The Relying Party
The Relying Party (or rp
) corresponds to the application that will ask for the user to interact with the authenticator.
The library provides a simple class to handle the rp information: Webauthn\PublicKeyCredentialRpEntity
.
This $rpEntity
object will be useful for the next steps.
The ID can be null
, the domain or sub-domain of your application.
Even if it is optional, we highly recommend to set the application ID. If absent, the current domain will be used
The scheme, userinfo, port, path, user… are not allowed.
Example: www.sub.domain.com
, sub.domain.com
, domain.com
but not com
, www.sub.domain.com:1337
, https://domain.com:443
, sub.domain.com/index
, https://user:password@www.domain.com
.
Your application may also have a logo. You can indicate this logo as third argument. Please note that for safety reason this icon is a priori authenticated URL i.e. an image that uses the data
scheme.
The Webauthn specification does not set any limit for the length of the third argument.
The icon may be ignored by browsers, especially if its length is greater than 128 bytes.
Last updated