An implementation of WebAuthn in OCaml
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Reynir Björnsson 18e5babfde Merge pull request #2 from herrjemand/patch-1 1 year ago
bin Error: Authenticator has already been registered 1 year ago
flash_message WIP 1 year ago
src Unvendor ocaml-cbor 1 year ago Prepare for v0.1.0 release 1 year ago Add BSD 2-clause license in 1 year ago Updated terms, and added additional description. 1 year ago
dune-project dune-project: disable formatting 1 year ago
webauthn.opam Upstream changes from opam-repository 1 year ago

WebAuthn - authenticating users to services using public key cryptography

WebAuthn is a web standard published by the W3C. Its goal is to standardize an interface for authenticating users to web-based applications and services using public key cryptography. Modern web browsers support WebAuthn functionality.

WebAuthn provides two funcitons: register and authenticate. Usually the public-private keypair is stored on an external device, called security key (Yubikey, Trustkey etc.) or inside a platform(OS) authenticator. Platform authenticators are available on all modern platforms, such as Windows, Mac, Android and iOS. After the public key is registered, it can be used to authenticate to the same service.

This module does not preserve a database of registered public keys, their credential ID, usernames and pending challenges - instead this data must be stored by a client of this API in a database or other persistent storage.

WebAuthn specification at W3C

A basic demonstration server is provided (bin/webauthn_demo), running at


API documentation is available online.


opam install webauthn will install this library.