Attestation endpoint
This endpoint finalizes the registration of a FIDO2 authenticator. For more information about the registration operation, see Registration endpoint documentation.
HTTP request
POST https://{instance}.mauth.nevis.cloud/_app/attestation/result
Request body parameters
note
Some HTTP request parameters must be Base64 URL encoded.
| Parameter | Type | Required/Optional | Description |
|---|---|---|---|
type | string | required | Type of credential, which is an extension point. It only supports public-key. |
id | string | required | Base64-URL-encoded probabilistically unique byte sequence that identifies a public key credential source and its authentication assertions. |
response | DICT | required | Contains the authenticator response to the client request to create a public key credential. |
response.clientDataJSON | string | required | Base64-URL-encoded JSON-compatible serialization of client data passed to the authenticator. |
response.attestationObject | string | required | Base64-URL-encoded attestation object that contains both authenticator data and an attestation statement. The contents of the attestation statement are determined by the attestation statement format used by the authenticator. |
userFriendlyName | string | optional | User-friendly name for the authenticator. |
userAgent | string | optional | User agent used to initiate the current request. |
Example HTTP request
cURL code sample for finalizing the registration
curl "https://$instance.mauth.nevis.cloud/_app/attestation/result" \
-XPOST \
-H 'Content-Type: application/json;charset=utf-8' \
-H 'Accept: application/json' \
-d "{
\"id\":\"$id\",
\"type\":\"public-key\",
\"response\": {
\"attestationObject\":\"$attestationObject\",
\"clientDataJSON\":\"$clientDataJSON\"
},
\"userFriendlyName\":\"$userFriendlyName\",
\"userAgent\":\"Mozilla/5.0 (X11; Linux x86_64; rv:104.0) Gecko/20100101 Firefox/104.0\"
}"
HTTP response
| Field | Type | Description |
|---|---|---|
errorMessage | string | Contains the error message when the status is failed, otherwise the field is empty. |
status | string | Describes the status of the response. On successful operation, status is ok, otherwise failed. |
token | string | Transaction token to verify whether the operation is executed by your Authentication Cloud instance. For more information, see Token introspection endpoint. |
Example HTTP response
- Status is ok
- Status is failed
200 OK: Success response
{
"errorMessage": "",
"status": "ok",
"token": "eyJhbGc...2CDSw"
}
200 OK: Failure response
{
"errorMessage": "The server could not process the WebAuthn message.",
"status": "failed",
"token": "eyJh...haqvw"
}