search

SDK API Reference

This page provides a comprehensive reference of all SDK methods available across iOS, Android, Desktop (Java), and Web (JavaScript) platforms. For detailed usage examples and integration guides, see the platform-specific SDK pages.

hashtag
iOS SDK (Swift)

hashtag
Client-Direct Methods

hashtag
registerUser

Registers a new FIDO2 credential with the FIDO2 server.

public func registerUser(
    fidoServer: ArculusFidoServer,
    pin: String,
    username: String,
    displayName: String,
    relyingParty: String,
    resetDevice: Bool = false,
    registrationInfo: String? = nil
) async -> String

Parameters:

Parameter
Type
Description

fidoServer

ArculusFidoServer

Server configuration object

pin

String

6+ digit PIN for the card

username

String

User identifier (e.g., email)

displayName

String

Human-readable name

relyingParty

String

Relying party ID (domain)

resetDevice

Bool

If true, resets card and sets PIN

registrationInfo

String?

Optional device metadata JSON

Returns: JSON string with status and response details.

hashtag
authenticateUser

Authenticates a user using an existing FIDO2 credential.

Parameters:

Parameter
Type
Description

fidoServer

ArculusFidoServer

Server configuration object

pin

String

Card PIN

username

String

User identifier

displayName

String

Human-readable name

relyingParty

String

Relying party ID (must match registration)

Returns: JSON string with status and response details.

hashtag
Backend-Proxied Methods

hashtag
registerCardOnly

Performs card registration only (no server communication). Used in backend-proxied deployments.

Parameters:

Parameter
Type
Description

pin

String

6+ digit PIN for the card

username

String

User identifier (e.g., email)

displayName

String

Human-readable name

rpId

String

Relying party ID (domain)

challenge

String

Base64-encoded challenge from backend's /register/begin response

origin

String

Origin URL for clientDataJSON (typically FIDO2 server URL)

Returns: JSON string containing card response data to send to backend.

Note: Unlike authenticateCardOnly(), this method takes challenge and origin directly rather than an optionsResponse object.

hashtag
authenticateCardOnly

Performs card authentication only (no server communication). Used in backend-proxied deployments.

Parameters:

Parameter
Type
Description

pin

String

Card PIN

username

String

User identifier

rpId

String

Relying party ID (must match registration)

optionsResponse

ArculusFidoOptionsAuthorizationResponse

Pre-constructed options response containing challenge from backend

Returns: JSON string containing card response data to send to backend.

Note: Unlike registerCardOnly(), this method uses an optionsResponse object that must be constructed from the backend's response.

hashtag
PIN Management Methods

hashtag
setPin

Resets the card and sets a new PIN. Warning: This erases all credentials on the card.

Parameters:

Parameter
Type
Description

pin

String

New 6+ digit PIN

Returns: JSON string with status and response details.

hashtag
changePin

Changes the PIN while preserving all credentials on the card.

Parameters:

Parameter
Type
Description

oldPin

String

Current PIN

newPin

String

New 6+ digit PIN

Returns: JSON string with status and response details.

hashtag
Helper Methods

hashtag
deleteCredentialByCredentialId

Deletes a credential from the card by credential ID. Used for rollback operations.

Parameters:

Parameter
Type
Description

pin

String

Card PIN

credentialId

String

Credential ID to delete

Returns: JSON string with status and response details.

hashtag
Android SDK (Java)

hashtag
Client-Direct Methods

hashtag
register

Registers a new FIDO2 credential with the FIDO2 server.

Parameters:

Parameter
Type
Description

fidoServer

ArculusFidoServer

Server configuration object

pin

String

6+ digit PIN for the card

username

String

User identifier (e.g., email)

displayname

String

Human-readable name

relyingParty

String

Relying party ID (domain)

resetDevice

boolean

If true, resets card and sets PIN

registrationInfo

String

Optional device metadata JSON

Callback: Results are returned via ArculusFidoResultCallback.registerResult(String response).

hashtag
authenticate

Authenticates a user using an existing FIDO2 credential.

Parameters:

Parameter
Type
Description

fidoServer

ArculusFidoServer

Server configuration object

pin

String

Card PIN

username

String

User identifier

displayName

String

Human-readable name

relyingParty

String

Relying party ID (must match registration)

Callback: Results are returned via ArculusFidoResultCallback.authenticateResult(String response).

hashtag
Backend-Proxied Methods

hashtag
registerCardOnly

Performs card registration only (no server communication). Used in backend-proxied deployments.

Parameters:

Parameter
Type
Description

pin

String

6+ digit PIN for the card

username

String

User identifier (e.g., email)

displayName

String

Human-readable name

rpId

String

Relying party ID (domain)

challenge

String

Base64-encoded challenge from backend's /register/begin response

origin

String

Origin URL for clientDataJSON (typically FIDO2 server URL)

Returns: JSON string containing card response data to send to backend.

Note: Unlike authenticateCardOnly(), this method takes challenge and origin directly rather than an optionsResponse object.

hashtag
authenticateCardOnly

Performs card authentication only (no server communication). Used in backend-proxied deployments.

Parameters:

Parameter
Type
Description

pin

String

Card PIN

username

String

User identifier

rpId

String

Relying party ID (must match registration)

optionsResponse

ArculusFidoOptionsAuthorizationResponse

Pre-constructed options response containing challenge from backend

Returns: JSON string containing card response data to send to backend.

Note: Unlike registerCardOnly(), this method uses an optionsResponse object that must be constructed from the backend's response.

hashtag
PIN Management Methods

hashtag
setPin

Resets the card and sets a new PIN. Warning: This erases all credentials on the card.

Parameters:

Parameter
Type
Description

pin

String

New 6+ digit PIN

Callback: Results are returned via ArculusFidoResultCallback.setPinResult(String response).

hashtag
changePin

Changes the PIN while preserving all credentials on the card.

Parameters:

Parameter
Type
Description

oldPin

String

Current PIN

newPin

String

New 6+ digit PIN

Callback: Results are returned via ArculusFidoResultCallback.changePinResult(String response).

hashtag
Helper Methods

hashtag
deleteCredentialByCredentialId

Deletes a credential from the card by credential ID. Used for rollback operations.

Parameters:

Parameter
Type
Description

pin

String

Card PIN

credentialId

String

Credential ID to delete

Returns: JSON string with status and response details.

hashtag
Desktop SDK (Java)

hashtag
Client-Direct Methods

hashtag
register

Registers a new FIDO2 credential with the FIDO2 server.

Parameters:

Parameter
Type
Description

fidoServer

ArculusFidoServer

Server configuration object

pin

String

6+ digit PIN for the card

username

String

User identifier (e.g., email)

displayName

String

Human-readable name

relyingParty

String

Relying party ID (domain)

resetDevice

boolean

If true, resets card and sets PIN

registrationInfo

String

Optional device metadata JSON

Returns: JSON string with status and response details.

hashtag
authenticate

Authenticates a user using an existing FIDO2 credential.

Parameters:

Parameter
Type
Description

fidoServer

ArculusFidoServer

Server configuration object

pin

String

Card PIN

username

String

User identifier

displayName

String

Human-readable name

relyingParty

String

Relying party ID (must match registration)

Returns: JSON string with status and response details.

hashtag
Backend-Proxied Methods

hashtag
registerCardOnly

Performs card registration only (no server communication). Used in backend-proxied deployments.

Parameters:

Parameter
Type
Description

pin

String

6+ digit PIN for the card

username

String

User identifier (e.g., email)

displayName

String

Human-readable name

relyingParty

String

Relying party ID (domain)

challenge

String

Base64-encoded challenge from backend's /register/begin response

origin

String

Origin URL for clientDataJSON (typically FIDO2 server URL)

Returns: JSON string containing card response data to send to backend.

Throws: ArculusFidoException if card operation fails.

Note: Unlike authenticateCardOnly(), this method takes challenge and origin directly rather than an optionsResponse object.

hashtag
authenticateCardOnly

Performs card authentication only (no server communication). Used in backend-proxied deployments.

Parameters:

Parameter
Type
Description

pin

String

Card PIN

username

String

User identifier

relyingParty

String

Relying party ID (must match registration)

optionsResponse

ArculusFidoOptionsAuthorizationResponse

Pre-constructed options response containing challenge from backend

Returns: AuthenticateCardSignResponse object containing id, rawId, authdataBase64, and signatureBase64.

Throws: ArculusFidoException if card operation fails.

Note: Unlike registerCardOnly(), this method uses an optionsResponse object that must be constructed from the backend's response.

hashtag
PIN Management Methods

hashtag
setPin

Resets the card and sets a new PIN. Warning: This erases all credentials on the card.

Parameters:

Parameter
Type
Description

pin

String

New 6+ digit PIN

Returns: JSON string with status and response details.

hashtag
changePin

Changes the PIN while preserving all credentials on the card.

Parameters:

Parameter
Type
Description

oldPin

String

Current PIN

newPin

String

New 6+ digit PIN

Returns: JSON string with status and response details.

hashtag
Reader Management Methods

hashtag
listReaders

Lists all available PC/SC-compatible NFC readers.

Returns: List of reader names.

hashtag
selectReader

Selects a specific reader by name.

Parameters:

Parameter
Type
Description

readerName

String

Name of the reader to use

hashtag
Web SDK (JavaScript)

hashtag
Registration Method

hashtag
RegisterUser

Registers a new FIDO2 credential with the FIDO2 server.

Parameters:

Parameter
Type
Description

username

string

Unique username (typically email)

displayname

string

Display name shown on authenticator

keypair

object|string

Optional device metadata

servlet

string

Server URL prefix (empty for same origin)

parms

string

Additional query parameters

addHeaders

object

Additional HTTP headers (e.g., {"X-ArculusFido-RelyingParty": "example.com"})

Returns: Promise resolving to response object with status, result/error, and statuscode fields.

Note: The SDK parameter is displayname (lowercase 'n'), but JavaScript is case-insensitive for parameter names, so displayName also works.

hashtag
Authentication Method

hashtag
AuthenticateUser

Authenticates a user using an existing FIDO2 credential.

Parameters:

Parameter
Type
Description

username

string

Username to authenticate

servlet

string

Server URL prefix (empty for same origin)

parms

string

Additional query parameters

addHeaders

object

Additional HTTP headers (e.g., {"X-ArculusFido-RelyingParty": "example.com"})

Returns: Promise resolving to response object with status, result, jwtToken (if present), and statuscode fields.

hashtag
ArculusFidoServer Class (All Platforms)

The ArculusFidoServer class is used to configure FIDO2 server connection details for client-direct deployments.

hashtag
iOS (Swift)

Properties:

Property
Type
Description

registrationBeginEndpoint

String

Registration options endpoint

registrationCompleteEndpoint

String

Registration result endpoint

authorizationBeginEndpoint

String

Authentication options endpoint

authorizationCompleteEndpoint

String

Authentication result endpoint

hashtag
Android/Desktop (Java)

Methods:

Method
Description

setBeginRegistrationPath(path, params)

Set registration options endpoint

setCompleteRegistrationPath(path, params)

Set registration result endpoint

setBeginAuthenticatePath(path, params)

Set authentication options endpoint

setCompleteAuthenticatePath(path, params)

Set authentication result endpoint

setRequestProperty(key, value)

Add custom HTTP header

setDeviceinfo(json)

Set device metadata for registration

hashtag
Response Format

All SDK methods return responses in JSON format:

Success Response:

Error Response:

For detailed error codes, see 2.7 Error Codes.

PreviousDevelopment OverviewNextCLI Testing Tool

Last updated