Overview#WebAuthn Authentication is when a website (WebAuthn Relying Party) needs to obtain proof that it is interacting with the correct user.
- The WebAuthn Relying Party generates a challenge and supplies the browser with a list of credentials that are bound to the UserId. (this binding was performed in WebAuthn Registration)
- The browser (WebAuthn Client) asks the authenticator to [Digitally Signed]] the challenge.
- The Website forwards the Digitally Signed assertion to the server for the WebAuthn Relying Party to verify.