Stepup WebAuthn GSSP
GSSP WebAuthn implementation.
Integrates https://github.com/web-auth/webauthn-framework as GSSP.
Configuration
WebAuthn Creation/request profiles
For this application default creation/request profiles are created. The application now only support 'default' profile. config/packages/webauthn.yaml
You can override the default one, see all configuration option on webauthn-framework
Trust store src/Service/InMemoryAttestationCertificateTrustStore.php
- Off all the different type of WebAuthn Attestation Statements https://www.w3.org/TR/webauthn/#sctn-attestation-types the trust store only accepts Attestation Statements with a certificate trust path.
- Should match trusted certificates should be stored on disk.
The directory can be configured inside the parameters.yml file config/packages/parameters.yml
Installation
See one of the following guides:
Tests and metrics
To run all required test you can run the following commands from the dev env:
composer test Every part can be run separately. Check "scripts" section of the composer.json file for the different options.
Version release instructions
Please read: https://github.com/OpenConext/Stepup-Deploy/wiki/Release-Management for more information on the release strategy used in Stepup projects.