Overview

The nevisFIDO FIDO Universal Authentication Framework (UAF) HTTP API documentation describes communication between the (FIDO) client, the nevisFIDO server and the relying party applications. It describes where and how communication with the nevisFIDO server is possible, by using what protocol.

Authorization

tip

Configure authorization for the HTTP API endpoints using the nevisFIDO component configuration.

For recommended authorization settings, see Default HTTP API Endpoints.

Services

Standard FIDO services that are part of the FIDO Universal Authentication Framework (UAF):

• Registration Request Service
• Registration Response Service
• Authentication Request Service
• Authentication Response Service
• Deregistration Request Service
• Facets Service

The following services are specific for nevisFIDO:

• Out-of-band services
  • Dispatch Target Service
  • Dispatch Token Service
  • Redeem Token Service
  • Create Token Service
• Status Service

Per service, the following elements are described:

• Base URL
• HTTP methods
• Request headers
• Request body
• Response headers
• Response body
• Example request
• Example response
• HTTP status code

info

The context path of nevisFIDO is /nevisfido. It is shared by all exposed endpoints.

The first chapter describes the attributes that are shared among the different services.