AuthenticatorAttestationResponse

Secure context
This feature is available only in secure contexts (HTTPS), in some or all supporting browsers .

AuthenticatorAttestationResponse interface of the Web 身份验证 API is returned by CredentialsContainer.create() when a PublicKeyCredential is passed, and provides a cryptographic root of trust for the new key pair that has been generated. This response should be sent to the relying party's server to complete the creation of the credential.

This interface inherites from AuthenticatorResponse .

注意: This interface is restricted to top-level contexts. Use from within an <iframe> element will not have any effect.

特性

AuthenticatorAttestationResponse.clientDataJSON Secure context 只读
Client data for the authentication, such as origin and challenge. The clientDataJSON property is inherited from the AuthenticatorResponse .
AuthenticatorAttestationResponse.attestationObject Secure context 只读
An ArrayBuffer containing authenticator data and an attestation statement for a newly-created key pair.

方法

AuthenticatorAttestationResponse.getTransports() Secure context
Returns an Array of strings describing which transport methods (e.g. usb , nfc ) are believed to be supported with the authenticator. The array may be empty if the information is not available.

范例

var publicKey = {
  challenge: /* from the server */,
  rp: {
    name: "Example CORP",
    id  : "login.example.com"
  },
  user: {
    id: new Uint8Array(16),
    name: "jdoe@example.com",
    displayName: "John Doe"
  },
  pubKeyCredParams: [
    {
      type: "public-key",
      alg: -7
    }
  ]
};
navigator.credentials.create({ publicKey })
  .then(function (newCredentialInfo) {
    var response = newCredentialInfo.response;
    // Do something with the response
    // (sending it back to the relying party server maybe?)
  }).catch(function (err) {
     console.error(err);
  });
					

规范

规范 状态 Comment
Web Authentication: An API for accessing Public Key Credentials Level 1
The definition of 'AuthenticatorAttestationResponse interface' in that specification.
Recommendation 初始定义。

浏览器兼容性

更新 GitHub 上的兼容性数据
Desktop Mobile
Chrome Edge Firefox Internet Explorer Opera Safari Android webview Chrome for Android Firefox for Android Opera for Android Safari on iOS Samsung Internet
AuthenticatorAttestationResponse Chrome 67
67
65
Disabled
Only supports USB U2F tokens.
Disabled From version 65: this feature is behind the Web 身份验证 API preference (needs to be set to Enabled ). To change preferences in Chrome, visit chrome://flags.
Edge 18 Firefox 60
60
Only supports USB U2F tokens.
IE No Opera No Safari 13 WebView Android 70 Chrome Android 70 Firefox Android 60
60
Only supports USB U2F tokens.
Opera Android No Safari iOS 13.3 Samsung Internet Android 10.0
attestationObject Chrome 67
67
65
Disabled
Only supports USB U2F tokens.
Disabled From version 65: this feature is behind the Web 身份验证 API preference (needs to be set to Enabled ). To change preferences in Chrome, visit chrome://flags.
Edge 18 Firefox 60
60
Only supports USB U2F tokens.
IE No Opera No Safari 13 WebView Android 70 Chrome Android 70 Firefox Android 60
60
Only supports USB U2F tokens.
Opera Android No Safari iOS 13.3 Samsung Internet Android 10.0
getTransports
Chrome No Edge No Firefox No IE No Opera No Safari No WebView Android No Chrome Android No Firefox Android No Opera Android No Safari iOS No Samsung Internet Android No

图例

完整支持
完整支持
不支持
不支持
实验。期望将来行为有所改变。
实验。期望将来行为有所改变。
见实现注意事项。
用户必须明确启用此特征。
用户必须明确启用此特征。

另请参阅