Product Documentation

    The following request body is sent during the DAL web service call with addtarget operation:

    • URL: https://<FQDN>:<PORT>/skfs/rest/dal
    • HTTP Method: POST

    • FIDO2_0 request body: 
      {
    "svcinfo": {
        "did": 1,
        "protocol": "FIDO2_0",
        "authtype": "PASSWORD",
        "svcusername": "fidoadminuser",
        "svcpassword": "Abcd1234!"
    },
    "operation": "addtarget",
    "payload": {
        "namespace": "android_app",
        "packageName": "com.strongkey.example.app",
        "certificateEntries": [
            {
                "x509Certificate": "",
                "x509CertificateFingerprint": "kffL-daBUxvHpY-4M8yhTavt5QnFEI2LsexohxrGPYU"
            },
            {
                "x509Certificate": "",
                "x509CertificateFingerprint": "trFgkTyLDy6hjdaBUxvHpY4M8yhTavtRTYUtrx"
            }
        ]
    }
}

     

    svcinfo Description

    Value

    Explanation

    did

    Unique identifier for a cryptographic domain in SKFS. Unless using a StrongKey Tellaro appliance, this defaults to 1.

    protocol

    The FIDO protocol to be used in this request (FIDO2_0).

    authtype

    The type of authentication supplied in this service request—it must be PASSWORD or HMAC (see API Security for details); the example shown here is for PASSWORD type of authentication.

    svcusername

    The username of the service credential requesting this web service.

    svcpassword

    The password of the service credential requesting this web service.

         When PASSWORD authtype is used, SKFS uses entries in a previously configured Lightweight Directory Access Protocol (LDAP) or Active Directory (AD) to authenticate the credential (see Manage Credentials under [ SKFS ⇒ Administration ⇒ Security ] for details).

     

    operation Description

    Value

    Explanation

    operation

    Set this parameter to "addtarget" to add DAL target for a domain

     

    payload Description

    Value

    Explanation

    namespace

    DAL namespace identifier for the app

    packageName

    DAL package name identifier for the app

    certificateEntries

    An array of JSON Objects containing x509Certificate and x509CertificateFingerprint

    x509Certificate

    x509 certificate used for signing the app (This is optional in SKFS version 4.16.0)

    x509CertificateFingerprint

    SHA256 hash of the app's signing certificate