java -jar skfsclient.jar A <hostport> <did> <wsprotocol> <authtype> [ <accesskey> <secretkey> | <svcusername> <svcpassword> ] <username> <origin> <authcounter> <crossorigin> <saml>
Value |
Explanation |
---|---|
hostport |
Host and port to access theĀ FIDO server |
did |
Unique domain identifier that belongs to SKCE |
wsprotocol |
Web service protocol; REST | SOAP |
authtype |
Authentication type; HMAC | PASSWORD |
accesskey |
Access key for use in identifying a secret key |
secretkey |
Secret key for HMACing a request |
svcusername |
Username used for PASSWORD-based authorization |
svcpassword |
Password used for PASSWORD-based authorization |
username |
Username for registration, authentication, or getting keys info |
origin |
Origin to be used by the FIDO Client Simulator |
authcounter |
Auth counter to be used by the FIDO Client Simulator |
crossorigin |
Boolean that will determine if client data allows crossorigin or not - to be used for the simulator |
saml |
Boolean that will determine whether the SKFS will return a SAML assertion as an example when using the skfsclient |
$ example:~/skfsclient> java -jar skfsclient.jar A https://example.strongkey.com:8181 1 REST PASSWORD svcfidouser Abcd1234! johndoe https://example.strongkey.com 2 false false
Copyright (c) 2001-2024 StrongAuth, Inc. All rights reserved.
REST Authentication with PASSWORD
*******************************
preauthjson =
{"svcinfo":{"did":1,"protocol":"FIDO2_0","authtype":"PASSWORD","svcusername":"svcfidouser","svcpassword":"Abcd1234!"},"payload":{"username":"johndoe","options":{}}}
Calling preauthenticate @ https://example.strongkey.com:8181/skfs/rest/preauthenticate
Response : {"Response":{"challenge":"NpOFvpnD9cMyZVNBD-MjEA","allowCredentials":[{"type":"public-key","id":"iRklifx1dKdJ1TD8nfO_1sJkjBvQ8c-IvF7rWIm_Pn3eomw-6ADlnnQW6SdnywTy-9BQRn4dZ_YG-I2whzQyjlpu1uMCHEipGnq7jIMFl3uag6muQz8R8fOjQQHp7zp_roZV8CcUgqaBhDpBJPJeownmAU89_J_30TtxD9l6vGBYE1QL8Q_NRwHtONs0BHaHVinjS4JigcNCvdC9IyHfd91vAwnrxOy9h0JqmBBZF28NWlQGSKhMVLCIYcFioyx6","alg":-7},{"type":"public-key","id":"vWOzdjkJuhFu882484g4j87WSjzS9yhtGNnumOYQ1lGhsfsPEXUuTWllh-HLT5-wdq-cc6CaDZzaCnJyMotyuO40Q322xqY95IBxFoiPTerl75eRbFmBFbD8xnhIsZaqchVnWtKmcOG-kMIH35HQtDTfS-TwzQx8Ok5GUhc8y17VNb9mK3cWgyJXnRCZ-MMjB-E7EEd0StiMvcuoadtZ1pgnXskbHL6_lZDmLlGmCipLaLz7rc0uevKuvdiJqa9h","alg":-7}],"rpId":"strongkey.com"},"responseCode":"FIDO-MSG-0006"}
Pre-Authentication Complete.
Generating Authentication response...
{}
ChallengeNonce: NpOFvpnD9cMyZVNBD-MjEA
Simulator Response :
id = iRklifx1dKdJ1TD8nfO_1sJkjBvQ8c-IvF7rWIm_Pn3eomw-6ADlnnQW6SdnywTy-9BQRn4dZ_YG-I2whzQyjlpu1uMCHEipGnq7jIMFl3uag6muQz8R8fOjQQHp7zp_roZV8CcUgqaBhDpBJPJeownmAU89_J_30TtxD9l6vGBYE1QL8Q_NRwHtONs0BHaHVinjS4JigcNCvdC9IyHfd91vAwnrxOy9h0JqmBBZF28NWlQGSKhMVLCIYcFioyx6
rawId = iRklifx1dKdJ1TD8nfO_1sJkjBvQ8c-IvF7rWIm_Pn3eomw-6ADlnnQW6SdnywTy-9BQRn4dZ_YG-I2whzQyjlpu1uMCHEipGnq7jIMFl3uag6muQz8R8fOjQQHp7zp_roZV8CcUgqaBhDpBJPJeownmAU89_J_30TtxD9l6vGBYE1QL8Q_NRwHtONs0BHaHVinjS4JigcNCvdC9IyHfd91vAwnrxOy9h0JqmBBZF28NWlQGSKhMVLCIYcFioyx6
response = authenticatorData = WnTBrV2dI2nYtpWAzOrzVHMkwfEC46dxHD4U1RP9KKMEAAAAAg
signature = MEUCIQD4tj6md0gvQS-jI5Y_UcBK0ThLC-f6558jgYf-m5xXcwIgBXvYj1cStsOcOz6Y5GwhVVpAHttv3flwlyrHsJXZj9E
userHandle =
clientDataJSON = eyJ0eXBlIjoid2ViYXV0aG4uZ2V0IiwiY2hhbGxlbmdlIjoiTnBPRnZwbkQ5Y015WlZOQkQtTWpFQSIsIm9yaWdpbiI6Imh0dHBzOi8vdGVzdC5zdHJvbmdrZXkuY29tIiwiY3Jvc3NPcmlnaW4iOmZhbHNlfQ
type = public-key
Finished Generating Authentication Response.
Authenticating ...
authjson =
{"svcinfo":{"did":1,"protocol":"FIDO2_0","authtype":"PASSWORD","svcusername":"svcfidouser","svcpassword":"Abcd1234!"},"payload":{"publicKeyCredential":{"id":"iRklifx1dKdJ1TD8nfO_1sJkjBvQ8c-IvF7rWIm_Pn3eomw-6ADlnnQW6SdnywTy-9BQRn4dZ_YG-I2whzQyjlpu1uMCHEipGnq7jIMFl3uag6muQz8R8fOjQQHp7zp_roZV8CcUgqaBhDpBJPJeownmAU89_J_30TtxD9l6vGBYE1QL8Q_NRwHtONs0BHaHVinjS4JigcNCvdC9IyHfd91vAwnrxOy9h0JqmBBZF28NWlQGSKhMVLCIYcFioyx6","rawId":"iRklifx1dKdJ1TD8nfO_1sJkjBvQ8c-IvF7rWIm_Pn3eomw-6ADlnnQW6SdnywTy-9BQRn4dZ_YG-I2whzQyjlpu1uMCHEipGnq7jIMFl3uag6muQz8R8fOjQQHp7zp_roZV8CcUgqaBhDpBJPJeownmAU89_J_30TtxD9l6vGBYE1QL8Q_NRwHtONs0BHaHVinjS4JigcNCvdC9IyHfd91vAwnrxOy9h0JqmBBZF28NWlQGSKhMVLCIYcFioyx6","response":{"authenticatorData":"WnTBrV2dI2nYtpWAzOrzVHMkwfEC46dxHD4U1RP9KKMEAAAAAg","signature":"MEUCIQD4tj6md0gvQS-jI5Y_UcBK0ThLC-f6558jgYf-m5xXcwIgBXvYj1cStsOcOz6Y5GwhVVpAHttv3flwlyrHsJXZj9E","userHandle":"","clientDataJSON":"eyJ0eXBlIjoid2ViYXV0aG4uZ2V0IiwiY2hhbGxlbmdlIjoiTnBPRnZwbkQ5Y015WlZOQkQtTWpFQSIsIm9yaWdpbiI6Imh0dHBzOi8vdGVzdC5zdHJvbmdrZXkuY29tIiwiY3Jvc3NPcmlnaW4iOmZhbHNlfQ"},"type":"public-key"},"strongkeyMetadata":{"version":"1.0","last_used_location":"Sunnyvale, CA","username":"johndoe","origin":"https://test.strongkey.com"}}}
Calling authenticate @ https://example.strongkey.com:8181/skfs/rest/authenticate
Response : {"Response":"Successfully processed sign response","responseCode":"FIDO-MSG-0008","username":"johndoe","jwt":"eyJhbGciOiJFUzI1NiIsIng1YyI6Ii0tLS0tQkVHSU4gQ0VSVElGSUNBVEUtLS0tLVxuTUlJQ0NEQ0NBV2VnQXdJQkFnSUVOQ2tJSURBTUJnZ3Foa2pPUFFRREJBVUFNRXN4RWpBUUJnTlZCQW9UQ1ZOMFxuY205dVowdGxlVEVPTUF3R0ExVUVDeE1GUkVsRUlERXhKVEFqQmdOVkJBTVRIRk4wY205dVowdGxlU0JHU1VSUFxuSUZObGNuWmxjaUJTYjI5MFEwRXdIaGNOTWpNd09URTRNak13TkRFd1doY05NalF3T1RFM01qTXdOREV3V2pCQVxuTVJJd0VBWURWUVFLRXdsVGRISnZibWRMWlhreERqQU1CZ05WQkFzVEJVUkpSQ0F4TVJvd0dBWURWUVFERXhGVFxuUzBaVElFcFhWQ0JUYVdkdVpYSWdNVEJaTUJNR0J5cUdTTTQ5QWdFR0NDcUdTTTQ5QXdFSEEwSUFCQXord1pVcVxuSmM0UzFGVnpoaXo2YWRzcjZ3SjdHSndRSXpodkp5V3VDOFovZ2w4SWVNcjJXNUVsRWNwd2tWR1ZvSStVVkNVeFxuNjdRNFIvcUtFcldQb0ZHalFqQkFNQjBHQTFVZERnUVdCQlJBMUdVVzgzUFYxZ0w0cU8ySUYydy85dy9CWGpBZlxuQmdOVkhTTUVHREFXZ0JSS0p3SGxNWmh0aHRCZjY4MVpCNWtSbFJXWmF6QU1CZ2dxaGtqT1BRUURCQVVBQTRHTVxuQURDQmlBSkNBY25PM1d1UFE0NTRYMVJUWHgzem1YOWZtQlhOSTFZWE5ZeVNORXF4NlhETjRkd0NXOGxkSU56dFxudzYvektoWk5SU2tjaE5va2NVNk51bXlvcldGSnNCa2VBa0lCTEpyZGxiV0hudC9VNHJHWVl2a0tzbUtWNGt3WlxudDR4cmdIQnhxM0VjbzZTRVhEbW5MRGlucWFZOWN3emlNaTlVNE4yY3ZnRVcwWHkxalVVVkI0QVFtM3c9XG4tLS0tLUVORCBDRVJUSUZJQ0FURS0tLS0tXG4ifQ.eyJycGlkIjoic3Ryb25na2V5LmNvbSIsImlhdCI6MTY5NTg0NzgzNjM1MiwiZXhwIjoxNjk1ODQ5NjM2MzUyLCJjaXAiOiIxMC4wLjIuMjQxIiwic3ViIjoiam9obmRvZSIsImFnZW50IjoiQXBhY2hlLUh0dHBDbGllbnQvNC41LjEzIChKYXZhLzExLjAuMjApIn0.MEYCIQCWGRigf_QYgDThtISJ8L17IrWMYo5rVmCjdM2hfC1NTgIhAK7HdztnzqOxBV8AdFncMPJciBCVjfuvxQAK7oyKiJtt"}
Authentication Complete.
*******************************
Done with Authenticate!