WebAuthn.Net
A production-ready, easy-to-use, extensible implementation of the WebAuthn Level 3 standard, passing the FIDO conformance test, for the server side of web applications on .NET 6 and .NET 8.
Documentation
The documentation for each project is described in its README.md file.
Supported features
- ✅ Passkeys are supported out of the box
- ✅ Attestation API & verification (Register and verify credentials/authenticators)
- ✅ Assertion API & verification (Authenticate users)
- ✅ 100% completion of the entire FIDO Conformance Test, including all optional features
- ✅ Demo application for performing the FIDO Conformance test
- ✅ Demo application demonstrating the capabilities of the library
- ✅ Authenticators embedded in the device (FaceID, TouchID, Windows Hello)
- ✅ Roaming aka cross-platform authenticators (USB/NFC/BLE keys, for example Yubico)
- ✅ All current attestation statement formats
- ✅ All cryptographic algorithms required to pass the FIDO Conformance Test
- ✅ Processing of each request with a single transaction
- ✅ Ready-to-use storage implementations
- ✅ Built-in metrics (with an additional library for integrating WebAuthn.Net metrics with OpenTelemetry)
- ✅ Exceptionless design (avoid exceptions wherever possible)
- ✅ Designed with extensibility in mind (almost any library component can be overridden)
- ✅ Intellisense documentation
Local development
Required dependencies
Tips for Contribution
Any contributions appreciated!
If you have an idea, feature request, or you find a bug – feel free to open new issue.
Acknowledgements
WebAuthn.Net is built using the following wonderful tools
WebAuthn.Net is inspired by the wonderful project FIDO2 .NET Library (WebAuthn). However, WebAuthn.Net is not a fork, but a standalone project built entirely from scratch.