auth.provider API
    Preparing search index...

    Interface WebAuthnCredential

    WebAuthn credential record stored per registered passkey.

    SECURITY (§2.3.2): userId is ALSO used as the WebAuthn user-handle (user.id) presented to the authenticator. It MUST be opaque and MUST NOT contain PII (email, username, etc.) per WebAuthn §5.4.3. Authenticators persist this value and may sync it across devices.

    interface WebAuthnCredential {
        backedUp: boolean;
        createdAt: Date;
        credentialId: string;
        lastUsedAt?: Date;
        nickname?: string;
        publicKey: Uint8Array;
        signCount: number;
        transports?: readonly AuthenticatorTransport[];
        userId: string;
    }
    Index

    Properties

    backedUp createdAt credentialId lastUsedAt? nickname? publicKey signCount transports? userId

    Properties

    backedUp: boolean
    createdAt: Date
    credentialId: string
    lastUsedAt?: Date
    nickname?: string
    publicKey: Uint8Array

    Authenticator public key in COSE format. Logically immutable — callers MUST NOT mutate the returned bytes; doing so corrupts the store's view of the credential. (Convention: Uint8Array record fields are treated as readonly even though TypeScript has no ReadonlyUint8Array type.)

    signCount: number
    transports?: readonly AuthenticatorTransport[]
    userId: string

    Settings

    Member Visibility

    On This Page

    Properties