Product Documentation

The preauthenticate web service is the preliminary step to authenticate a user with their FIDO credential; this web service performs three functions:

  • Provides SKFS with a username to identify the user
  • Determines the policy with which an authentication will be accepted
  • Generates a unique challenge to be signed by the user's FIDO authenticator as part of the authentication process

The web service requires the following parameters supplied as JSON objects (shown in the Request example in this section):

Parameter

Explanation

svcinfo

Every web service request sent by applications to SKFS must be authenticated and authorized. These privileges are based on service credential information (svcinfo) passed into the web service as a JSON object.

payload

This parameter, also a JSON object, carries information about the user and other parameters necessary for SKFS to fulfill the operation.