mirror of
https://github.com/CloudNebulaProject/barycenter.git
synced 2026-04-10 21:20:41 +00:00
2.1 KiB
2.1 KiB
WebAuthn Fixture Capture Tool
This tool captures real WebAuthn responses from your authenticator for use in integration tests.
Prerequisites
-
Start Barycenter server:
cargo run -
Create a test user (if not already exists):
# The default admin user should work (admin/password123)
Usage
-
Open
capture_webauthn_fixture.htmlin your browser:open tests/tools/capture_webauthn_fixture.html # or firefox tests/tools/capture_webauthn_fixture.html -
Click "Login to Server" to authenticate
-
Click "Capture Registration Fixture" to register a new passkey
- Your browser will prompt you to use your authenticator
- Use TouchID, Windows Hello, or a USB security key
-
Copy the JSON output and save to
tests/fixtures/
Fixture Types
Hardware-Bound Passkey
- File:
hardware_key_registration.json - Device: USB security key (YubiKey, etc.)
- Characteristics:
backup_eligible: falsebackup_state: false- AMR:
["hwk"]
Cloud-Synced Passkey
- File:
cloud_synced_passkey.json - Device: TouchID (macOS), Windows Hello, iCloud Keychain
- Characteristics:
backup_eligible: truebackup_state: true- AMR:
["swk"]
Captured Data
Each fixture contains:
- challenge_response: The initial challenge from the server
- credential_response: The credential created by the authenticator
- server_response: The server's verification response (registration only)
- metadata: Capture timestamp, authenticator type, user agent
Using Fixtures in Tests
use crate::helpers::load_fixture;
#[tokio::test]
async fn test_passkey_registration() {
let fixture = load_fixture("hardware_key_registration");
// Use fixture.challenge_response and fixture.credential_response in tests
}
Tips
- Multiple Devices: Capture fixtures from different authenticator types (hardware vs platform)
- Fresh Captures: If the server's JWKS changes, you may need to recapture fixtures
- Counter Values: Each authentication increments the counter - recapture if needed for specific counter tests