search

kanidm / webauthn-rs

An implementation of webauthn components for Rustlang servers
Mozilla Public License 2.0
483 stars 80 forks source link

20230206 238 fido mds and quirks #348

Closed Firstyear closed 1 year ago

Firstyear commented 1 year ago

Fixes #307 Fixes #238 Fixes - This expands query support in the mds, adds our own device catalog, and allows converting out device catalog entries to attestation CA lists.

Supersedes #310

Firstyear commented 1 year ago

Example usage:

# fido-mds-tool fetch
2023-08-31T01:05:27.620536Z  INFO fido_mds_tool: Fetching from https://mds.fidoalliance.org/ to "/tmp/mds.blob.jwt"
2023-08-31T01:05:30.753665Z  INFO fido_mds_tool: Ok!

## Show all devices that are greater than or equal to l1 certification, and can perform fingerprint uv
# fido-mds-tool query "status gte l1 and uvm cnt fingerprint_internal"

## Using the same query, output the certificate roots and matching authenticator aaguids that conform to this query.
# fido-mds-tool query "status gte l1 and uvm cnt fingerprint_internal" -o