TsgcWSAPIServer_WebAuthn › Methods › ValidateRegistrationOptions
Parses the client attestation payload and validates a new credential registration per the WebAuthn specification.
public void ValidateRegistrationOptions(string aPayload);| Name | Type | Description |
|---|---|---|
aPayload | const string | JSON payload returned by the client navigator.credentials.create() call containing the attestationObject and clientDataJSON. |
Decodes the CBOR attestationObject, verifies the attestation statement according to the enabled formats (packed, tpm, android-key, android-safetynet, fido-u2f, apple, none), extracts the credential id and public key and stores them in the credential repository. Fires OnWebAuthnRegistrationValidateCertificate, OnWebAuthnRegistrationValidateCredentialId, OnWebAuthnRegistrationSuccessful and OnWebAuthnRegistrationError as appropriate. Call this method manually only when driving registration outside the built-in HTTP endpoint.