class WebAuthn::RelyingParty

def self.if_pss_supported(algorithm)

def self.if_pss_supported(algorithm)
  OpenSSL::PKey::RSA.instance_methods.include?(:verify_pss) ? algorithm : nil
end

def attestation_root_certificates_finders=(finders)

def attestation_root_certificates_finders=(finders)
  if !finders.respond_to?(:each)
    finders = [finders]
  end
  finders.each do |finder|
    unless finder.respond_to?(:find)
      raise RootCertificateFinderNotSupportedError, "Finder must implement `find` method"
    end
  end
  @attestation_root_certificates_finders = finders
end

def encoder

Used to decode user input and to encode data provided to the user.
This is the user-data encoder.

def encoder
  @encoder ||= WebAuthn::Encoder.new(encoding)
end

def initialize(

def initialize(
  algorithms: DEFAULT_ALGORITHMS.dup,
  encoding: WebAuthn::Encoder::STANDARD_ENCODING,
  origin: nil,
  id: nil,
  name: nil,
  verify_attestation_statement: true,
  credential_options_timeout: 120000,
  silent_authentication: false,
  acceptable_attestation_types: ['None', 'Self', 'Basic', 'AttCA', 'Basic_or_AttCA', 'AnonCA'],
  attestation_root_certificates_finders: [],
  legacy_u2f_appid: nil
)
  @algorithms = algorithms
  @encoding = encoding
  @origin = origin
  @id = id
  @name = name
  @verify_attestation_statement = verify_attestation_statement
  @credential_options_timeout = credential_options_timeout
  @silent_authentication = silent_authentication
  @acceptable_attestation_types = acceptable_attestation_types
  @legacy_u2f_appid = legacy_u2f_appid
  self.attestation_root_certificates_finders = attestation_root_certificates_finders
end

def options_for_authentication(**keyword_arguments)

def options_for_authentication(**keyword_arguments)
  WebAuthn::Credential.options_for_get(
    **keyword_arguments,
    relying_party: self
  )
end

def options_for_registration(**keyword_arguments)

def options_for_registration(**keyword_arguments)
  WebAuthn::Credential.options_for_create(
    **keyword_arguments,
    relying_party: self
  )
end

def verify_authentication(

def verify_authentication(
  raw_credential,
  challenge,
  user_presence: nil,
  user_verification: nil,
  public_key: nil,
  sign_count: nil
)
  webauthn_credential = WebAuthn::Credential.from_get(raw_credential, relying_party: self)
  stored_credential = yield(webauthn_credential) if block_given?
  if webauthn_credential.verify(
    challenge,
    public_key: public_key || stored_credential.public_key,
    sign_count: sign_count || stored_credential.sign_count,
    user_presence: user_presence,
    user_verification: user_verification
  )
    block_given? ? [webauthn_credential, stored_credential] : webauthn_credential
  end
end

def verify_registration(raw_credential, challenge, user_presence: nil, user_verification: nil)

def verify_registration(raw_credential, challenge, user_presence: nil, user_verification: nil)
  webauthn_credential = WebAuthn::Credential.from_create(raw_credential, relying_party: self)
  if webauthn_credential.verify(challenge, user_presence: user_presence, user_verification: user_verification)
    webauthn_credential
  end
end

Namespace

WebAuthn

Class Methods

:: if_pss_supported

Instance Methods

Defined in

lib/webauthn/relying_party.rb

Modules

Classes

class WebAuthn::RelyingParty

def self.if_pss_supported(algorithm)

def attestation_root_certificates_finders=(finders)

def encoder

def initialize(

def options_for_authentication(**keyword_arguments)

def options_for_registration(**keyword_arguments)

def verify_authentication(

def verify_registration(raw_credential, challenge, user_presence: nil, user_verification: nil)

Namespace

Class Methods

Instance Methods

Defined in