是否可以通过休息工具在本地进行测试.我已经创建了后端来生成挑战等以注册新凭据，但是如果没有 WebAuthn 响应，如果我创建了从 WebAuthn 消化响应对象的正确方法，我将不知所措.

Is it possible to test this locally via a rest tool. I've created the backend to generate the challenge etc for Registration of new creds, but without the WebAuthn response I'm at a loss if I have created the correct way to digest the response object from WebAuthn.

推荐答案

如果你正在编写一个 FIDO2/WebAuthn 库，FIDO 联盟确实提供了一个应该能够生成测试的测试套件:FIDO 联盟 - 一致性自我验证测试(然后点击FIDO2 测试工具"中的注册"" 部分).

If you're writing a FIDO2 / WebAuthn library, the FIDO Alliance does actually provide with a test suite that should be capable of generating tests: FIDO Alliance - Conformance Self‐Validation Testing (then clic on "registration" in the "FIDO2 Test Tools" section).

请注意，同一 FIDO 联盟提出了一种通过 REST API 公开 FIDO2 的非强制性标准方式:传输绑定配置文件

Note that the same FIDO Alliance proposes a non-mandatory standard way of exposing FIDO2 through a REST API: Transport Binding Profile