{"id":773,"date":"2022-06-24T23:32:00","date_gmt":"2022-06-24T14:32:00","guid":{"rendered":"https:\/\/blog.srytk.com\/aquei\/?p=773"},"modified":"2022-06-24T23:32:02","modified_gmt":"2022-06-24T14:32:02","slug":"coreserver%e4%b8%8a%e3%81%aewordpress%e3%81%a7wp-webauthn%e3%82%92%e4%bd%bf%e3%81%86","status":"publish","type":"post","link":"https:\/\/blog.srytk.com\/aquei\/773.html","title":{"rendered":"COREServer\u4e0a\u306eWordPress\u3067WP-WebAuthn\u3092\u4f7f\u3046"},"content":{"rendered":"\n<p>\u3053\u306eWordPress\u30d6\u30ed\u30b0\u306f<a href=\"https:\/\/www.coreserver.jp\">Coreserver<\/a>\u3067\u30db\u30b9\u30c6\u30a3\u30f3\u30b0\u3057\u3066\u3044\u308b\u3002\u30d6\u30ed\u30b0\u306e\u30a2\u30ab\u30a6\u30f3\u30c8\u304c\u4e57\u3063\u53d6\u3089\u308c\u308b\u3068\u305d\u308c\u306a\u308a\u306b\u56f0\u308b\u306e\u3067\u3001\u300c<a href=\"https:\/\/ja.wordpress.org\/plugins\/two-factor\/\">Two-Factor<\/a>\u300d\u3068\u3044\u3046\u30d7\u30e9\u30b0\u30a4\u30f3\u3067\uff12\u8981\u7d20\u8a8d\u8a3c\u3057\u3066\u3044\u305f\u3002<\/p>\n\n\n\n<p>\u305f\u3060\u3001\u73e0\u306b\u3057\u304b\u30ed\u30b0\u30a4\u30f3\u3057\u306a\u3044\u306e\u3067\u3001\u6bce\u56de\u30ef\u30f3\u30bf\u30a4\u30e0\u30d1\u30b9\u30ef\u30fc\u30c9\u3092\u5165\u529b\u3059\u308b\u306e\u304c\u3068\u3066\u3082\u624b\u9593\u3060\u3063\u305f\u3002\u307b\u3093\u3068\u306b\u9762\u5012\u81ed\u3044\u3002\u30ef\u30f3\u30bf\u30a4\u30e0\u30d1\u30b9\u30ef\u30fc\u30c9\u306f\u6ec5\u3073\u308b\u3079\u304d\u306a\u3093\u3058\u3083\u306a\u3044\u304b\u3068\u601d\u3046\u3088\u3046\u306b\u306a\u3063\u305f\u3050\u3089\u3044\u3060\u3002<\/p>\n\n\n\n<p>\u305d\u3053\u3067\u524d\u306b<a href=\"https:\/\/developer.mozilla.org\/ja\/docs\/Web\/API\/Web_Authentication_API\">WebAuthn<\/a>\u3092\u4f7f\u3063\u3066\u30d1\u30b9\u30ef\u30fc\u30c9\u30ec\u30b9\u30ed\u30b0\u30a4\u30f3\u51fa\u6765\u306a\u3044\u304b\u3068\u8a66\u3057\u305f\u3053\u3068\u304c\u3042\u3063\u305f\u3002\u30e1\u30b8\u30e3\u30fc\u306a\u30d7\u30e9\u30b0\u30a4\u30f3\u306f\u300c<a href=\"https:\/\/ja.wordpress.org\/plugins\/wp-webauthn\/\">WP-WebAuthn<\/a>\u300d\u3068\u3044\u3046\u3084\u3064\u3089\u3057\u3044\u3002\u3068\u3053\u308d\u304c\u3001\u305d\u306e\u6642\u306f\u3046\u307e\u304f\u52d5\u304b\u306a\u304b\u3063\u305f\u3002WP-WebAuthn\u306f<a href=\"https:\/\/www.php.net\/manual\/ja\/book.gmp.php\">gmp<\/a>\u3068\u3044\u3046PHP\u306e\u30a8\u30af\u30b9\u30c6\u30f3\u30b7\u30e7\u30f3\u3092\u5185\u90e8\u3067\u4f7f\u3063\u3066\u3044\u308b\u306e\u3060\u304c\u3001\u305d\u306e\u6642\u306ecoreserver\u306ePHP\u3067\u306fgmp\u304c\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3055\u308c\u3066\u3044\u306a\u304b\u3063\u305f\u3002\u5171\u6709\u30ec\u30f3\u30bf\u30eb\u30b5\u30fc\u30d0\u30fc\u3067\u3042\u308b\u4ee5\u4e0a\u3001\u8ae6\u3081\u308b\u3057\u304b\u306a\u304b\u3063\u305f\u3002\u8f9b\u3044\u3002<\/p>\n\n\n\n<p>\u3068\u3053\u308d\u304c\u3001<a href=\"https:\/\/blog.srytk.com\/aquei\/770.html\">\u6700\u8fd1\u30e1\u30f3\u30c6\u30ca\u30f3\u30b9\u304c\u5165\u3063\u3066<\/a>\u3069\u3046\u3084\u3089gmp\u304c\u4f7f\u3048\u308b\u3088\u3046\u306b\u306a\u3063\u305f\u3088\u3046\u3060\u3002\u3044\u3084\u3001\u3082\u3057\u304b\u3057\u305f\u3089\u524d\u304b\u3089\u4f7f\u3048\u3066\u305f\u306e\u304b\u3082\u3057\u308c\u306a\u3044\u3051\u3069\u3002\u559c\u3073\u52c7\u3093\u3067\u65e9\u901fWP-WebAuthn\u3092\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3057\u305f\u3089\u3001\u4eca\u5ea6\u306f\u30d6\u30e9\u30a6\u30b6\u304b\u3089\u516c\u958b\u9375\u304c\u767b\u9332\u3067\u304d\u306a\u3044\u3002\u3053\u306e\u30d7\u30e9\u30b0\u30a4\u30f3\u306f\u30ed\u30b0\u3092\u4fdd\u5b58\u3067\u304d\u308b\u306e\u3067\u30ed\u30b0\u3092\u78ba\u8a8d\u3057\u3066\u307f\u308b\u3068<a href=\"https:\/\/www.php.net\/manual\/ja\/intro.sodium.php\">sodium\u3068\u3044\u3046PHP\u306e\u30a8\u30af\u30b9\u30c6\u30f3\u30b7\u30e7\u30f3<\/a>\u304c\u7121\u3044\u304b\u3089\u516c\u958b\u9375\u306e\u691c\u8a3c\u306b\u5931\u6557\u3057\u305f\u307f\u305f\u3044\u306a\u30e1\u30c3\u30bb\u30fc\u30b8\u304c\u66f8\u3044\u3066\u3042\u3063\u305f\u3002\u3044\u3084\u3001\u307e\u305f\u3067\u3059\u304b\u30fb\u30fb\u30fb\u3002\u306a\u3093\u304b<a href=\"https:\/\/www.php.net\/manual\/ja\/sodium.installation.php\">PHP 7.2\u4ee5\u4e0a\u3067\u30d0\u30f3\u30c9\u30eb\u3055\u308c\u3066\u3044\u308b<\/a>\u3068\u66f8\u3044\u3066\u3042\u308b\u304c\u3001CoreServer\u306ePHP7.2\u306b\u306f\u306a\u304b\u3063\u305f\u3002\u8f9b\u3044\u3002\u3061\u306a\u307f\u306bWP-WebAuthn\u306e\u30d7\u30e9\u30b0\u30a4\u30f3\u30da\u30fc\u30b8\u306b\u306fsodium\u304c\u5fc5\u8981\u3068\u304b\u4e00\u8a00\u3082\u66f8\u3044\u3066\u306a\u304b\u3063\u305f\u3002<\/p>\n\n\n\n<p>\u8ae6\u3081\u304d\u308c\u305a\u306bphp.ini\u3092\u898b\u305f\u308a\u3057\u3066\u8272\u3005\u8a66\u884c\u932f\u8aa4\u3057\u3066\u3044\u308b\u3068\u3001<strong>\u30b3\u30a2\u30b5\u30fc\u30d0\u30fc\u306ePHP 8.1\u306b\u306fsodium\u304c\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3055\u308c\u3066\u3044\u308b\u3053\u3068\u304c\u308f\u304b\u3063\u305f<\/strong>\u3002\u306a\u305c7.2\u306b\u306f\u306a\u304f\u30668.1\u306b\u306f\u3042\u308b\u306e\u304b\u3001\u3055\u3063\u3071\u308a\u7406\u7531\u306f\u5206\u304b\u3089\u306a\u3044\u304c\u3001\u4e8b\u5b9f\u3068\u3057\u3066\u305d\u3046\u3060\u3063\u305f\u3002\u3082\u3057\u304b\u3057\u305f\u30898.0\u3068\u304b\u306b\u3082sodium\u304c\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3055\u308c\u3066\u3044\u308b\u304b\u3082\u3057\u308c\u306a\u3044\u3051\u3069\u3001\u9762\u5012\u304f\u3055\u304f\u3066\u8abf\u3079\u3066\u306a\u3044\u3002<\/p>\n\n\n\n<p>\u7d50\u5c40\u3001CoreServer\u306e\u7ba1\u7406\u753b\u9762\u304b\u3089Blog\u7528\u30c9\u30e1\u30a4\u30f3\u306ePHP\u3092PHP81\u306b\u6307\u5b9a\u3059\u308b\u3053\u3068\u3067\u7121\u4e8bWP-WebAuthn\u304c\u4f7f\u3048\u308b\u69d8\u306b\u306a\u3063\u305f\u3002\u3053\u3093\u306b\u3061\u306f\u3001\u30d1\u30b9\u30ef\u30fc\u30c9\u30ec\u30b9\u306a\u4e16\u754c\u3002<\/p>\n\n\n\n<p>\u306a\u304a\u3001\u8a66\u884c\u932f\u8aa4\u306e\u904e\u7a0b\u3067Windows\u306b\u30d6\u30ed\u30b0\u30c9\u30e1\u30a4\u30f3\u7528\u306e\u65e2\u306b\u30b4\u30df\u3068\u306a\u3063\u305f\u79d8\u5bc6\u9375\u304c\u3044\u304f\u3064\u304b\u767b\u9332\u3055\u308c\u3066\u3057\u307e\u3063\u305f\u3002\u3053\u308c\u3092\u524a\u9664\u3057\u306a\u3051\u308c\u3070\u3001\u30ed\u30b0\u30a4\u30f3\u6642\u30a2\u30ab\u30a6\u30f3\u30c8\u306e\u9078\u629e\u3067\u6df7\u4e71\u304c\u751f\u3058\u3066\u3057\u307e\u3046\u3002<\/p>\n\n\n\n<p>Windows\u4e0a\u306eWebAuthn\u306e\u8cc7\u683c\u60c5\u5831(credential)\u3001\u3064\u307e\u308a\u30b5\u30a4\u30c8\u6bce\u306b\u751f\u6210\u3055\u308c\u305f\u79d8\u5bc6\u9375\u306e\u524a\u9664\u65b9\u6cd5\u306f&#8221;<a href=\"https:\/\/superuser.com\/questions\/1527685\/how-to-remove-webauthn-credentials-from-onboard-tpm-on-win10-device\">How to remove WebAuthN credentials from onboard-TPM on Win10 device?<\/a>&#8220;\u306b\u3042\u3063\u305f\u3002\u4eca\u306e\u3068\u3053\u308dWindows\u3067\u306f\u30b3\u30de\u30f3\u30c9\u30e9\u30a4\u30f3\u304b\u3089\u64cd\u4f5c\u3059\u308b\u3057\u304b\u306a\u3044\u3089\u3057\u3044\u3002<\/p>\n\n\n\n<pre><code>certutil -csp NGC -key<\/code><\/pre>\n\n\n\n<p>\u3053\u306e\u30b3\u30de\u30f3\u30c9\u3092cmd.exe\u304bpowershell\u306b\u6253\u3061\u8fbc\u3080\u3068Windows\u306b\u767b\u9332\u3055\u308c\u3066\u3044\u308bFIDO\u306e\u9375\u306e\u540d\u524d\u4e00\u89a7\u304c\u8868\u793a\u3055\u308c\u308b\u3002\u9375\u306e\u540d\u524d\u306f\u4e00\u898b\u3059\u308b\u3068\u610f\u5473\u4e0d\u660e\u306a\u6587\u5b57\u5217\u3060\u304c\u3001<code>&lt;sid&gt;\/&lt;guid&gt;\/FIDO_AUTHENTICATOR\/\/&lt;rpIdHash&gt;_&lt;user id&gt;<\/code>\u3068\u306a\u3063\u3066\u3044\u308b\u3089\u3057\u3044\u3002\u3053\u3053\u3067\u91cd\u8981\u306a\u306e\u306frpIdHash\u3060\u3002rp\u3068\u306fRelying Party\u306e\u3053\u3068\u3067\u3001\u516c\u958b\u9375\u3092\u767b\u9332\u3057\u305f\u30b5\u30fc\u30d3\u30b9\u3001\u3064\u307e\u308a\u4eca\u56de\u3060\u3068WP-WebAuthn\u306e\u3053\u3068\u3060\u3068\u601d\u3046\u3002<a href=\"https:\/\/developer.mozilla.org\/ja\/docs\/Web\/API\/PublicKeyCredentialRequestOptions#publickeycredentialrequestoptions.rpid_en-us\">rpId\u306f\u901a\u5e38\u3001\u30aa\u30ea\u30b8\u30f3\u306e\u30c9\u30e1\u30a4\u30f3\u304c\u4f7f\u308f\u308c\u308b<\/a>\u3088\u3046\u3060\u3002\u305d\u3057\u3066\u3001<a href=\"https:\/\/techblog.yahoo.co.jp\/advent-calendar-2018\/webauthn\/#attestationobject%E3%81%AB%E3%81%A4%E3%81%84%E3%81%A6\">\u3053\u306e\u30cf\u30c3\u30b7\u30e5\u306fSHA256\u306e\u3088\u3046\u3060<\/a>\u3002\u3086\u3048\u306b\u3001\u300cblog.srytk.com\u300d\u306eSHA256\u30cf\u30c3\u30b7\u30e5\u300c8c9834caf5ae03c6c20afeea4299cbeee6d1cb74859ad72957dad9daa43cdf4d\u300d\u304c\u3053\u306e\u30d6\u30ed\u30b0\u3067\u306erpIdHash\u306b\u306a\u308b\u3002\u306a\u306e\u3067\u3053\u306e\u30cf\u30c3\u30b7\u30e5\u304crpIdHash\u306b\u306a\u3063\u3066\u3044\u308b\u9375\u306e\u540d\u524d\u304c\u8a72\u5f53\u3059\u308b\u9375\u3068\u306a\u308b\u3002<\/p>\n\n\n\n<p>\u8a72\u5f53\u3059\u308b\u9375\u306e\u540d\u524d\u304c\u5224\u660e\u3057\u305f\u3068\u3053\u308d\u3067\u3001\u7ba1\u7406\u8005\u6a29\u9650\u3067\u7acb\u3061\u4e0a\u3052\u305fcmd.exe\u304bpowershell\u306b<\/p>\n\n\n\n<pre><code>certutil -csp NGC -delkey \u3053\u3053\u306b\u5224\u660e\u3057\u305f\u9375\u306e\u540d\u524d<\/code><\/pre>\n\n\n\n<p>\u3068\u5165\u529b\u3059\u308b\u3068\u7121\u4e8b\u3001\u79d8\u5bc6\u9375\u304c\u524a\u9664\u3055\u308c\u305f\u3002\u3042\u3068\u306f\u6539\u3081\u3066WebAuthn\u306e\u9375\u3092\u767b\u9332\u3057\u76f4\u3059\u3060\u3051\u3060\u3002<\/p>\n\n\n\n<p>\u306f\u3063\u304d\u308a\u8a00\u3063\u3066\u7169\u96d1\u3060\u3057\u3001\u8aa4\u3063\u3066\u5225\u306e\u9375\u3092\u524a\u9664\u3059\u308b\u53ef\u80fd\u6027\u3082\u9ad8\u3044\u3002\u9593\u9055\u3063\u305f\u9375\u3092\u524a\u9664\u3059\u308b\u3068\u3001\u72b6\u6cc1\u306b\u3088\u3063\u3066\u306f\u305d\u306e\u9375\u3092\u4f7f\u3063\u3066\u3044\u308b\u30a2\u30ab\u30a6\u30f3\u30c8\u306b<strong>\u4e8c\u5ea6\u3068\u30ed\u30b0\u30a4\u30f3\u3067\u304d\u306a\u304f\u306a\u308b\u5834\u5408\u3059\u3089\u3042\u308b\u306e\u3067\u6ce8\u610f\u304c\u5fc5\u8981<\/strong>\u3060\u3002\u5c11\u306a\u304f\u3068\u3082\u30d1\u30b9\u30ef\u30fc\u30c9\u30de\u30cd\u30fc\u30b8\u30e3\u30fc\u306e\u3088\u3046\u306a\u7ba1\u7406\u65b9\u6cd5\u304c\u63d0\u4f9b\u3055\u308c\u306a\u3044\u9650\u308aWebAuthn\u306f\u666e\u53ca\u3057\u306b\u304f\u3044\u306e\u304b\u3082\u2026\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u3053\u306eWordPress\u30d6\u30ed\u30b0\u306fCoreserver\u3067\u30db\u30b9\u30c6\u30a3\u30f3\u30b0\u3057\u3066\u3044\u308b\u3002\u30d6\u30ed\u30b0\u306e\u30a2\u30ab\u30a6\u30f3\u30c8\u304c\u4e57\u3063\u53d6\u3089\u308c\u308b\u3068\u305d\u308c\u306a\u308a\u306b\u56f0\u308b\u306e\u3067\u3001\u300cTwo-Factor\u300d\u3068\u3044\u3046\u30d7\u30e9\u30b0\u30a4\u30f3\u3067\uff12\u8981\u7d20\u8a8d\u8a3c\u3057\u3066\u3044\u305f\u3002 \u305f\u3060\u3001\u73e0\u306b\u3057\u304b\u30ed\u30b0\u30a4\u30f3\u3057\u306a\u3044 [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"activitypub_content_warning":"","activitypub_content_visibility":"local","activitypub_max_image_attachments":5,"footnotes":""},"categories":[2],"tags":[44,270,3],"class_list":["post-773","post","type-post","status-publish","format-standard","hentry","category-tech","tag-coreserver","tag-webauthn","tag-wordpress"],"_links":{"self":[{"href":"https:\/\/blog.srytk.com\/aquei\/wp-json\/wp\/v2\/posts\/773","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.srytk.com\/aquei\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.srytk.com\/aquei\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.srytk.com\/aquei\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.srytk.com\/aquei\/wp-json\/wp\/v2\/comments?post=773"}],"version-history":[{"count":2,"href":"https:\/\/blog.srytk.com\/aquei\/wp-json\/wp\/v2\/posts\/773\/revisions"}],"predecessor-version":[{"id":775,"href":"https:\/\/blog.srytk.com\/aquei\/wp-json\/wp\/v2\/posts\/773\/revisions\/775"}],"wp:attachment":[{"href":"https:\/\/blog.srytk.com\/aquei\/wp-json\/wp\/v2\/media?parent=773"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.srytk.com\/aquei\/wp-json\/wp\/v2\/categories?post=773"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.srytk.com\/aquei\/wp-json\/wp\/v2\/tags?post=773"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}