Skip to content

Instantly share code, notes, and snippets.

@ParthKolekar

ParthKolekar/FIDO2 Auth.md

Last active October 28, 2025 12:40
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save ParthKolekar/79fbfac7676d70226567d4b61d760064 to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save ParthKolekar/79fbfac7676d70226567d4b61d760064 to your computer and use it in GitHub Desktop.
Download ZIP
FIDO2 Auth
Raw
FIDO2 Auth.md 
sequenceDiagram
    participant User
    participant Client (Phone/PC)
    participant FIDO2 Authenticator (Bluetooth Key)
    participant Server (Website/App)

    User->>Client (Phone/PC): Initiates login
    Client (Phone/PC)->>Server (Website/App): Request authentication challenge
    Server (Website/App)-->>Client (Phone/PC): Sends challenge (nonce, params)
    Client (Phone/PC)->>FIDO2 Authenticator (Bluetooth Key): Forwards challenge via Bluetooth
    User->>FIDO2 Authenticator (Bluetooth Key): Approves via PIN/biometric
    FIDO2 Authenticator (Bluetooth Key)-->>Client (Phone/PC): Signs challenge, returns assertion
    Client (Phone/PC)->>Server (Website/App): Sends assertion (public key signature)
    Server (Website/App)-->>Client (Phone/PC): Validates and authenticates user
Loading
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment