Question: How might you create an OpenID Connect style service that has Webauthn?

Question

Question: How might you create an OpenID Connect style service that has Webauthn?

mangoplane opened this issue a year ago · 2 comments

Hi,

Essentially I need to create a Fido2 instance that is request dependent, so I can handle auth requests from many different origins that pair with the appropriate FIDO2 instance configured with the same origin. Is there an easy way to do that? Any pointers would be much appreciated.

Cheers!

Answer 1 · 2023-11-29T08:20:05.000Z

I'm aware of the following:

new Fido2(new Fido2Configuration{ ... })

Perhaps there's a more lightweight option than creating a large instance per invocation.

Answer 2 · 2023-11-29T08:32:55.000Z

I think the best option after thinking about it is to create a middleware that creates an origin specific instance, and stores them in a reusable pool to minimize resource usage.