cesnet / simplesamlphp-module-webauthn
A SimpleSAMLphp module for MFA using webauthn flask module
Installs: 34
Dependents: 0
Suggesters: 1
Security: 0
Stars: 0
Watchers: 7
Forks: 0
Type:simplesamlphp-module
Requires
- php: ^7.2 || ^8
- simplesamlphp/composer-module-installer: 1.1.8
- web-token/jwt-easy: 2.2.11
- web-token/jwt-key-mgmt: 2.2.11
- web-token/jwt-signature-algorithm-rsa: 2.2.11
Requires (Dev)
- symplify/easy-coding-standard: 10.2.2
Suggests
- web-token/jwt-signature-algorithm-ecdsa: Adds ECDSA based signature algorithms
- web-token/jwt-signature-algorithm-eddsa: Adds EdDSA based signature algorithms
- web-token/jwt-signature-algorithm-hmac: Adds HMAC based signature algorithms
README
This module is no longer developed. We have moved to privacyIDEA, try our fork of simplesamlphp-module-privacyidea instead.
Installation
cd /var/simplesamlphp/modules
git clone https://github.com/CESNET/simplesamlphp-module-webauthn.git webauthn
Example configuration
If the flask module runs at https://flask.example.com/webauthn/, use the following auth proc filter:
50 => [
'class' => 'webauthn:WebAuthn',
'redirect_url' => 'https://flask.example.com/webauthn/authentication_request',
'api_url' => 'https://flask.example.com/webauthn/request',
'signing_key' => '/var/webauthn_private.pem',
'user_id' => 'uid',
'skip_redirect_url' => 'https://example.com/simplesaml/switchMethods.php',
'hide_manage_tokens' => 'hide_manage_tokens',
],
Then you have to adjust the configuration of the flask module. If your SimpleSAMLphp installation is available at https://example.com/simplesaml/, use the following URL as the callback-url in the flask module's config.yaml:
https://example.com/simplesaml/module.php/webauthn/handleResponse.php
License
This module is licensed under the BSD 2-Clause License.
Copyright (c) 2021, Institute of Computer Science, Masaryk University and CESNET, z. s. p. o. All rights reserved.