Hi,
I'm trying to run FIDO conformance self validation tests on an authentication server. The server is using webauthn4j library for attestation validations at registration ceremony.
We've been using an adapter to perform communications between the compliance tool and the authentication server. When running tests, we submit this adapter url to the conformance tool.
I've submitted the adapter url to
https://mds3.certinfra.fidoalliance.org/ and obtained 5 mds endpoints. In the server implementation, a list of fidoMDSMetadataBLOBProviders has been created for the obtained urls. When they are performing metadata cert validations, I'm getting "invalid cert path" exception for some url's and exception with the description "MetadataBLOB signature is invalid" for some url's. Some attestation tests are failing due to this issue.
I can't figure out what's happening here. Only thing I did was obtaining the mds endpoints by submitting the adapter url and provide them along with the root certificate to the server implementation.
Any idea on the issue or what I'm doing wrong?
Thanks in advance.
Regards,
Thamindu