Product Documentation

    SKFS can be configured to send different responses based on the following configuration properties:

    1. skfs.cfg.property.return.MDS
    2. skfs.cfg.property.jwt.create (Click here for detailed jwt description)
    3. skfs.cfg.property.return.responsedetail

     

    Default response

    A successful default FIDO2_0 response with the three configuration properties defined above set to false (accompanied by a 200 OK) will look similar to the following:

    <?xml version='1.0' encoding='UTF-8'?>
<S:Envelope
    xmlns:S="http://schemas.xmlsoap.org/soap/envelope/">
    <S:Body>
        <ns2:authenticateResponse
            xmlns:ns2="http://soap.skfs.strongauth.com/">
            <return>
            {
              "Response":"Successfully processed authentication response",
                      "responseCode": "FIDO-MSG-0008",
                  "skfsVersion":"4.13.0",
                  "skfsFQDN":"example.strongkey.com",
                  "TXID":"1-1-169-1679354369053",
                      "jwt":""
            }
            </return>
        </ns2:authenticateResponse>
    </S:Body>
</S:Envelope>


    Response with JWT

    If "skfs.cfg.property.jwt.create" is set to true, the response will look similar to the following. Click here for example content of the <return> tag.

    <?xml version='1.0' encoding='UTF-8'?>
<S:Envelope
    xmlns:S="http://schemas.xmlsoap.org/soap/envelope/">
    <S:Body>
        <ns2:authenticateResponse
            xmlns:ns2="http://soap.skfs.strongauth.com/">
            <return>
            {
              "Response":"Successfully processed authentication response",
                      "responseCode": "FIDO-MSG-0008",
                  "skfsVersion":"4.13.0",
                  "skfsFQDN":"example.strongkey.com",
                  "TXID":"1-1-169-1679354369053",
                  "jwt":"eyJhb..."
            }
            </return>
        </ns2:authenticateResponse>
    </S:Body>
</S:Envelope>

     

    Response with SAML

    If "skfs.cfg.property.generate.saml.response" is set to true, the response will look similar to the following. 

    <?xml version='1.0' encoding='UTF-8'?>
<S:Envelope
    xmlns:S="http://schemas.xmlsoap.org/soap/envelope/">
    <S:Body>
        <ns2:authenticateResponse
            xmlns:ns2="http://soap.skfs.strongauth.com/">
            <return>
            {
              "Response":"Successfully processed authentication response",
                      "responseCode": "FIDO-MSG-0008",
                  "skfsVersion":"4.13.0",
                  "skfsFQDN":"example.strongkey.com",
                  "TXID":"1-1-169-1679354369053",
                  "saml":"eyJhb..."
            }
            </return>
        </ns2:authenticateResponse>
    </S:Body>
</S:Envelope>

     

    Response with JWT and SAML

    If "skfs.cfg.property.jwt.create" and "skfs.cfg.property.generate.saml.response" is set to true, the response will look similar to the following. Click here for example content of the <return> tag.

    <?xml version='1.0' encoding='UTF-8'?>
<S:Envelope
    xmlns:S="http://schemas.xmlsoap.org/soap/envelope/">
    <S:Body>
        <ns2:authenticateResponse
            xmlns:ns2="http://soap.skfs.strongauth.com/">
            <return>
            {
              "Response":"Successfully processed authentication response",
                      "responseCode": "FIDO-MSG-0008",
                  "skfsVersion":"4.13.0",
                  "skfsFQDN":"example.strongkey.com",
                  "TXID":"1-1-169-1679354369053",
                  "jwt":"eyJhb...",
                  "saml" : "eyJjb..."
            }
            </return>
        </ns2:authenticateResponse>
    </S:Body>
</S:Envelope>


    Detailed response (default)

    If "skfs.cfg.property.jwt.create" and "skfs.cfg.property.return.responsedetail" are set to true, and "skfs.cfg.property.return.responsedetail.format" is set to default, the response will look similar to the following. Click here for example content of the <return> tag.

    <?xml version='1.0' encoding='UTF-8'?>
    <S:Envelope
        xmlns:S="http://schemas.xmlsoap.org/soap/envelope/">
        <S:Body>
            <ns2:registerResponse
                xmlns:ns2="http://soap.skfs.strongauth.com/">
                <return>
                  {
                    "Response": "Successfully processed authentication response",
                    "responseCode": "FIDO-MSG-0008",
                    "skfsVersion":"4.13.0",
                    "skfsFQDN":"example.strongkey.com",
                    "TXID":"1-1-169-1679354369053",
                    "responseDetail": {
                        "responseFormat": "default",
                        ...
                      },
                    "keyInfo": {
                          ...
                    },
                    "jwt":"eyJhb..."
                 }
              </return>
            </ns2:registerResponse>
        </S:Body>
    </S:Envelope>


    Detailed response (webauthn2 format)

    If "skfs.cfg.property.jwt.create" and "skfs.cfg.property.return.responsedetail" are set to true, and "skfs.cfg.property.return.responsedetail.format" is set to webauthn2, the response will look similar to the following. Click here for example content of the <return> tag.

    <?xml version='1.0' encoding='UTF-8'?>
    <S:Envelope
        xmlns:S="http://schemas.xmlsoap.org/soap/envelope/">
        <S:Body>
            <ns2:registerResponse
                xmlns:ns2="http://soap.skfs.strongauth.com/">
                <return>
                  {
                    "Response": "Successfully processed authentication response",
                    "responseCode": "FIDO-MSG-0008",
                    "skfsVersion":"4.13.0",
                    "skfsFQDN":"example.strongkey.com",
                    "TXID":"1-1-169-1679354369053",
                    "responseDetail": {
                        "responseFormat": "webauthn2",
                        ...
                      },
                    "keyInfo": {
                          ...
                    },
                    "jwt":"eyJhb..."
                 }
              </return>
            </ns2:registerResponse>
        </S:Body>
    </S:Envelope>


    Response with metadata

    If "skfs.cfg.property.jwt.create" and "skfs.cfg.property.return.MDS" are set to true, the response will look similar to the following. Click here for example content of the <return> tag.

    <?xml version='1.0' encoding='UTF-8'?>
    <S:Envelope
        xmlns:S="http://schemas.xmlsoap.org/soap/envelope/">
        <S:Body>
            <ns2:registerResponse
                xmlns:ns2="http://soap.skfs.strongauth.com/">
                <return>
                  {
                    "Response": "Successfully processed authentication response",
                    "responseCode": "FIDO-MSG-0008",
                    "mdsEntry": {
                        ...
                      },
                    "jwt":"eyJhb..."
                  }
              </return>
            </ns2:registerResponse>
        </S:Body>
    </S:Envelope>


    Detailed response (default) with metadata

    If "skfs.cfg.property.jwt.create", "skfs.cfg.property.return.MDS" and "skfs.cfg.property.return.responsedetail" are set to true, and "skfs.cfg.property.return.responsedetail.format" is set to default, the response will look similar to the following. Click here for example content of the <return> tag.

    <?xml version='1.0' encoding='UTF-8'?>
    <S:Envelope
        xmlns:S="http://schemas.xmlsoap.org/soap/envelope/">
        <S:Body>
            <ns2:registerResponse
                xmlns:ns2="http://soap.skfs.strongauth.com/">
                <return>
                  {
                    "Response": "Successfully processed authentication response",
                    "responseCode": "FIDO-MSG-0008",
                    "skfsVersion":"4.13.0",
                    "skfsFQDN":"example.strongkey.com",
                    "TXID":"1-169-1679354369053",
                    "mdsEntry": {
                        ...
                      }
                    "responseDetail": {
                        "responseFormat": "default",
                        ...
                      },
                    "keyInfo": {
                          ...
                    },
                    "jwt":"eyJhb..."
                  }
              </return>
            </ns2:registerResponse>
        </S:Body>
    </S:Envelope>


    Detailed response (webauthn2 format) with metadata

    If "skfs.cfg.property.jwt.create", "skfs.cfg.property.return.MDS" and "skfs.cfg.property.return.responsedetail" are set to true, and "skfs.cfg.property.return.responsedetail.format" is set to webauthn2, the response will look similar to the following. Click here for example content of the <return> tag.

    <?xml version='1.0' encoding='UTF-8'?>
    <S:Envelope
        xmlns:S="http://schemas.xmlsoap.org/soap/envelope/">
        <S:Body>
            <ns2:registerResponse
                xmlns:ns2="http://soap.skfs.strongauth.com/">
                <return>
                  {
                    "Response": "Successfully processed authentication response",
                    "responseCode": "FIDO-MSG-0008",
                    "skfsVersion":"4.13.0",
                    "skfsFQDN":"example.strongkey.com",
                    "TXID":"1-1-169-1679354369053",
                    "mdsEntry": {
                        ...
                      }
                    "responseDetail": {
                        "responseFormat": "webauthn2",
                        ...
                      },
                    "keyInfo": {
                          ...
                    },
                    "jwt":"eyJhb..."
                  }
              </return>
            </ns2:registerResponse>
        </S:Body>
    </S:Envelope>