Use Case missing for WebAuthn Registration with Roaming Authenticator (smartphone)

[chunilal kukreja]

Team,

I am developing a use case where when a user access a protected web app using password-less authn flow, user should be able to verify the user-presence using roaming authenticator (smartphone).

Here first how registration flow should work between roaming authenticator & RP?

Second, What should be the mechanism used to connect b/w client on desktop/laptop and roaming authenticator (smartphone).

Regards,

Chuni

.  

[Tim Cappalli]

This is a standard WebAuthn flow using a passkey. 

>> Here first how registration flow should work between roaming authenticator & RP?

The registration flow is explained in detail in the WebAuthn specification: https://w3c.github.io/webauthn/#sctn-sample-registration

>> Second, What should be the mechanism used to connect b/w client on desktop/laptop and roaming authenticator (smartphone).

FIDO Cross-Device Authentication is used for registering and/or using a passkey on another device. There is nothing special that an RP needs to do.