Authorization (AZ)

Syntax

java -jar skfsclient.jar AZ <hostport> <did> <wsprotocol> <authtype> [ <accesskey> <secretkey> | <svcusername> <svcpassword> ] <username> <txid> <txpayload> <origin> <authcounter> <crossorigin> <verify>

Values

Value	Explanation
hostport	Host and port to access the FIDO server SOAP & REST format : http://<FQDN>:<non-ssl-portnumber> or https://<FQDN>:<ssl-portnumber> example : https://fidodemo.strongauth.com:8181
did	Unique domain identifier that belongs to SKCE
wsprotocol	Web service protocol; REST \| SOAP
authtype	Authentication type; HMAC \| PASSWORD
accesskey	Access key for use in identifying a secret key
secretkey	Secret key for HMACing a request
svcusername	Username used for PASSWORD-based authorization
svcpassword	Password used for PASSWORD-based authorization
username	Username for registration, authentication, or getting keys info
txid	Unique identifier for the transaction (Base64URLSafe Strong)
txpayload	Transaction payload to be used to generate the challenge for transaction authorization (Base64URLSafe Strong)
origin	Origin to be used by the FIDO Client Simulator
authcounter	Auth counter to be used by the FIDO Client Simulator
crossorigin	Boolean that will determine if client data allows crossorigin or not - to be used for the simulator
verify	Verify the authorization once again once we receive the response (Boolean value)

Output

$example:~/skfsclient> java -jar skfsclient.jar AZ https://example.strongkey.com:8181 1 REST PASSWORD svcfidouser Abcd1234! johndoe ID1234 AAABBBBABAB https://example.strongkey.com 6 false false

Copyright (c) 2001-2024 StrongAuth, Inc. All rights reserved.

REST Authorization with PASSWORD
*******************************
preauthorizejson = 
{"svcinfo":{"did":1,"protocol":"FIDO2_0","authtype":"PASSWORD","svcusername":"svcfidouser","svcpassword":"Abcd1234!"},"payload":{"username":"johndoe","txid":"ID1234","txpayload":"AAABBBBABAB","options":{}}}

Calling preauthorize @ https://example.strongkey.com:8181/skfs/rest/preauthorize
 Response : {"Response":{"challenge":"vwuPuLSJqK5vrTF5y99Kao5A0n2e-YL0WsWta3YH86M","allowCredentials":[{"type":"public-key","id":"pqBOcDW7uYfRqEMY660IyuS6VzyQI2nX2oKUjwv9uy9W3y6FwzG2M9GGK9eUOa9dq2zbEoLGunjWrRjieM5_r4rM0hZaUtBtJWk6gfUYCWn-9Mp3buA_EVyZIMfjrANG6xgWPITT4MMG4sUl7m080mCISSAyKi4WaUZ_CcSPLvJl8q7swnw3MZX51jjS6LRSb5AlZQou5-nlT6Tmy6l45cNagb7IDJwdbW16j-XblEZY0lSzHss5vVF0W_cpIBsf","alg":-7}],"txid":"ID1234","txpayload":"AAABBBBABAB","rpId":"strongkey.com"},"responseCode":"FIDO-MSG-0014"}

Pre-Authorize Complete.

Generating Authorization response...

Simulator Response : 
 id = pqBOcDW7uYfRqEMY660IyuS6VzyQI2nX2oKUjwv9uy9W3y6FwzG2M9GGK9eUOa9dq2zbEoLGunjWrRjieM5_r4rM0hZaUtBtJWk6gfUYCWn-9Mp3buA_EVyZIMfjrANG6xgWPITT4MMG4sUl7m080mCISSAyKi4WaUZ_CcSPLvJl8q7swnw3MZX51jjS6LRSb5AlZQou5-nlT6Tmy6l45cNagb7IDJwdbW16j-XblEZY0lSzHss5vVF0W_cpIBsf
 rawId = pqBOcDW7uYfRqEMY660IyuS6VzyQI2nX2oKUjwv9uy9W3y6FwzG2M9GGK9eUOa9dq2zbEoLGunjWrRjieM5_r4rM0hZaUtBtJWk6gfUYCWn-9Mp3buA_EVyZIMfjrANG6xgWPITT4MMG4sUl7m080mCISSAyKi4WaUZ_CcSPLvJl8q7swnw3MZX51jjS6LRSb5AlZQou5-nlT6Tmy6l45cNagb7IDJwdbW16j-XblEZY0lSzHss5vVF0W_cpIBsf
 response = authenticatorData = WnTBrV2dI2nYtpWAzOrzVHMkwfEC46dxHD4U1RP9KKMEAAAABg
 signature = MEUCIF8NQAfq4MyPmQF-0KvplFOYfcraefC2RSbva9o2qW9rAiEA_wxpB8cefyPouf2e7wPrT2unvEnaBaT_OzroQVuW0uw
 userHandle = 
 clientDataJSON = eyJ0eXBlIjoid2ViYXV0aG4uZ2V0IiwiY2hhbGxlbmdlIjoidnd1UHVMU0pxSzV2clRGNXk5OUthbzVBMG4yZS1ZTDBXc1d0YTNZSDg2TSIsIm9yaWdpbiI6Imh0dHBzOi8vZXhhbXBsZS5zdHJvbmdrZXkuY29tIiwiY3Jvc3NPcmlnaW4iOmZhbHNlfQ
 type = public-key

Finished Generating Authorization Response.

Authorizinging ...
authjson = 
{"svcinfo":{"did":1,"protocol":"FIDO2_0","authtype":"PASSWORD","svcusername":"svcfidouser","svcpassword":"Abcd1234!"},"payload":{"txid":"ID1234","txpayload":"AAABBBBABAB","publicKeyCredential":{"id":"pqBOcDW7uYfRqEMY660IyuS6VzyQI2nX2oKUjwv9uy9W3y6FwzG2M9GGK9eUOa9dq2zbEoLGunjWrRjieM5_r4rM0hZaUtBtJWk6gfUYCWn-9Mp3buA_EVyZIMfjrANG6xgWPITT4MMG4sUl7m080mCISSAyKi4WaUZ_CcSPLvJl8q7swnw3MZX51jjS6LRSb5AlZQou5-nlT6Tmy6l45cNagb7IDJwdbW16j-XblEZY0lSzHss5vVF0W_cpIBsf","rawId":"pqBOcDW7uYfRqEMY660IyuS6VzyQI2nX2oKUjwv9uy9W3y6FwzG2M9GGK9eUOa9dq2zbEoLGunjWrRjieM5_r4rM0hZaUtBtJWk6gfUYCWn-9Mp3buA_EVyZIMfjrANG6xgWPITT4MMG4sUl7m080mCISSAyKi4WaUZ_CcSPLvJl8q7swnw3MZX51jjS6LRSb5AlZQou5-nlT6Tmy6l45cNagb7IDJwdbW16j-XblEZY0lSzHss5vVF0W_cpIBsf","response":{"authenticatorData":"WnTBrV2dI2nYtpWAzOrzVHMkwfEC46dxHD4U1RP9KKMEAAAABg","signature":"MEUCIF8NQAfq4MyPmQF-0KvplFOYfcraefC2RSbva9o2qW9rAiEA_wxpB8cefyPouf2e7wPrT2unvEnaBaT_OzroQVuW0uw","userHandle":"","clientDataJSON":"eyJ0eXBlIjoid2ViYXV0aG4uZ2V0IiwiY2hhbGxlbmdlIjoidnd1UHVMU0pxSzV2clRGNXk5OUthbzVBMG4yZS1ZTDBXc1d0YTNZSDg2TSIsIm9yaWdpbiI6Imh0dHBzOi8vZXhhbXBsZS5zdHJvbmdrZXkuY29tIiwiY3Jvc3NPcmlnaW4iOmZhbHNlfQ"},"type":"public-key"},"strongkeyMetadata":{"version":"1.0","last_used_location":"Sunnyvale, CA","username":"johndoe","origin":"https://example.strongkey.com"}}}

Calling authorize @ https://example.strongkey.com:8181/skfs/rest/authorize
 Response : {"Response":"Successfully processed authorization response","responseCode":"FIDO-MSG-0016","txdetail":{"txid":"ID1234","txpayload":"AAABBBBABAB","nonce":"D5FniOskmlgt1rtm90tf-A","txtime":1717627804863,"challenge":"vwuPuLSJqK5vrTF5y99Kao5A0n2e-YL0WsWta3YH86M"},"FIDOAuthenticatorReferences":[{"protocol":"FIDO2_0","id":"pqBOcDW7uYfRqEMY660IyuS6VzyQI2nX2oKUjwv9uy9W3y6FwzG2M9GGK9eUOa9dq2zbEoLGunjWrRjieM5_r4rM0hZaUtBtJWk6gfUYCWn-9Mp3buA_EVyZIMfjrANG6xgWPITT4MMG4sUl7m080mCISSAyKi4WaUZ_CcSPLvJl8q7swnw3MZX51jjS6LRSb5AlZQou5-nlT6Tmy6l45cNagb7IDJwdbW16j-XblEZY0lSzHss5vVF0W_cpIBsf","rawId":"pqBOcDW7uYfRqEMY660IyuS6VzyQI2nX2oKUjwv9uy9W3y6FwzG2M9GGK9eUOa9dq2zbEoLGunjWrRjieM5_r4rM0hZaUtBtJWk6gfUYCWn-9Mp3buA_EVyZIMfjrANG6xgWPITT4MMG4sUl7m080mCISSAyKi4WaUZ_CcSPLvJl8q7swnw3MZX51jjS6LRSb5AlZQou5-nlT6Tmy6l45cNagb7IDJwdbW16j-XblEZY0lSzHss5vVF0W_cpIBsf","userHandle":"","rpId":"strongkey.com","authenticatorData":"WnTBrV2dI2nYtpWAzOrzVHMkwfEC46dxHD4U1RP9KKMEAAAABg","clientDataJSON":"eyJ0eXBlIjoid2ViYXV0aG4uZ2V0IiwiY2hhbGxlbmdlIjoidnd1UHVMU0pxSzV2clRGNXk5OUthbzVBMG4yZS1ZTDBXc1d0YTNZSDg2TSIsIm9yaWdpbiI6Imh0dHBzOi8vZXhhbXBsZS5zdHJvbmdrZXkuY29tIiwiY3Jvc3NPcmlnaW4iOmZhbHNlfQ","aaguid":"3b1adb99-0dfe-46fd-90b8-7f7614a4de2a","authorizationTime":1717627808385,"uv":true,"up":false,"signerPublicKey":"MIIBMzCB7AYHKoZIzj0CATCB4AIBATAsBgcqhkjOPQEBAiEA_____wAAAAEAAAAAAAAAAAAAAAD_______________8wRAQg_____wAAAAEAAAAAAAAAAAAAAAD_______________wEIFrGNdiqOpPns-u9VXaYhrxlHQawzFOw9jvOPD4n0mBLBEEEaxfR8uEsQkf4vOblY6RA8ncDfYEt6zOg9KE5RdiYwpZP40Li_hp_m47n60p8D54WK84zV2sxXs7LtkBoN79R9QIhAP____8AAAAA__________-85vqtpxeehPO5ysL8YyVRAgEBA0IABBwZGZE8iKdv3Nj3pypJr19Qt3BnrKnTNXAogk3XkP1ZSb2WbPk7oIVBdyJhLp12B7pkGxZ2FTS6gZxM9COuCPc","signature":"MEUCIF8NQAfq4MyPmQF-0KvplFOYfcraefC2RSbva9o2qW9rAiEA_wxpB8cefyPouf2e7wPrT2unvEnaBaT_OzroQVuW0uw","usedForThisTransaction":true,"signingKeyType":"ECDSA","signingKeyAlgorithm":"SHA256withECDSA"}]}

Authorization Complete.
*******************************

Done with Authorize!