All Classes and Interfaces
Class
Description
Validates the assertion signature in
AuthenticationData based on COSEKeyThe supported attachment hint type(s).
WebAuthn Relying Parties may use AttestationConveyancePreference to specify their preference
regarding attestation conveyance during credential generation.
The attestation object contains both authenticator data and an attestation statement.
Converter for
AttestationObjectAttestation metadata.certs container
Validates the specified
AttestationStatementAttested credential data is a variable-length byte array added to the authenticator data when
generating an attestation object for a given credential.
The supported authentication algorithm(s).
AuthenticationExtensionsAuthenticatorInputs containing the authenticator extension input values for
zero or more WebAuthn extensions, as defined in §9 WebAuthn Extensions.Internal envelope class for
AuthenticationExtensionsAuthenticatorOutputs deserializationJackson Serializer for
AuthenticationExtensionsAuthenticatorOutputsEnvelopeAuthenticationExtensionsClientInputs is a map containing the client extension input values for
zero or more WebAuthn extensions, as defined in §9 WebAuthn Extensions.Converter for
AuthenticationExtensionsClientInputsMap containing the client extension output values for zero or more WebAuthn
extensions, as defined in §9 WebAuthn Extensions.
Converter for
AuthenticationExtensionsClientOutputsInternal data transfer object for authentication data
Core interface that represents WebAuthn authenticator
The AuthenticatorAssertionResponse represents an authenticator's response to a
client’s request for generation of a new authentication assertion given the WebAuthn
Relying Party's challenge and OPTIONAL list of credentials it is aware of.
This enumeration’s values describe authenticators' attachment modalities.
The
AuthenticatorAttestationResponse represents the authenticator's response to a client’s request
for the creation of a new public key credential.The supported attestation type(s).
The authenticator data structure encodes contextual bindings made by the authenticator.
Converter for
AuthenticatorDataJackson Deserializer for
AuthenticatorDataJackson Serializer for
AuthenticatorDataAn
Authenticator implementationAuthenticators respond to Relying Party requests by returning an object derived from the AuthenticatorResponse.
WebAuthn Relying Parties may use the AuthenticatorSelectionCriteria to specify their
requirements regarding authenticator attributes.
Authenticators may implement various transports for communicating with clients.
Thrown if bad aaguid is detected
Thrown if bad algorithm is specified
Thrown if bad attestation statement is specified
Thrown if bad challenge is detected
Thrown if bad origin is specified
Thrown if bad rpId is specified
Thrown if bad signature is specified
Deprecated.
A utility class for CBOR serialization/deserialization
Deprecated.
Thrown if certificate problems happen
Jackson Deserializer for
CertPathJackson Serializer for
CertPathValidates the specified
AttestationStatement x5c trustworthinessJackson Deserializer for
ChallengeJackson Serializer for
ChallengeThe client data represents the contextual bindings of both the WebAuthn Relying Party and the client.
Converter for
CollectedClientDataThrown if the value violates constraints
Internal data transfer object for authentication data
Core interface that represents WebAuthn authenticator
An
CoreAuthenticator implementationStrategy interface to handle malicious counter value
Internal envelope class for
COSEKey deserializationJackson Deserializer for
COSEKeyEnvelopeDefault implementation of
SelfAttestationTrustworthinessValidatorValidates the specified
AttestationStatement is a valid FIDO-U2F attestationThrown if inconsistent type is specified for client data
A utility class for JSON serialization/deserialization
Jackson Deserializer for
JWSJackson Serializer for
JWSThrown if an invalid TPM key description is detected
The supported key protection type(s).
Thrown if it fails to load certificate from
KeyStoreDeprecated.
Load
TrustAnchors from KeyStore.Deprecated.
Thrown if the counter value is lower than expected value
Strategy interface to handle malicious counter value
The supported matcher protection type(s).
Thrown if challenge doesn't exist in the session
Validates the specified
AttestationStatement is a none attestationNull validator that bypass x5c trustworthiness check
Null validator for
FIDOU2FAttestationStatementNull validator for
PackedAttestationStatementNull validator that bypass self attestation rule check
A set of object converter classes
Origin contains the fully qualified origin of the requester, as provided to the authenticator
by the client.Jackson Serializer for
OriginValidates the specified
Origin instanceValidates the specified
AttestationStatement is a valid packed attestationThe PublicKeyCredential interface contains the attributes that are returned to the caller
when a new credential is created, or a new assertion is requested.
Options for Credential Creation
PublicKeyCredentialDescriptor contains the attributes that are specified by a caller when referring to
a public key credential as an input parameter to the create() or get() methods.The PublicKeyCredentialEntity describes a user account, or a WebAuthn Relying Party,
which a public key credential is associated with or scoped to, respectively.
PublicKeyCredentialParameters is used to supply additional parameters when creating a new credential.PublicKeyCredentialRequestOptions supplies get() with the data it needs to
generate an assertion.PublicKeyCredentialRpEntity is used to supply additional Relying Party attributes
when creating a new credential.PublicKeyCredentialType defines the valid credential types.PublicKeyCredentialUserEntity is used to supply additional user account attributes
when creating a new credential.Thrown if the public key in the first certificate in x5c doesn't matches the credentialPublicKey in the attestedCredentialData
The supported publik key representation format(s).
Internal data transfer object for registration data
This enumeration’s values describe the Relying Party's requirements for client-side discoverable credentials (formerly known as resident credentials or resident keys)
Thrown if self attestation is specified while prohibited
Validates the specified
AttestationStatement trustworthiness based on self-attestation ruleData transfer object that represents relying party server property for validators
Deprecated.
TokenBinding contains information about the state of the Token Binding protocol
used when communicating with the Relying Party.Thrown if tokenBinding error happen
TokenBindingStatus is one of the following:
supported
present
Jackson Deserializer for
TPMSAttestJackson Serializer for
TPMSAttestJackson Deserializer for
TPMTPublicJackson Serializer for
TPMTPublicThe supported transaction confirmation display type(s).
Deprecated.
Thrown if no trust anchor chained to the attestation certificate is found
TrustAnchor Repository
Deprecated.
Deprecated.
Deprecated.
Thrown if unexpected extension is contained
Thrown if user is to be present but not present
Thrown if user is to be verified but not verified
The supported user verification method(s).
A WebAuthn Relying Party may require user verification for some of its operations but not for
others, and may use this type to express its needs.
An abstract exception for validation violation
Jackson Module for WebAuthn CBOR data structures
Jackson Module for WebAuthn JSON data structures
Jackson Deserializer for
X509CertificateJackson Deserializer for
X509CertificateJackson Serializer for
X509CertificateJackson Serializer for
X509Certificate
DefaultCertPathTrustworthinessValidatorinstead