🏠 Overview 🧩 Components 🧩 Passkey Service

Passkey Service

Component Detail

Service Layer high complexity mobile
2
Dependencies
2
Dependents
2
Entities
0
Integrations

Description

Orchestrates the full FIDO2 WebAuthn registration and assertion ceremonies by coordinating the WebAuthn Bridge (platform channel) with the Authentication Module REST endpoints. Manages passkey CRUD operations, enforces the minimum-credential business rule, and converts platform authenticator responses into API-ready payloads.

Feature: Authentication Methods (Passkeys)

passkey-service

Responsibilities

  • Drive registration ceremony: POST /auth/passkeys/register/begin → authenticator → POST /auth/passkeys/register/complete
  • Drive assertion ceremony: POST /auth/passkeys/authenticate/begin → authenticator → POST /auth/passkeys/authenticate/complete
  • List registered credentials via GET /api/v1/auth/passkeys
  • Delete passkey via DELETE /api/v1/auth/passkeys/{credentialId} after re-auth confirmation
  • Block removal when only one active credential remains and surface business-rule error

Interfaces

beginRegistration(credentialName: String): Future<PasskeyRegistrationChallenge>
completeRegistration(attestation: AuthenticatorAttestationResponse): Future<PasskeyCredential>
beginAuthentication(): Future<PasskeyAuthenticationChallenge>
completeAuthentication(assertion: AuthenticatorAssertionResponse): Future<AuthSession>
listPasskeys(): Future<List<PasskeyCredential>>
removePasskey(credentialId: String): Future<void>

Relationships

Dependencies (2)

Components this component depends on

service Auth Service Shared service WebAuthn Bridge Service

Dependents (2)

Components that depend on this component

ui Passkey Settings Screen ui Passkey Registration Sheet

Related Data Entities (2)

Data entities managed by this component

Session 16 fields core User 24 fields core