AuthenticatorAttestationResponse
Secure context: This feature is available only in secure contexts (HTTPS), in some or all supporting browsers.
The AuthenticatorAttestationResponse interface of the Web Authentication API is returned by CredentialsContainer.create() when a PublicKeyCredential is passed, and provides a cryptographic root of trust for the new key pair that has been generated. This response should be sent to the relying party's server to complete the creation of the credential.
This interface inherites from AuthenticatorResponse.
Note: This interface is restricted to top-level contexts. Use from within an <iframe> element will not have any effect.
Properties
-
AuthenticatorAttestationResponse.clientDataJSONSecure contextRead only -
Client data for the authentication, such as origin and challenge. The
clientDataJSONproperty is inherited from theAuthenticatorResponse. -
AuthenticatorAttestationResponse.attestationObjectSecure contextRead only -
An
ArrayBuffercontaining authenticator data and an attestation statement for a newly-created key pair.
Methods
-
AuthenticatorAttestationResponse.getTransports()Secure context -
Returns an
Arrayof strings describing which transport methods (e.g.usb,nfc) are believed to be supported with the authenticator. The array may be empty if the information is not available.
Examples
var publicKey = { challenge: /* from the server */, rp: { name: "Example CORP", id : "login.example.com" }, user: { id: new Uint8Array(16), name: "[email protected]", displayName: "John Doe" }, pubKeyCredParams: [ { type: "public-key", alg: -7 } ] }; navigator.credentials.create({ publicKey }) .then(function (newCredentialInfo) { var response = newCredentialInfo.response; // Do something with the response // (sending it back to the relying party server maybe?) }).catch(function (err) { console.error(err); });
Specifications
Browser compatibility
| Desktop | Mobile | |||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Chrome | Edge | Firefox | Internet Explorer | Opera | Safari | WebView Android | Chrome Android | Firefox for Android | Opera Android | Safari on IOS | Samsung Internet | |
AuthenticatorAttestationResponse |
67 |
18 |
60
Only supports USB U2F tokens.
|
No |
No |
13 |
No |
70 |
60
Only supports USB U2F tokens.
|
No |
13 |
10.0 |
attestationObject |
67 |
18 |
60
Only supports USB U2F tokens.
|
No |
No |
13 |
No |
70 |
60
Only supports USB U2F tokens.
|
No |
13 |
10.0 |
getAuthenticatorData |
85 |
85 |
No |
No |
No |
No |
No |
85 |
No |
No |
No |
No |
getPublicKey |
85 |
85 |
No |
No |
No |
No |
No |
85 |
No |
No |
No |
No |
getPublicKeyAlgorithm |
85 |
85 |
No |
No |
No |
No |
No |
85 |
No |
No |
No |
No |
getTransports |
74 |
79 |
No |
No |
No |
No |
No |
74 |
No |
No |
No |
11.0 |
See also
-
AuthenticatorAssertionResponse: the interface for the type of response given when retrieving an existing credential -
AuthenticatorResponse: the parent interface
© 2005–2021 MDN contributors.
Licensed under the Creative Commons Attribution-ShareAlike License v2.5 or later.
https://developer.mozilla.org/en-US/docs/Web/API/AuthenticatorAttestationResponse