Metadata | FIDO2 for ASP.NET

FIDO2 for ASP.NET supports the FIDO Authenticator Metadata Service V3 (MDS).
This allows a FIDO relying party to load metadata about certified FIDO authenticators to aid in authenticator attestation.

To configure the FIDO Metadata Service, call the AddFidoMetadataService extension method on the IFidoBuilder.

 services.AddFido(options =>
    {
       //Fido Configuration
    })
    .AddFidoMetadataService();

The FIDO Metadata Service can be customized by passing an FidoMetadataOptions action to the AddFidoMetadataService method.

Embedded Metadata

The component includes a copy of the latest FIDO metadata available at the time of package release. You can configure this by calling the UseEmbeddedMetadata extension method.

Embedded metadata can also be used as a fallback if the FIDO Authenticator Metadata Service is unavailable or times out. This behavior can be enabled by setting the EmbeddedMetadataFallback property to true.

FidoMetadataOptions

MetadataCacheDuration: TimeSpan Duration for which metadata will be cached.
EmbeddedMetadataFallback: bool If true, metadata will fall back to an embedded version on retrieval timeout.
HttpMetadataTimeout: TimeSpan Maximum time to wait before embedded metadata fallback.

Previous Next