AuthenticatorAssertionResponse interface of the Web Authentication API contains a digital signature from the private key of a particular WebAuthn credential. The relying party's server can verify this signature to authenticate a user, for example when they sign in.
This interface inherits from
Note: This interface is restricted to top-level contexts. Use from within an
<iframe> element will not have any effect.
Also inherits properties from its parent,
AuthenticatorAssertionResponse.authenticatorDataSecure context Read only
ArrayBuffercontaining information from the authenticator such as the Relying Party ID Hash (rpIdHash), a signature counter, test of user presence and user verification flags, and any extensions processed by the authenticator.
AuthenticatorResponse.clientDataJSONSecure context Read only
Contains the JSON-compatible serialization of the data passed from the browser to the authenticator in order to authenticate with this credential — i.e., when
CredentialsContainer.get()is called with a
publicKeyoption. This data contains some information from the options passed into the
get()call, and some information controlled by the browser.
AuthenticatorAssertionResponse.signatureSecure context Read only
An assertion signature over
AuthenticatorResponse.clientDataJSON. The assertion signature is created with the private key of the key pair that was created during the originating
navigator.credentials.create()call and verified using the public key of that same key pair.
AuthenticatorAssertionResponse.userHandleSecure context Read only
See User login using the WebAuthn API for a detailed example.
|Web Authentication: An API for accessing Public Key Credentials - Level 3 |
BCD tables only load in the browser