webauthn_authenticator_rs::ctap2

Enum CtapAuthenticator

Source 
pub enum CtapAuthenticator<'a, T: Token, U: UiCallback> {
    Fido20(Ctap20Authenticator<'a, T, U>),
    Fido21Pre(Ctap21PreAuthenticator<'a, T, U>),
    Fido21(Ctap21Authenticator<'a, T, U>),
}
Available on crate feature ctap2 only.
Expand description

Abstraction for different versions of the CTAP2 protocol.

All tokens can Deref into Ctap20Authenticator.

Variants§

§

Fido20(Ctap20Authenticator<'a, T, U>)

Interface for CTAP 2.0 tokens.

§

Fido21Pre(Ctap21PreAuthenticator<'a, T, U>)

Interface for CTAP 2.1-PRE tokens.

§

Fido21(Ctap21Authenticator<'a, T, U>)

Interface for CTAP 2.1 tokens.

Implementations§

Source§

impl<'a, T: Token, U: UiCallback> CtapAuthenticator<'a, T, U>

Source

pub async fn new( token: T, ui_callback: &'a U, ) -> Option<CtapAuthenticator<'a, T, U>>

Initialises the token, and gets a reference to the highest supported FIDO version.

Returns None if we don’t support any version of CTAP which the token supports.

Source

pub fn supports_biometrics(&self) -> bool

Returns true if the token supports biometric commands.

Source

pub fn configured_biometrics(&self) -> bool

Returns true if the token has configured biometric authentication.

Source

pub fn bio(&mut self) -> Option<&mut dyn BiometricAuthenticator>

Available on crate feature ctap2-management only.

Gets a mutable reference to a BiometricAuthenticator trait for the token, if it supports biometric commands.

Returns None if the token does not support biometrics.

Source

pub fn supports_credential_management(&self) -> bool

Returns true if the token supports credential management.

Source

pub fn credential_management( &mut self, ) -> Option<&mut dyn CredentialManagementAuthenticator>

Available on crate feature ctap2-management only.

Gets a mutable reference to a CredentialManagementAuthenticator trait for the token, if it supports credential management commands.

Returns None if the token does not support credential management.

Methods from Deref<Target = Ctap20Authenticator<'a, T, U>>§

Source

pub fn get_info(&self) -> &GetInfoResponse

Gets cached information about the authenticator.

This does not transmit to the token.

Source

pub async fn factory_reset(&mut self) -> Result<(), WebauthnCError>

Available on crate feature ctap2-management only.

Perform a factory reset of the token, deleting all data.

Source

pub fn validate_pin(&self, pin: &str) -> Result<String, WebauthnCError>

Available on crate feature ctap2-management only.

Checks whether a provided PIN follows the rules defined by the authenticator. This does not share the PIN with the authenticator.

Source

pub async fn set_new_pin(&mut self, pin: &str) -> Result<(), WebauthnCError>

Available on crate feature ctap2-management only.

Sets a PIN on a device which does not already have one.

To change a PIN, use change_pin().

Source

pub async fn change_pin( &mut self, old_pin: &str, new_pin: &str, ) -> Result<(), WebauthnCError>

Available on crate feature ctap2-management only.

Changes a PIN on a device.

To set a PIN for the first time, use set_new_pin().

Source

pub async fn selection(&mut self) -> Result<(), WebauthnCError>

Prompt for user presence on an authenticator.

On CTAP 2.1 authenticators, this sends a SelectionRequest.

On CTAP 2.0 and 2.1-PRE authenticators (where there is no SelectionRequest), this performs a MakeCredentialRequest with invalid PIN/UV auth parameters, using the process described in CTAP 2.1 § 6.1.2 authenticatorMakeCredential Algorithm step 1.

While this shouldn’t result in an authenticator lock-out (according to the spec), it has been observed that some authenticators will decrement their pinAttempts counter.

§References

Trait Implementations§

Source§

impl<'a, T: Token, U: UiCallback> AuthenticatorBackendHashedClientData for CtapAuthenticator<'a, T, U>

Wrapper for Ctap20Authenticator’s implementation of AuthenticatorBackendHashedClientData.

Source§

fn perform_register( &mut self, client_data_hash: Vec<u8>, options: PublicKeyCredentialCreationOptions, timeout_ms: u32, ) -> Result<RegisterPublicKeyCredential, WebauthnCError>

Source§

fn perform_auth( &mut self, client_data_hash: Vec<u8>, options: PublicKeyCredentialRequestOptions, timeout_ms: u32, ) -> Result<PublicKeyCredential, WebauthnCError>

Source§

impl<'a, T: Debug + Token, U: Debug + UiCallback> Debug for CtapAuthenticator<'a, T, U>

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more
Source§

impl<'a, T: Token, U: UiCallback> Deref for CtapAuthenticator<'a, T, U>

Gets a reference to a CTAP 2.0 compatible interface.

All CTAP2 tokens support these base commands.

Source§

type Target = Ctap20Authenticator<'a, T, U>

The resulting type after dereferencing.
Source§

fn deref(&self) -> &Self::Target

Dereferences the value.
Source§

impl<T: Token, U: UiCallback> DerefMut for CtapAuthenticator<'_, T, U>

Gets a mutable reference to a CTAP 2.0 compatible interface.

All CTAP2 tokens support these base commands.

Source§

fn deref_mut(&mut self) -> &mut Self::Target

Mutably dereferences the value.

Auto Trait Implementations§

§

impl<'a, T, U> Freeze for CtapAuthenticator<'a, T, U>
where T: Freeze,

§

impl<'a, T, U> RefUnwindSafe for CtapAuthenticator<'a, T, U>
where T: RefUnwindSafe, U: RefUnwindSafe,

§

impl<'a, T, U> Send for CtapAuthenticator<'a, T, U>

§

impl<'a, T, U> Sync for CtapAuthenticator<'a, T, U>

§

impl<'a, T, U> Unpin for CtapAuthenticator<'a, T, U>
where T: Unpin,

§

impl<'a, T, U> UnwindSafe for CtapAuthenticator<'a, T, U>
where T: UnwindSafe, U: RefUnwindSafe,

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<'a, T, E> AsTaggedExplicit<'a, E> for T
where T: 'a,

Source§

fn explicit(self, class: Class, tag: u32) -> TaggedParser<'a, Explicit, Self, E>

Source§

impl<'a, T, E> AsTaggedImplicit<'a, E> for T
where T: 'a,

Source§

fn implicit( self, class: Class, constructed: bool, tag: u32, ) -> TaggedParser<'a, Implicit, Self, E>

Source§

impl<T> AuthenticatorBackend for T
where T: AuthenticatorBackendHashedClientData,

Source§

fn perform_register( &mut self, origin: Url, options: PublicKeyCredentialCreationOptions, timeout_ms: u32, ) -> Result<RegisterPublicKeyCredential, WebauthnCError>

Source§

fn perform_auth( &mut self, origin: Url, options: PublicKeyCredentialRequestOptions, timeout_ms: u32, ) -> Result<PublicKeyCredential, WebauthnCError>

Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T> Instrument for T

Source§

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more
Source§

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more
Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<P, T> Receiver for P
where P: Deref<Target = T> + ?Sized, T: ?Sized,

Source§

type Target = T

🔬This is a nightly-only experimental API. (arbitrary_self_types)
The target type on which the method may be called.
Source§

impl<T> Same for T

Source§

type Output = T

Should always be Self
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
Source§

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

Source§

fn vzip(self) -> V

Source§

impl<T> WithSubscriber for T

Source§

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more
Source§

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more
Source§

impl<T> ErasedDestructor for T
where T: 'static,