인디노트

FIDO - userVerification 본문

인증기술/FIDO

FIDO - userVerification

인디개발자 2021. 1. 5. 10:53

userVerification, of type DOMString, defaulting to "preferred"

This member describes the Relying Party's requirements regarding user verification for the create() operation. Eligible authenticators are filtered to only those capable of satisfying this requirement. The value SHOULD be a member of UserVerificationRequirement but client platforms MUST ignore unknown values, treating an unknown value as if the member does not exist.

 

DOMString 유형의 userVerification, 기본값은 "preferred"입니다.

이 멤버는 create () 작업에 대한 사용자 확인과 관련된 신뢰 당사자의 요구 사항을 설명합니다. 적격 인증자는 이 요구 사항을 충족 할 수 있는 인증 자만 필터링 됩니다. 값은 UserVerificationRequirement의 구성원이어야 하지만 클라이언트 플랫폼은 알려지지 않은 값을 구성원이 없는 것처럼 처리하여 알려지지 않은 값을 무시해야합니다.

 

enum UserVerificationRequirement {
    "required",
    "preferred",
    "discouraged"
};

A WebAuthn Relying Party may require user verification for some of its operations but not for others, and may use this type to express its needs.

Note: The UserVerificationRequirement enumeration is deliberately not referenced, see § 2.1.1 Enumerations as DOMString types.

required

This value indicates that the Relying Party requires user verification for the operation and will fail the operation if the response does not have the UV flag set.

이 값은 신뢰 당사자가 작업에 대해 사용자 확인을 요구하고 응답에 UV 플래그가 설정되지 않은 경우 작업이 실패 함을 나타냅니다.

preferred

This value indicates that the Relying Party prefers user verification for the operation if possible, but will not fail the operation if the response does not have the UV flag set.

이 값은 신뢰 당사자가 가능한 경우 작업에 대해 사용자 확인을 선호하지만 응답에 UV 플래그가 설정되지 않은 경우 작업이 실패하지 않음을 나타냅니다.

discouraged

This value indicates that the Relying Party does not want user verification employed during the operation (e.g., in the interest of minimizing disruption to the user interaction flow).

이 값은 신뢰 당사자가 작업 중에 사용자 확인이 사용되는 것을 원하지 않음을 나타냅니다 (예 : 사용자 상호 작용 흐름에 대한 중단을 최소화하기 위해).

반응형
Comments