Package sk.iway.iwcm.system.spring.passkey

Class PasskeyCredentialEntity

java.lang.Object
sk.iway.iwcm.system.spring.passkey.PasskeyCredentialEntity
@Entity public class PasskeyCredentialEntity extends Object
JPA entity representing a WebAuthn credential record (passkey_credentials table). Each entry represents one registered passkey (authenticator) for a user. Stores all data needed by Spring Security's CredentialRecord interface: credential ID, public key, signature count, flags, transports, attestation data, etc.

  • Constructor Details

    • PasskeyCredentialEntity

      public PasskeyCredentialEntity()

  • Method Details

    • getId

      public Long getId()

    • getLabel

      public String getLabel()
      Human-readable label assigned by the user.

    • getCredentialId

      public String getCredentialId()
      WebAuthn credential ID (Base64URL encoded). Used to identify the credential during authentication.

    • getUserId

      public Long getUserId()
      FK to users.user_id - the WebJET user who owns this credential.

    • getPublicKey

      public String getPublicKey()
      COSE-encoded public key, stored as Base64URL string.

    • getSignatureCount

      public Long getSignatureCount()
      Signature counter from the authenticator, used to detect cloning.

    • getUvInitialized

      public Boolean getUvInitialized()
      Whether user verification was initialized for this credential.

    • getBackupEligible

      public Boolean getBackupEligible()
      Whether this credential is eligible for backup (BE flag).

    • getBackupState

      public Boolean getBackupState()
      Whether this credential is currently backed up (BS flag).

    • getAuthenticatorTransports

      public String getAuthenticatorTransports()
      Comma-separated list of authenticator transports (e.g. "internal,hybrid").

    • getPublicKeyCredentialType

      public String getPublicKeyCredentialType()
      Public key credential type (typically "public-key").

    • getAttestationObject

      public String getAttestationObject()
      Raw attestation object from registration, stored as Base64URL string.

    • getAttestationClientDataJson

      public String getAttestationClientDataJson()
      Attestation client data JSON from registration.

    • getCreated

      public Instant getCreated()
      When this credential was created.

    • getLastUsed

      public Instant getLastUsed()
      When this credential was last used for authentication.

    • getRpId

      public String getRpId()
      The Relying Party ID (domain) for which this credential was registered. WebAuthn credentials are domain-bound - a credential registered for one domain cannot be used on a different domain.

    • setId

      public void setId(Long id)

    • setLabel

      public void setLabel(String label)
      Human-readable label assigned by the user.

    • setCredentialId

      public void setCredentialId(String credentialId)
      WebAuthn credential ID (Base64URL encoded). Used to identify the credential during authentication.

    • setUserId

      public void setUserId(Long userId)
      FK to users.user_id - the WebJET user who owns this credential.

    • setPublicKey

      public void setPublicKey(String publicKey)
      COSE-encoded public key, stored as Base64URL string.

    • setSignatureCount

      public void setSignatureCount(Long signatureCount)
      Signature counter from the authenticator, used to detect cloning.

    • setUvInitialized

      public void setUvInitialized(Boolean uvInitialized)
      Whether user verification was initialized for this credential.

    • setBackupEligible

      public void setBackupEligible(Boolean backupEligible)
      Whether this credential is eligible for backup (BE flag).

    • setBackupState

      public void setBackupState(Boolean backupState)
      Whether this credential is currently backed up (BS flag).

    • setAuthenticatorTransports

      public void setAuthenticatorTransports(String authenticatorTransports)
      Comma-separated list of authenticator transports (e.g. "internal,hybrid").

    • setPublicKeyCredentialType

      public void setPublicKeyCredentialType(String publicKeyCredentialType)
      Public key credential type (typically "public-key").

    • setAttestationObject

      public void setAttestationObject(String attestationObject)
      Raw attestation object from registration, stored as Base64URL string.

    • setAttestationClientDataJson

      public void setAttestationClientDataJson(String attestationClientDataJson)
      Attestation client data JSON from registration.

    • setCreated

      public void setCreated(Instant created)
      When this credential was created.

    • setLastUsed

      public void setLastUsed(Instant lastUsed)
      When this credential was last used for authentication.

    • setRpId

      public void setRpId(String rpId)
      The Relying Party ID (domain) for which this credential was registered. WebAuthn credentials are domain-bound - a credential registered for one domain cannot be used on a different domain.