Web Authentification API
Parts
- π Relying party
- π Public key credential
- πΎ Authenticator
- πͺͺ Attestation (optional)
- Checking that the device is real
Face ID and Touch ID
Onboard user
- User to sign in with regular email and password
- Ask user if they want to use TouchId from now on
Enrollment
Handling response on server
- Validate all metadata
- Validate the attestation (optional)
- Save the credential ID and the public key data
- Set a server-side cookie (optional)
Sign in