handling of revoked authenticators within the MetadataService logic.
---
 src/webauthn/src/MetadataService/Statement/StatusReport.php | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/webauthn/src/MetadataService/Statement/StatusReport.php b/src/webauthn/src/MetadataService/Statement/StatusReport.php
index c1fba596..dd33a41e 100644
--- a/src/webauthn/src/MetadataService/Statement/StatusReport.php
+++ b/src/webauthn/src/MetadataService/Statement/StatusReport.php
@@ -62,6 +62,7 @@ public function isCompromised(): bool
             AuthenticatorStatus::USER_KEY_PHYSICAL_COMPROMISE,
             AuthenticatorStatus::USER_KEY_REMOTE_COMPROMISE,
             AuthenticatorStatus::USER_VERIFICATION_BYPASS,
+            AuthenticatorStatus::REVOKED
         ], true);
     }