U2F does not work anymore with Brave 1.35.101 / Chromium 98.0.4758.87
Concerned version
Version: 2.0.13
Platform: nginx / perl-fcgi
Summary
Using U2F/Fido USB token doesn't work anymore (key doesn't blink while page indicates it is waiting for it, browser doesn't even ask to authorize using the key, while it used to) with latest Brave version on MacOS. Seems to still be working with older versions of Brave (successfully tested on Brave 1.33.106 / Chromium 96.0.4664.110)
Logs
Browser JS log:
Failed to execute 'postMessage' on 'DOMWindow': The target origin provided ('chrome-extension://kmendfapggjehodndflmmgagdbamhnfd') does not match the recipient window's origin ('null').
(anonymous) @ u2f-api.min.js:2
load (async)
u2f.getIframePort_ @ u2f-api.min.js:2
(anonymous) @ u2f-api.min.js:2
Extension seems to refer to CryptoTokenExtension.
Possible fixes
Workaround: use firefox.
Extra information
Before this error, I was having another one related to CSP not allowing inline hash in style. I worked around it by changing the following config:
"cspStyle": "'self' 'unsafe-inline'"