Passkey Auth Service
Component Detail
Service Layer
high complexity
mobilebackendshared
2
Dependencies
1
Dependents
4
Entities
0
Integrations
Description
Core service managing the full FIDO2 WebAuthn lifecycle including registration ceremonies (attestation) and authentication ceremonies (assertion). Coordinates between the frontend platform authenticator APIs and the backend REST API to create, store, and verify public key credentials per user.
passkey-auth-service
Responsibilities
- Orchestrate WebAuthn registration ceremony with backend challenge generation and attestation verification
- Orchestrate WebAuthn authentication ceremony with assertion challenge and signature verification
- Manage passkey credential lifecycle (create, list, revoke) per user account
- Detect device passkey support and determine available authenticator types
- Handle graceful fallback to existing authentication methods when passkeys are unavailable
Interfaces
initiateRegistration(userId)
completeRegistration(attestationResponse)
initiateAuthentication(userId)
completeAuthentication(assertionResponse)
listUserPasskeys(userId)
revokePasskey(credentialId)
checkDeviceSupport()
getFallbackAuthMethod(userId)
validateChallenge(challenge, response)
generateChallenge()
Relationships
Dependencies (2)
Components this component depends on
Related Data Entities (4)
Data entities managed by this component