booth 0.0.1 → 0.0.2

data/app/assets/config/booth_manifest.js

@@ -1,15 +0,0 @@
-// This file was generated using a rake task
-
-//= link booth/browsers/chrome.svg
-//= link booth/browsers/edge.svg
-//= link booth/browsers/firefox.svg
-//= link booth/browsers/opera.svg
-//= link booth/browsers/safari.svg
-//= link booth/browsers/internet_explorer.svg
-//= link booth/browsers/unknown.svg
-
-//= link booth/platforms/android.svg
-//= link booth/platforms/apple.svg
-//= link booth/platforms/linux.svg
-//= link booth/platforms/windows.svg
-//= link booth/platforms/unknown.svg

data/app/assets/images/booth/browsers/internet_explorer.svg

@@ -1 +0,0 @@
-<svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" viewBox="0 -2 313 305"><defs><radialGradient xlink:href="#a" id="e" cx="173.96" cy="149.58" r="161.64" gradientTransform="matrix(0 1 -.8 0 293.62 -24.38)"><stop offset=".55" stop-color="#99fbff"/><stop offset=".61" stop-color="#92f6fe"/><stop offset=".7" stop-color="#80e7fa"/><stop offset=".8" stop-color="#62cff3"/><stop offset=".91" stop-color="#38adea"/><stop offset="1" stop-color="#0f8ce1"/></radialGradient><radialGradient xlink:href="#a" id="o" cx="62.968" cy="220.74" r="48.326" gradientTransform="matrix(3.4175 -2.0751 1.0888 1.7931 -389.83 -12.808)"><stop offset="0" stop-color="#fcf69f" stop-opacity="0"/><stop offset=".5" stop-color="#fcf69f" stop-opacity="0"/><stop offset="1" stop-color="#fcf69f" stop-opacity=".77"/></radialGradient><radialGradient xlink:href="#a" id="k" cx="100.32" cy="148.8" r="138.81" gradientTransform="matrix(.9302 -.83744 .32785 .36414 17.035 155.03)"><stop offset="0" stop-color="#f8b633" stop-opacity="0"/><stop offset=".83" stop-color="#fabc3f" stop-opacity="0"/><stop offset=".92" stop-color="#fdf8c3" stop-opacity=".98"/><stop offset=".96" stop-color="#fdf8c3" stop-opacity=".98"/><stop offset="1" stop-color="#fdf6b0" stop-opacity=".98"/></radialGradient><radialGradient xlink:href="#a" id="p" cx="138.27" cy="245.02" r="84.078" gradientTransform="matrix(1.3738 -1.4223 .47637 .46011 -146.79 229.99)"><stop offset="0" stop-color="#3d3a04" stop-opacity="0"/><stop offset=".924" stop-color="#454205" stop-opacity="0"/><stop offset="1" stop-color="#4e4a06" stop-opacity=".27"/></radialGradient><radialGradient xlink:href="#a" id="n" cx="92.079" cy="70.362" r="64.365" gradientTransform="matrix(1.82 .03223 -.03882 2.1923 -73.94 -85.114)"><stop offset="0" stop-color="#a0f5fc"/><stop offset="1" stop-color="#a0f3fc" stop-opacity="0"/></radialGradient><radialGradient xlink:href="#a" id="b" cx="136.1" cy="93.932" r="157.94" gradientTransform="matrix(.67825 -.45732 .55906 .82913 -15.248 63.774)"><stop offset="0" stop-color="#fcfcfc"/><stop offset=".681" stop-color="#fff"/><stop offset="1"/></radialGradient><radialGradient xlink:href="#a" id="h" cx="160.08" cy="156.25" r="138.81" gradientTransform="matrix(1.0704 -1.0538 .44083 .44775 -75.068 245.37)"><stop offset="0" stop-opacity="0"/><stop offset=".82" stop-color="#fdbb36" stop-opacity=".94"/><stop offset=".89" stop-color="#fbd44d" stop-opacity=".92"/><stop offset="1" stop-color="#fbcf39" stop-opacity=".88"/></radialGradient><radialGradient xlink:href="#a" id="i" cx="180.99" cy="167.23" r="138.81" gradientTransform="matrix(1.1348 -1.1322 .52964 .53081 -114.38 274.24)"><stop offset="0" stop-color="#f7ab32" stop-opacity="0"/><stop offset=".76" stop-color="#f7b535" stop-opacity=".92"/><stop offset=".84" stop-color="#f7b33f" stop-opacity=".96"/><stop offset=".93" stop-color="#f7e232"/><stop offset="1" stop-color="#f5ec80"/></radialGradient><radialGradient xlink:href="#a" id="m" cx="-2.5" cy="136.62" r="138.81" gradientTransform="matrix(.85784 -.85837 .28831 .28814 123.22 99.466)"><stop offset="0"/><stop offset=".94" stop-color="#fee259" stop-opacity=".5"/><stop offset="1" stop-color="#fff045" stop-opacity="0"/></radialGradient><radialGradient xlink:href="#a" id="c" cx="222.81" cy="221.24" r="156.35" gradientTransform="matrix(1.1049 -.66263 .37599 .62704 -95.652 198.56)"><stop offset="0"/><stop offset=".672"/><stop offset="1" stop-color="#fff"/></radialGradient><radialGradient xlink:href="#a" id="d" cx="101.97" cy="109.66" r="158" gradientTransform="matrix(.84189 -.58292 .28064 .4054 -11.053 122.85)"><stop offset="0" stop-color="#fff"/><stop offset=".69" stop-color="#fff"/><stop offset="1"/></radialGradient><mask id="l" maskUnits="userSpaceOnUse"><path fill="url(#b)" fill-rule="evenodd" stroke="#000" d="M.5-12.389h314.89v314.89H.5z"/></mask><mask id="f" maskUnits="userSpaceOnUse"><path fill="url(#c)" fill-rule="evenodd" d="M0-.374h312.71v302.26H0z"/></mask><mask id="j" maskUnits="userSpaceOnUse"><path fill="url(#d)" fill-rule="evenodd" stroke="#000" d="M.5-12.5h315v315H.5z"/></mask><linearGradient id="a" gradientUnits="userSpaceOnUse"/><path id="g" d="M108.75 260.53c-27.7 14.08-50 17.08-61.5 5.6-25-25 7.8-94.8 74.3-161.32S257.86 5.5 282.9 30.52c10.13 10.13 9 28.72-1.14 52q2.1 3.34 4 6.82c13.47-31.15 14.25-57.5-1.46-73.2-28.75-29.12-126.4 4.2-186.67 67.3S-.16 242.8 27.74 271.4c18.14 18.14 51.2 13.87 89.56-6.43q-4.38-2.05-8.55-4.43z"/></defs><path fill="url(#e)" stroke="#1b62a2" stroke-opacity=".878" stroke-width="4.913" d="M226.06 194.2c-10.23 17.2-29.93 28.53-51.3 28.53a56.08 56.08 0 0 1-56.28-56v-2.2H298a125.85 125.85 0 0 0 .77-13.88A124.27 124.27 0 0 0 174.44 25.82c-69.08 0-125.9 55.76-125.9 124.84 0 22.48 6.47 43.56 16.7 61.75 9.15 16.27 21.16 30.23 36.5 40.8 20.22 13.92 45.5 21.58 72 21.58 27.95 0 54.67-8.54 75.7-23.84A122 122 0 0 0 292 194.19zM176.56 79c30.52 0 53.3 24.3 54.13 54.6H118.2c.97-30.3 27.8-54.6 58.37-54.6z" paint-order="stroke markers fill"/><g mask="url(#f)"><use xlink:href="#g" fill="url(#h)"/><path fill="url(#i)" d="M108.75 260.53c-27.7 14.08-50 17.08-61.5 5.6-25-25 7.8-94.8 74.3-161.32S257.86 5.5 282.9 30.52c10.13 10.13 9 28.72-1.14 52q2.1 3.34 4 6.82c13.47-31.15 14.25-57.5-1.46-73.2-28.75-29.12-126.4 4.2-186.67 67.3S-.16 242.8 27.74 271.4c18.14 18.14 51.2 13.87 89.56-6.43q-4.38-2.05-8.55-4.43z" mask="url(#j)" opacity=".93"/><path fill="url(#k)" d="M108.75 260.53c-27.7 14.08-50 17.08-61.5 5.6-25-25 7.8-94.8 74.3-161.32S257.86 5.5 282.9 30.52c10.13 10.13 9 28.72-1.14 52q2.1 3.34 4 6.82c13.47-31.15 14.25-57.5-1.46-73.2-28.75-29.12-126.4 4.2-186.67 67.3S-.16 242.8 27.74 271.4c18.14 18.14 51.2 13.87 89.56-6.43q-4.38-2.05-8.55-4.43z" mask="url(#l)" opacity=".835"/><use xlink:href="#g" fill="url(#m)"/></g><path fill="url(#n)" d="M174.44 27.82c-68.937 0-125.66 55.53-125.89 124.41 13.174-23.455 29.981-46.791 49.086-66.793 23.061-24.144 51.592-43.919 79.645-57.514l-2.836-.105z" transform="translate(0 -2)"/><path fill="url(#o)" d="M46.15 154.56c12.851-24.577 33.552-52.853 50.53-70.16-19.184 16.918-38.242 38.928-50 53.93C4.16 193.01-8.37 240.79 5.33 264.03c11.08 18.8 32.27 23.17 53 18.83-12.4-.08-22.86-3.75-30.6-11.48-18.48-18.97-8.2-67.73 18.4-116.82z" opacity=".877"/><path fill="url(#p)" d="M217.33 35.551c-28.801 13.432-62.699 38.165-95.781 71.258-29.291 29.3-52.032 59.233-66.188 85.697a131.825 131.825 0 0 0 4.354 10.953c6.442-25.294 32.58-54.181 64.28-92.234 1.748-2.1 3.675-5.125 5.817-7.215a59.603 59.603 0 0 1 14.154-13.086c29.88-18.073 54.304-40.563 79.551-52.885a124.255 124.255 0 0 0-6.187-2.488z" transform="translate(0 -2)"/></svg>

data/app/assets/javascripts/booth/all.js

@@ -1,162 +0,0 @@
-/// <reference path='webauthn-json.ts' />
-//= require rails-ujs
-//= require @github/webauthn-json/dist/browser-global/webauthn-json.browser-global
-var Booth;
-(function (Booth) {
-    function reloadSoon() {
-        const seconds = Math.floor(Math.random() * 3) + 5; // 4,5,6 or 7 to avoid request bursts
-        setTimeout(() => {
-            console.debug('Reloading page...');
-            window.location.reload();
-        }, 1000 * seconds);
-    }
-    Booth.reloadSoon = reloadSoon;
-    let Webauth;
-    (function (Webauth) {
-        class Registration {
-            constructor(form, challengeData) {
-                this.form = form;
-                this.challengeData = challengeData;
-                this.call();
-            }
-            call() {
-                console.debug('WebAuthn Registration Ceremony - Initiation Phase Part 2 - START');
-                webauthnJSON.create({ publicKey: this.challengeData }).then((responseData) => {
-                    console.debug(`WebAuthn Registration Ceremony - Initiation Phase Part 2 - SUCCESS - ${JSON.stringify(responseData)}`);
-                    new Verification(this.form, responseData);
-                }).catch((error) => {
-                    console.error(`WebAuthn Registration Ceremony - Verification Phase - ERROR - ${error.name} - ${error.message}`);
-                    if (error.name == 'NotAllowedError') {
-                        // Every webauth registration form needs this localized error message.
-                        alert(this.form.dataset.boothIncompatibleDeviceMessage);
-                    }
-                    else {
-                        alert(error.message);
-                    }
-                });
-            }
-        }
-        Webauth.Registration = Registration;
-        class Authentication {
-            constructor(form, challengeData) {
-                this.form = form;
-                this.challengeData = challengeData;
-                this.call();
-            }
-            call() {
-                console.debug('WebAuthn Authentication Ceremony - Initiation Phase Part 2 - START');
-                webauthnJSON.get({ publicKey: this.challengeData }).then((responseData) => {
-                    console.debug(`WebAuthn Authentication Ceremony - Initiation Phase Part 2 - SUCCESS - ${JSON.stringify(responseData)}`);
-                    new Verification(this.form, responseData);
-                }).catch((error) => {
-                    console.error(`WebAuthn Authentication Ceremony - Verification Phase - ERROR - ${error.name} - ${error.message}`);
-                    if (error.name == 'NotAllowedError') {
-                        // Every webauth authentication form needs this localized error message.
-                        alert(this.form.dataset.boothUnknownDeviceMessage);
-                    }
-                    else {
-                        alert(error.message);
-                    }
-                });
-            }
-        }
-        Webauth.Authentication = Authentication;
-        class Verification {
-            constructor(form, webauth) {
-                this.form = form;
-                this.webauth = webauth;
-                this.call();
-            }
-            call() {
-                console.debug(`WebAuthn Ceremony - Verification Phase - START - ${this.formMethod} ${this.formUrl}`);
-                const options = {
-                    body: JSON.stringify(this.webauth),
-                    method: this.formMethod,
-                    credentials: 'same-origin',
-                    // Rails should not redirect us anywhere when making API calls.
-                    // But in order to avoid mistakes let's be sure and never follow anywhere.
-                    redirect: 'manual',
-                    headers: {
-                        'Content-type': 'application/json',
-                        'Accept': 'application/json',
-                        'X-CSRF-Token': this.csrfToken
-                    }
-                };
-                fetch(this.formUrl, options)
-                    .then((response) => {
-                    // Conventionally the server returns 201 on successful WebAuth verification.
-                    // That makes it easier to detect a mistake (most other server responses will usually return 200).
-                    if (response.status == 201) {
-                        console.debug(`WebAuthn Ceremony - Verification Phase - SUCCESS - ${response.statusText}`);
-                        console.info(`Reloading page with a GET request: ${window.location.href}`);
-                        window.location.href = window.location.href;
-                    }
-                    else {
-                        // TODO: Extract error message from JSON that the server sent.
-                        const message = `WebAuthn Ceremony - Verification Phase - ERROR - ${response.statusText} ${response.body}`;
-                        console.debug(message);
-                        alert(message);
-                    }
-                }).catch((error) => {
-                    const message = 'Please check your Internet connection and try again later.';
-                    console.error(message);
-                    alert(message);
-                });
-            }
-            get formUrl() {
-                return this.form.action;
-            }
-            get formMethod() {
-                return this.form.querySelector('input[name="_method"]')?.value?.toUpperCase() || 'POST';
-            }
-            get csrfToken() {
-                return document.querySelector('meta[name="csrf-token"]')?.content;
-            }
-        }
-        Webauth.Verification = Verification;
-    })(Webauth = Booth.Webauth || (Booth.Webauth = {}));
-})(Booth || (Booth = {}));
-// --------------
-// Initialization
-// --------------
-document.addEventListener('DOMContentLoaded', function () {
-    document.querySelectorAll('.js-booth-webauth-registration').forEach((form) => {
-        form.addEventListener('ajax:before', () => {
-            console.debug('WebAuthn Registration Ceremony - Initiation Phase Part 1 - START');
-        });
-        form.addEventListener('ajax:success', (event) => {
-            const [data, status, xhr] = event.detail;
-            console.debug(`WebAuthn Registration Ceremony - Initiation Phase Part 1 - SUCCESS - ${JSON.stringify(data)}`);
-            new Booth.Webauth.Registration(form, data);
-        });
-        form.addEventListener('ajax:error', (event) => {
-            const [data, status, xhr] = event.detail;
-            // TODO: Extract error message from JSON that the server sent.
-            //       I don't think we need to reload the page on the registration page.
-            const message = `WebAuthn Registration Ceremony - Initiation Phase Part 1 - ERROR - ${xhr.responseText}`;
-            console.error(message);
-            alert(message);
-        });
-    });
-    document.querySelectorAll('.js-booth-webauth-authentication').forEach((form) => {
-        form.addEventListener('ajax:before', () => {
-            console.debug('WebAuthn Authentication Ceremony - Initiation Phase Part 1 - START');
-        });
-        form.addEventListener('ajax:success', (event) => {
-            const [data, status, xhr] = event.detail;
-            console.debug(`WebAuthn Authentication Ceremony - Initiation Phase Part 1 - SUCCESS - ${JSON.stringify(data)}`);
-            new Booth.Webauth.Authentication(form, data);
-        });
-        form.addEventListener('ajax:error', (event) => {
-            const [data, status, xhr] = event.detail;
-            // TODO: Extract error message from JSON that the server sent.
-            //       On the authentication page there are timeout restrictions, it would be a good idea to reload page.
-            const message = `WebAuthn Authentication Ceremony - Initiation Phase Part 1 - ERROR - ${xhr.responseText}`;
-            console.error(message);
-            alert(message);
-        });
-    });
-    if (document.querySelector('.js-booth-polling'))
-        Booth.reloadSoon();
-});
-//# sourceMappingURL=all.js.map

data/app/assets/javascripts/booth/all.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"all.js","sourceRoot":"","sources":["webauthn-json.ts","booth.ts"],"names":[],"mappings":"ACAA,yCAAyC;AAEzC,qBAAqB;AACrB,kFAAkF;AAElF,IAAU,KAAK,CAqId;AArID,WAAU,KAAK;IACb,SAAgB,UAAU;QACxB,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,CAAA,CAAC,qCAAqC;QAEvF,UAAU,CAAC,GAAG,EAAE;YACd,OAAO,CAAC,KAAK,CAAC,mBAAmB,CAAC,CAAA;YAClC,MAAM,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAA;QAC1B,CAAC,EAAE,IAAI,GAAG,OAAO,CAAC,CAAA;IACpB,CAAC;IAPe,gBAAU,aAOzB,CAAA;IAED,IAAiB,OAAO,CA0HvB;IA1HD,WAAiB,OAAO;QACtB,MAAa,YAAY;YAIvB,YAAY,IAAqB,EAAE,aAAkB;gBACnD,IAAI,CAAC,IAAI,GAAG,IAAI,CAAA;gBAChB,IAAI,CAAC,aAAa,GAAG,aAAa,CAAA;gBAClC,IAAI,CAAC,IAAI,EAAE,CAAA;YACb,CAAC;YAEO,IAAI;gBACV,OAAO,CAAC,KAAK,CAAC,kEAAkE,CAAC,CAAA;gBACjF,YAAY,CAAC,MAAM,CAAC,EAAE,SAAS,EAAE,IAAI,CAAC,aAAa,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,YAAY,EAAE,EAAE;oBAC3E,OAAO,CAAC,KAAK,CAAC,wEAAwE,IAAI,CAAC,SAAS,CAAC,YAAY,CAAC,EAAE,CAAC,CAAA;oBACrH,IAAI,YAAY,CAAC,IAAI,CAAC,IAAI,EAAE,YAAY,CAAC,CAAA;gBAE3C,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,KAAmB,EAAE,EAAE;oBAC/B,OAAO,CAAC,KAAK,CAAC,iEAAiE,KAAK,CAAC,IAAI,MAAM,KAAK,CAAC,OAAO,EAAE,CAAC,CAAA;oBAE/G,IAAI,KAAK,CAAC,IAAI,IAAI,iBAAiB,EAAE;wBACnC,sEAAsE;wBACtE,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,8BAA8B,CAAC,CAAA;qBACxD;yBAAM;wBACL,KAAK,CAAC,KAAK,CAAC,OAAO,CAAC,CAAA;qBACrB;gBACH,CAAC,CAAC,CAAA;YACJ,CAAC;SACF;QA3BY,oBAAY,eA2BxB,CAAA;QAED,MAAa,cAAc;YAIzB,YAAY,IAAqB,EAAE,aAAkB;gBACnD,IAAI,CAAC,IAAI,GAAG,IAAI,CAAA;gBAChB,IAAI,CAAC,aAAa,GAAG,aAAa,CAAA;gBAClC,IAAI,CAAC,IAAI,EAAE,CAAA;YACb,CAAC;YAEO,IAAI;gBACV,OAAO,CAAC,KAAK,CAAC,oEAAoE,CAAC,CAAA;gBACnF,YAAY,CAAC,GAAG,CAAC,EAAE,SAAS,EAAE,IAAI,CAAC,aAAa,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,YAAY,EAAE,EAAE;oBACxE,OAAO,CAAC,KAAK,CAAC,0EAA0E,IAAI,CAAC,SAAS,CAAC,YAAY,CAAC,EAAE,CAAC,CAAA;oBACvH,IAAI,YAAY,CAAC,IAAI,CAAC,IAAI,EAAE,YAAY,CAAC,CAAA;gBAE3C,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,KAAK,EAAE,EAAE;oBACjB,OAAO,CAAC,KAAK,CAAC,mEAAmE,KAAK,CAAC,IAAI,MAAM,KAAK,CAAC,OAAO,EAAE,CAAC,CAAA;oBAEjH,IAAI,KAAK,CAAC,IAAI,IAAI,iBAAiB,EAAE;wBACnC,wEAAwE;wBACxE,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,yBAAyB,CAAC,CAAA;qBACnD;yBAAM;wBACL,KAAK,CAAC,KAAK,CAAC,OAAO,CAAC,CAAA;qBACrB;gBACH,CAAC,CAAC,CAAA;YACJ,CAAC;SACF;QA3BY,sBAAc,iBA2B1B,CAAA;QAED,MAAa,YAAY;YAIvB,YAAmB,IAAqB,EAAE,OAAY;gBACpD,IAAI,CAAC,IAAI,GAAG,IAAI,CAAA;gBAChB,IAAI,CAAC,OAAO,GAAG,OAAO,CAAA;gBACtB,IAAI,CAAC,IAAI,EAAE,CAAA;YACb,CAAC;YAEO,IAAI;gBACV,OAAO,CAAC,KAAK,CAAC,oDAAoD,IAAI,CAAC,UAAU,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC,CAAA;gBAEpG,MAAM,OAAO,GAAgB;oBAC3B,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,OAAO,CAAC;oBAClC,MAAM,EAAE,IAAI,CAAC,UAAU;oBACvB,WAAW,EAAE,aAAa;oBAC1B,+DAA+D;oBAC/D,0EAA0E;oBAC1E,QAAQ,EAAE,QAAQ;oBAClB,OAAO,EAAE;wBACT,cAAc,EAAE,kBAAkB;wBAClC,QAAQ,EAAE,kBAAkB;wBAC5B,cAAc,EAAE,IAAI,CAAC,SAAS;qBAC7B;iBACF,CAAA;gBAED,KAAK,CAAC,IAAI,CAAC,OAAO,EAAE,OAAO,CAAC;qBAC3B,IAAI,CAAC,CAAC,QAAQ,EAAE,EAAE;oBAEjB,4EAA4E;oBAC5E,kGAAkG;oBAClG,IAAI,QAAQ,CAAC,MAAM,IAAI,GAAG,EAAE;wBAC1B,OAAO,CAAC,KAAK,CAAC,sDAAsD,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAA;wBAC1F,OAAO,CAAC,IAAI,CAAC,sCAAsC,MAAM,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC,CAAA;wBAC1E,MAAM,CAAC,QAAQ,CAAC,IAAI,GAAG,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAA;qBAE5C;yBAAM;wBACL,8DAA8D;wBAC9D,MAAM,OAAO,GAAG,oDAAoD,QAAQ,CAAC,UAAU,IAAI,QAAQ,CAAC,IAAI,EAAE,CAAA;wBAC1G,OAAO,CAAC,KAAK,CAAC,OAAO,CAAC,CAAA;wBACtB,KAAK,CAAC,OAAO,CAAC,CAAA;qBACf;gBAEH,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,KAAK,EAAE,EAAE;oBACjB,MAAM,OAAO,GAAG,4DAA4D,CAAA;oBAC5E,OAAO,CAAC,KAAK,CAAC,OAAO,CAAC,CAAA;oBACtB,KAAK,CAAC,OAAO,CAAC,CAAA;gBAChB,CAAC,CAAC,CAAA;YACJ,CAAC;YAED,IAAY,OAAO;gBACjB,OAAO,IAAI,CAAC,IAAI,CAAC,MAAM,CAAA;YACzB,CAAC;YAED,IAAY,UAAU;gBACpB,OAAO,IAAI,CAAC,IAAI,CAAC,aAAa,CAAmB,uBAAuB,CAAC,EAAE,KAAK,EAAE,WAAW,EAAE,IAAI,MAAM,CAAA;YAC3G,CAAC;YAED,IAAY,SAAS;gBACnB,OAAO,QAAQ,CAAC,aAAa,CAAkB,yBAAyB,CAAC,EAAE,OAAO,CAAA;YACpF,CAAC;SACF;QA9DY,oBAAY,eA8DxB,CAAA;IACH,CAAC,EA1HgB,OAAO,GAAP,aAAO,KAAP,aAAO,QA0HvB;AACH,CAAC,EArIS,KAAK,KAAL,KAAK,QAqId;AAKD,iBAAiB;AACjB,iBAAiB;AACjB,iBAAiB;AAEjB,QAAQ,CAAC,gBAAgB,CAAC,kBAAkB,EAAE;IAE5C,QAAQ,CAAC,gBAAgB,CAAC,gCAAgC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAqB,EAAE,EAAE;QAC5F,IAAI,CAAC,gBAAgB,CAAC,aAAa,EAAE,GAAG,EAAE;YACxC,OAAO,CAAC,KAAK,CAAC,kEAAkE,CAAC,CAAA;QACnF,CAAC,CAAC,CAAA;QAEF,IAAI,CAAC,gBAAgB,CAAC,cAAc,EAAE,CAAC,KAAkB,EAAE,EAAE;YAC3D,MAAM,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,CAAC,GAAG,KAAK,CAAC,MAAM,CAAA;YACxC,OAAO,CAAC,KAAK,CAAC,wEAAwE,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,CAAC,CAAA;YAC7G,IAAI,KAAK,CAAC,OAAO,CAAC,YAAY,CAAC,IAAI,EAAE,IAAI,CAAC,CAAA;QAC5C,CAAC,CAAC,CAAA;QAEF,IAAI,CAAC,gBAAgB,CAAC,YAAY,EAAE,CAAC,KAAkB,EAAE,EAAE;YACzD,MAAM,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,CAAC,GAAG,KAAK,CAAC,MAAM,CAAA;YACxC,8DAA8D;YAC9D,2EAA2E;YAC3E,MAAM,OAAO,GAAG,sEAAsE,GAAG,CAAC,YAAY,EAAE,CAAA;YACxG,OAAO,CAAC,KAAK,CAAC,OAAO,CAAC,CAAA;YACtB,KAAK,CAAC,OAAO,CAAC,CAAA;QAChB,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,QAAQ,CAAC,gBAAgB,CAAC,kCAAkC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAqB,EAAE,EAAE;QAC9F,IAAI,CAAC,gBAAgB,CAAC,aAAa,EAAE,GAAG,EAAE;YACxC,OAAO,CAAC,KAAK,CAAC,oEAAoE,CAAC,CAAA;QACrF,CAAC,CAAC,CAAA;QAEF,IAAI,CAAC,gBAAgB,CAAC,cAAc,EAAE,CAAC,KAAkB,EAAE,EAAE;YAC3D,MAAM,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,CAAC,GAAG,KAAK,CAAC,MAAM,CAAA;YACxC,OAAO,CAAC,KAAK,CAAC,0EAA0E,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,CAAC,CAAA;YAC/G,IAAI,KAAK,CAAC,OAAO,CAAC,cAAc,CAAC,IAAI,EAAE,IAAI,CAAC,CAAA;QAC9C,CAAC,CAAC,CAAA;QAEF,IAAI,CAAC,gBAAgB,CAAC,YAAY,EAAE,CAAC,KAAkB,EAAE,EAAE;YACzD,MAAM,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,CAAC,GAAG,KAAK,CAAC,MAAM,CAAA;YACxC,8DAA8D;YAC9D,2GAA2G;YAC3G,MAAM,OAAO,GAAG,wEAAwE,GAAG,CAAC,YAAY,EAAE,CAAA;YAC1G,OAAO,CAAC,KAAK,CAAC,OAAO,CAAC,CAAA;YACtB,KAAK,CAAC,OAAO,CAAC,CAAA;QAChB,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,IAAI,QAAQ,CAAC,aAAa,CAAC,mBAAmB,CAAC;QAAE,KAAK,CAAC,UAAU,EAAE,CAAA;AAErE,CAAC,CAAC,CAAA"}

data/app/assets/javascripts/booth/booth.ts

@@ -1,194 +0,0 @@
-/// <reference path='webauthn-json.ts' />
-
-//= require rails-ujs
-//= require @github/webauthn-json/dist/browser-global/webauthn-json.browser-global
-
-namespace Booth {
-  export function reloadSoon() {
-    const seconds = Math.floor(Math.random() * 3) + 5 // 4,5,6 or 7 to avoid request bursts
-
-    setTimeout(() => {
-      console.debug('Reloading page...')
-      window.location.reload()
-    }, 1000 * seconds)
-  }
-
-  export namespace Webauth {
-    export class Registration {
-      private form: HTMLFormElement
-      private challengeData: any
-
-      constructor(form: HTMLFormElement, challengeData: any) {
-        this.form = form
-        this.challengeData = challengeData
-        this.call()
-      }
-
-      private call() {
-        console.debug('WebAuthn Registration Ceremony - Initiation Phase Part 2 - START')
-        webauthnJSON.create({ publicKey: this.challengeData }).then((responseData) => {
-          console.debug(`WebAuthn Registration Ceremony - Initiation Phase Part 2 - SUCCESS - ${JSON.stringify(responseData)}`)
-          new Verification(this.form, responseData)
-
-        }).catch((error: DOMException) => {
-          console.error(`WebAuthn Registration Ceremony - Verification Phase - ERROR - ${error.name} - ${error.message}`)
-
-          if (error.name == 'NotAllowedError') {
-            // Every webauth registration form needs this localized error message.
-            alert(this.form.dataset.boothIncompatibleDeviceMessage)
-          } else {
-            alert(error.message)
-          }
-        })
-      }
-    }
-
-    export class Authentication {
-      private form: HTMLFormElement
-      private challengeData: any
-
-      constructor(form: HTMLFormElement, challengeData: any) {
-        this.form = form
-        this.challengeData = challengeData
-        this.call()
-      }
-
-      private call() {
-        console.debug('WebAuthn Authentication Ceremony - Initiation Phase Part 2 - START')
-        webauthnJSON.get({ publicKey: this.challengeData }).then((responseData) => {
-          console.debug(`WebAuthn Authentication Ceremony - Initiation Phase Part 2 - SUCCESS - ${JSON.stringify(responseData)}`)
-          new Verification(this.form, responseData)
-
-        }).catch((error) => {
-          console.error(`WebAuthn Authentication Ceremony - Verification Phase - ERROR - ${error.name} - ${error.message}`)
-
-          if (error.name == 'NotAllowedError') {
-            // Every webauth authentication form needs this localized error message.
-            alert(this.form.dataset.boothUnknownDeviceMessage)
-          } else {
-            alert(error.message)
-          }
-        })
-      }
-    }
-
-    export class Verification {
-      private form: HTMLFormElement
-      private webauth: any
-
-      public constructor(form: HTMLFormElement, webauth: any) {
-        this.form = form
-        this.webauth = webauth
-        this.call()
-      }
-
-      private call() {
-        console.debug(`WebAuthn Ceremony - Verification Phase - START - ${this.formMethod} ${this.formUrl}`)
-
-        const options: RequestInit = {
-          body: JSON.stringify(this.webauth),
-          method: this.formMethod,
-          credentials: 'same-origin',
-          // Rails should not redirect us anywhere when making API calls.
-          // But in order to avoid mistakes let's be sure and never follow anywhere.
-          redirect: 'manual',
-          headers: {
-          'Content-type': 'application/json',
-          'Accept': 'application/json',
-          'X-CSRF-Token': this.csrfToken
-          }
-        }
-
-        fetch(this.formUrl, options)
-        .then((response) => {
-
-          // Conventionally the server returns 201 on successful WebAuth verification.
-          // That makes it easier to detect a mistake (most other server responses will usually return 200).
-          if (response.status == 201) {
-            console.debug(`WebAuthn Ceremony - Verification Phase - SUCCESS - ${response.statusText}`)
-            console.info(`Reloading page with a GET request: ${window.location.href}`)
-            window.location.href = window.location.href
-
-          } else {
-            // TODO: Extract error message from JSON that the server sent.
-            const message = `WebAuthn Ceremony - Verification Phase - ERROR - ${response.statusText} ${response.body}`
-            console.debug(message)
-            alert(message)
-          }
-
-        }).catch((error) => {
-          const message = 'Please check your Internet connection and try again later.'
-          console.error(message)
-          alert(message)
-        })
-      }
-
-      private get formUrl() {
-        return this.form.action
-      }
-
-      private get formMethod() {
-        return this.form.querySelector<HTMLInputElement>('input[name="_method"]')?.value?.toUpperCase() || 'POST'
-      }
-
-      private get csrfToken() {
-        return document.querySelector<HTMLMetaElement>('meta[name="csrf-token"]')?.content
-      }
-    }
-  }
-}
-
-
-
-
-// --------------
-// Initialization
-// --------------
-
-document.addEventListener('DOMContentLoaded', function() {
-
-  document.querySelectorAll('.js-booth-webauth-registration').forEach((form: HTMLFormElement) => {
-    form.addEventListener('ajax:before', () => {
-      console.debug('WebAuthn Registration Ceremony - Initiation Phase Part 1 - START')
-    })
-
-    form.addEventListener('ajax:success', (event: CustomEvent) => {
-      const [data, status, xhr] = event.detail
-      console.debug(`WebAuthn Registration Ceremony - Initiation Phase Part 1 - SUCCESS - ${JSON.stringify(data)}`)
-      new Booth.Webauth.Registration(form, data)
-    })
-
-    form.addEventListener('ajax:error', (event: CustomEvent) => {
-      const [data, status, xhr] = event.detail
-      // TODO: Extract error message from JSON that the server sent.
-      //       I don't think we need to reload the page on the registration page.
-      const message = `WebAuthn Registration Ceremony - Initiation Phase Part 1 - ERROR - ${xhr.responseText}`
-      console.error(message)
-      alert(message)
-    })
-  })
-
-  document.querySelectorAll('.js-booth-webauth-authentication').forEach((form: HTMLFormElement) => {
-    form.addEventListener('ajax:before', () => {
-      console.debug('WebAuthn Authentication Ceremony - Initiation Phase Part 1 - START')
-    })
-
-    form.addEventListener('ajax:success', (event: CustomEvent) => {
-      const [data, status, xhr] = event.detail
-      console.debug(`WebAuthn Authentication Ceremony - Initiation Phase Part 1 - SUCCESS - ${JSON.stringify(data)}`)
-      new Booth.Webauth.Authentication(form, data)
-    })
-
-    form.addEventListener('ajax:error', (event: CustomEvent) => {
-      const [data, status, xhr] = event.detail
-      // TODO: Extract error message from JSON that the server sent.
-      //       On the authentication page there are timeout restrictions, it would be a good idea to reload page.
-      const message = `WebAuthn Authentication Ceremony - Initiation Phase Part 1 - ERROR - ${xhr.responseText}`
-      console.error(message)
-      alert(message)
-    })
-  })
-
-  if (document.querySelector('.js-booth-polling')) Booth.reloadSoon()
-
-})

data/app/assets/javascripts/booth/webauthn-json.ts

@@ -1,99 +0,0 @@
-type Base64urlString = string;
-type SchemaLeaf = "copy" | "convert";
-interface SchemaObject {
-    [property: string]: {
-        required: boolean;
-        schema: Schema;
-    };
-}
-type SchemaArray = [SchemaObject] | [SchemaLeaf];
-type Schema = SchemaLeaf | SchemaArray | SchemaObject;
-interface CredPropsAuthenticationExtensionsClientOutputsJSON {
-    rk: boolean;
-}
-interface PublicKeyCredentialDescriptorJSON {
-    type: PublicKeyCredentialType;
-    id: Base64urlString;
-    transports?: AuthenticatorTransport[];
-}
-interface SimpleWebAuthnExtensionsJSON {
-    appid?: string;
-    appidExclude?: string;
-    credProps?: boolean;
-}
-interface SimpleClientExtensionResultsJSON {
-    appid?: boolean;
-    appidExclude?: boolean;
-    credProps?: CredPropsAuthenticationExtensionsClientOutputsJSON;
-}
-interface PublicKeyCredentialUserEntityJSON extends PublicKeyCredentialEntity {
-    displayName: string;
-    id: Base64urlString;
-}
-declare interface AuthenticatorSelectionCriteriaJSON extends AuthenticatorSelectionCriteria {
-    residentKey?: ResidentKeyRequirement;
-}
-interface PublicKeyCredentialCreationOptionsJSON {
-    rp: PublicKeyCredentialRpEntity;
-    user: PublicKeyCredentialUserEntityJSON;
-    challenge: Base64urlString;
-    pubKeyCredParams: PublicKeyCredentialParameters[];
-    timeout?: number;
-    excludeCredentials?: PublicKeyCredentialDescriptorJSON[];
-    authenticatorSelection?: AuthenticatorSelectionCriteriaJSON;
-    attestation?: AttestationConveyancePreference;
-    extensions?: SimpleWebAuthnExtensionsJSON;
-}
-declare interface CredentialCreationOptionsJSON {
-    publicKey: PublicKeyCredentialCreationOptionsJSON;
-    signal?: AbortSignal;
-}
-interface AuthenticatorAttestationResponseJSON {
-    clientDataJSON: Base64urlString;
-    attestationObject: Base64urlString;
-}
-declare interface PublicKeyCredentialWithAttestationJSON {
-    id: string;
-    type: PublicKeyCredentialType;
-    rawId: Base64urlString;
-    response: AuthenticatorAttestationResponseJSON;
-    clientExtensionResults: SimpleClientExtensionResultsJSON;
-}
-interface PublicKeyCredentialRequestOptionsJSON {
-    challenge: Base64urlString;
-    timeout?: number;
-    rpId?: string;
-    allowCredentials?: PublicKeyCredentialDescriptorJSON[];
-    userVerification?: UserVerificationRequirement;
-    extensions?: SimpleWebAuthnExtensionsJSON;
-}
-declare interface CredentialRequestOptionsJSON {
-    mediation?: CredentialMediationRequirement;
-    publicKey?: PublicKeyCredentialRequestOptionsJSON;
-    signal?: AbortSignal;
-}
-interface AuthenticatorAssertionResponseJSON {
-    clientDataJSON: Base64urlString;
-    authenticatorData: Base64urlString;
-    signature: Base64urlString;
-    userHandle: Base64urlString | null;
-}
-declare interface PublicKeyCredentialWithAssertionJSON {
-    type: PublicKeyCredentialType;
-    id: string;
-    rawId: Base64urlString;
-    response: AuthenticatorAssertionResponseJSON;
-    clientExtensionResults: SimpleClientExtensionResultsJSON;
-}
-declare const schema: {
-    [s: string]: Schema;
-};
-// export function create(requestJSON: CredentialCreationOptionsJSON): Promise<PublicKeyCredentialWithAttestationJSON>;
-// export function get(requestJSON: CredentialRequestOptionsJSON): Promise<PublicKeyCredentialWithAssertionJSON>;
-// export function supported(): boolean;
-
-declare class webauthnJSON {
-  static create(requestJSON: CredentialCreationOptionsJSON): Promise<PublicKeyCredentialWithAttestationJSON>;
-  static get(requestJSON: CredentialRequestOptionsJSON): Promise<PublicKeyCredentialWithAssertionJSON>;
-  static supported(): boolean;
-}

data/lib/booth/adminland/recoveries/consume.rb

@@ -1,70 +0,0 @@
-module Booth
-  module Adminland
-    module Recoveries
-      # When sending out username recovery emails,
-      # this class helps to keep the sending mechanism idempodent.
-      class Consume
-        include ::Booth::MethodObject
-        include ::Booth::Logging
-
-        option :recovery_id
-        option :credential_id
-
-        def call
-          do_find_recovery
-            .on_success { do_find_credential }
-            .on_success { do_check_eligibility }
-            .on_success { do_consume }
-        end
-
-        private
-
-        def do_find_recovery
-          debug { "Looking for Recovery with ID #{recovery_id.inspect}" }
-          @recovery = ::Booth::Models::Recovery.find_by(id: recovery_id)
-
-          if @recovery
-            debug { 'Recovery was found' }
-            return Tron.success :recovery_exists
-          end
-
-          debug { 'Did not find Recovery' }
-          Tron.failure :recovery_not_found, provided_id: recovery_id.inspect
-        end
-
-        def do_find_credential
-          debug { "Looking for Credential with ID #{credential_id.inspect}" }
-          @credential = ::Booth::Models::Credential.find_by(id: credential_id)
-
-          if @credential
-            debug { 'Credential was found' }
-            return Tron.success :credential_exists
-          end
-
-          debug { 'Did not find Credential' }
-          Tron.failure :credential_not_found, provided_id: credential_id.inspect
-        end
-
-        def do_check_eligibility
-          return Tron.failure :already_consumed if @recovery.consumed?
-
-          return Tron.failure :already_revoked if @recovery.revoked?
-
-          Tron.success :can_be_consumed
-        end
-
-        def do_consume
-          @recovery.transaction do
-            @recovery.update! consumed_at: Time.current
-
-            @recovery.other_recoveries_with_this_scope_and_email
-                     .update_all revoked_at: Time.current # rubocop:disable Rails/SkipsModelValidations
-          end
-
-          Tron.success :recovery_consumed, email: @recovery.email,
-                                           username: @credential.username
-        end
-      end
-    end
-  end
-end

data/lib/booth/audits/register/added_otp.rb

@@ -1,22 +0,0 @@
-module Booth
-  module Audits
-    module Register
-      class AddedOtp
-        include ::Booth::MethodObject
-
-        option :credential
-        option :ip
-        option :agent
-
-        def call
-          ::Booth::Models::Audit.create! credential: credential,
-                                         ip: ip,
-                                         agent: agent,
-                                         event: :added_otp
-
-          nil
-        end
-      end
-    end
-  end
-end

data/lib/booth/audits/register/changed_otp.rb

@@ -1,22 +0,0 @@
-module Booth
-  module Audits
-    module Register
-      class ChangedOtp
-        include ::Booth::MethodObject
-
-        option :credential
-        option :ip
-        option :agent
-
-        def call
-          ::Booth::Models::Audit.create! credential: credential,
-                                         ip: ip,
-                                         agent: agent,
-                                         event: :changed_otp
-
-          nil
-        end
-      end
-    end
-  end
-end

data/lib/booth/audits/register/correct_otp.rb

@@ -1,42 +0,0 @@
-module Booth
-  module Audits
-    module Register
-      class CorrectOtp
-        include ::Booth::MethodObject
-        include ::Booth::Logging
-
-        option :credential
-        option :ip
-        option :agent
-
-        def call
-          ::Booth::Models::Audit.transaction do
-            register_attempt!
-            clear_failed_attempts!
-          end
-
-          nil
-        end
-
-        private
-
-        def register_attempt!
-          debug { "Auditing correct OTP for credential `#{credential.id}` and IP `#{ip}`" }
-
-          ::Booth::Models::Audit.create! credential:,
-                                         ip:,
-                                         agent:,
-                                         event: :entered_correct_password
-        end
-
-        def clear_failed_attempts!
-          debug { "Redeeming all failed OTP attempts for credential `#{credential.id}`" }
-
-          ::Booth::Models::Audit.where(credential:)
-                                .where(event: :entered_wrong_otp)
-                                .update_all(deleted_at: Time.current) # rubocop:disable Rails/SkipsModelValidations
-        end
-      end
-    end
-  end
-end