Stack Overflow
Stack Overflow

Questions tagged [webauthn]

Browser API implementing the Web Authentication standard. Credentials are stored on (local) authenticators which use and are accessed using strong cryptography.

See Web Authentication: A Web API for accessing scoped credentials:

This specification defines an API that enables web pages to access WebAuthn compliant strong cryptographic credentials through browser script. Conceptually, one or more credentials are stored on an authenticator, and each credential is scoped to a single Relying Party. Authenticators are responsible for ensuring that no operation is performed without the user’s consent. The user agent mediates access to credentials in order to preserve user privacy. Authenticators use attestation to provide cryptographic proof of their properties to the relying party. This specification also describes a functional model of a WebAuthn compliant authenticator, including its signature and attestation functionality.

303 questions
2
votes
1 answer

Difference between key handle and credential id

What is the difference between a key handle and a credential id for WebAuthN? I see mention of the two here in the spec which states that allowCredentials MAY contain a mixture of both WebAuthn credential IDs and U2F key handles but I don't fully…
adoyon23
  • 321
  • 1
  • 5
  • 16
2
votes
2 answers

WebAuthn: Can't create public key. Promise is rejected

I am trying to get WebAuthn set up on our login page. I am to the part where I need to make the public key using navigator.credentials.create(). On Chrome, I keep getting the following error: Uncaught (in promise) DOMException: The operation either…
xHoudek
  • 115
  • 1
  • 10
2
votes
1 answer

Remove credentials created with Web Authentication API

Does anyone know where the security credentials from Windows Hello are located and how to delete them? I am implementing authentication with Web Authentication API and while working on the code I created hundreds of credentials, which I would like…
Sasxa
  • 40,334
  • 16
  • 88
  • 102
2
votes
1 answer

webauthn example indicates browser is not supported when cross compiled but works on host machine

I am testing a very simple webauthn example written with go from https://github.com/hbolimovsky/webauthn-example and it works very well when I build it for the host machine. I am using MacOS Big Sur with Chrome 91. However, if I build the example…
Umut
  • 2,317
  • 1
  • 17
  • 19
2
votes
1 answer

Can you use an Ethereum key for Web Authentication (WebAuthn)

Is the format that is used for Ethereum key (ECDSA whatever) compatible with the W3C Web Auth standard.
Some Guy Trying To Do Math
  • 466
  • 3
  • 16
2
votes
1 answer

Check if a credential_id is available on platform authenticator with WebAuthN

Is there a way to check before calling navigator.credentials.get if the credential exists on the platform authenticator? For example, if you specify that only platform authenticators can be used and not roaming authenticators, how do you know if the…
adoyon23
  • 321
  • 1
  • 5
  • 16
2
votes
1 answer

How does relying party determine the user when resident keys are used?

When client-side discoverable resident keys are used with WebAuthN, it is not necessary for the relying party to first identify the user trying to sign in. How then does the RP know which user signed in? Does the RP just receive the…
adoyon23
  • 321
  • 1
  • 5
  • 16
2
votes
1 answer

Check if credential exists without prompting for fingerprint in Android

Is there an API or other method for determining if a credential exists on the device that doesn't require taking my fingerprint first in Android? Currently, I can call getSignPendingIntent(PublicKeyCredentialRequestOptions) with a particular…
adoyon23
  • 321
  • 1
  • 5
  • 16
2
votes
1 answer

Testing webauthn in the ios simulator

Does anyone know if testing webauthn in the iOS simulator (xcode 12) with ios 14.4 is possible? I tried it with https://webauthn.io and using an iPhone 8 with fingerprint enabled and iPhone 11 with faceid enabled but in both cases it does not seem…
Maarten
  • 4,643
  • 7
  • 37
  • 51
2
votes
1 answer

Does a Blazor WASM login work with FIDO2 and how?

I want to create a simple Blazor WASM app, where users can login with FIDO2 (WebAuthn) instead of a password (and username perhaps) via Windows Hello, Yubikey, etc. Google did not tell me much about FIDO2 and Blazor, I only found a library working…
Sime Kappa
  • 121
  • 4
2
votes
1 answer

Webauthn authentication with Windows Hello via c#

UPDATE: =========== Having a very similar issue with Elliptical Curve as I did with RSA. VarifyData always returns false. byte[] data = new byte[authData.Length + hashValClientData.Length]; Buffer.BlockCopy(authData, 0, data, 0,…
McMurphy
  • 1,235
  • 1
  • 15
  • 39
2
votes
0 answers

Why does navigator.credentials.get request take a long time?

It takes about 20-25 seconds for navigator.credentials.get to come back. Is there to make this faster?
Melvis Vaz
  • 49
  • 1
  • 2
2
votes
1 answer

WebAuthN Is it possible to see the available platform authenticators?

I was tasked with creating a custom enrollment screen for webauthn. We want to show the user that faceid will be used to authenticate them, or that their fingerprint will. The solution of having a device table and deriving from that seems like a…
Kadajett
  • 73
  • 6
2
votes
1 answer

Trying to get Webauthn running

I've started a Fido2/WebAuthn project a while ago and tried to get microsofts webauthn implementation starting. For this in this project there exists a translation of the webauthn.h file (as today I only found refernces to this file in Mozilla and…
mrabat
  • 802
  • 7
  • 15
2
votes
2 answers

YubiKey + Webauth: userHandle is always null

When I authenticate using WebAuthn and my YubiKey, the response.userHandle property is always null. That is the user id and displayName that I registered the credential with does not get returned. Is this becuase of something I am doing wrong…
simbro
  • 3,372
  • 7
  • 34
  • 46
1 2 3
20 21