FIDO Metadata Service

FIDO metadata service configuration allows to update the configuration bound to downloading the FIDO metadata from the public service and to review the downloaded metadata. The metadata play a vital role in the process of evaluating trusted authenticators. For more information about the public FIDO metadata service, see https://fidoalliance.org/mds/.

Description

Description of the configuration object

Metadata TOC document

The read-only persisted Metadata TOC document that is used during processing of the FIDO registration and authentication operations. The document is represented by a JSON structure.

Root certificate

The root certificate in PEM format to verify the signature of the Metadata TOC document. It can be downloaded from https://mds.fidoalliance.org/Root.cer (or another address referenced at https://fidoalliance.org/mds/). Set this field according to your site requirements to synchronize the freshest metadata service information.

Hash algorithm

JWT signature algorithm to java hash algorithm id.

  • Allowed Values:

    • ES256

    • ES384

    • ES512

    • PS256

    • PS384

    • PS512

    • RS256

    • RS384

    • RS512

    • HS256

    • HS384

    • HS512

Update interval

The interval in seconds that determines the rate at which the metadata information from the public FIDO metadata service is refreshed.