/login/options: to create the request options (POST only)
/login: to submit the assertion response (POST only)
usernamefield with the name of the user being authenticated.
PublicKeyCredentialRequestOptionsobject and your user will be asked to interact with one of its registered security devices.
/login/options. You can change it if needed:
/login. You can change that path if needed:
defaultprofile is used. You may have created a request profile in the bundle configuration. You can use this profile instead of the default one.
/register/options: to create the creation options (POST only)
/register: to submit the attestation response (POST only)
displayNamefields with the username of the user being registered and the name displayed in the application.
PublicKeyCredentialCreationOptionsobject and your user will be asked to interact with its security device.
/register/options. You can change it if needed:
/register. You can change that path is needed:
defaultprofile is used. You may have created a creation profile in the bundle configuration. You can use this profile instead of the default one.
IS_USER_PRESENT: the user was present during the authentication ceremony. This attribute is usually set to
IS_USER_VERIFIED: the user was verified by the authenticator. Verification may be performed by several means including biometrics ones (fingerprint, iris, facial recognition…).
ROLE_ADMINand that have been verified during the ceremony.
Webauthn\Bundle\Security\Storage\SessionStorage. This storage system stores the data in a session.
Webauthn\Bundle\Security\Storage\RequestOptionsStorageand be declared as a container service.
options_pathduring the authentication process. The default Request Options Handler is
Webauthn\Bundle\Security\Handler\DefaultRequestOptionsHandler. It returns a JSON Response with the Public Key Credential Request Options objects in its body.
Webauthn\Bundle\Security\Handler\RequestOptionsHandlerand be declared as a service.
Symfony\Component\Security\Http\Authentication\AuthenticationSuccessHandlerInterfaceand be declared as a container service.
Symfony\Component\Security\Http\Authentication\AuthenticationFailureHandlerInterfaceand be declared as a container service.