npm - @nibssplc/cams-sdk-react - Versions diffs - 0.0.1-beta.96 → 0.0.1-beta.97 - Mend

@nibssplc/cams-sdk-react 0.0.1-beta.96 → 0.0.1-beta.97

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/dist/components/CoreFIDO.d.ts +10 -1
package/dist/index.cjs.js +36 -20
package/dist/index.cjs.js.map +1 -1
package/dist/index.esm.js +36 -20
package/dist/index.esm.js.map +1 -1
package/package.json +1 -1

package/dist/components/CoreFIDO.d.ts CHANGED Viewed

@@ -1,3 +1,12 @@
+export interface AttestationResult {
+    id: string;
+    rawId: string;
+    type: string;
+    response: {
+        clientDataJSON: string;
+        attestationObject: string;
+    };
+}
 /**
  * Initiates the WebAuthn registration process.
  * It takes server-provided options, converts them for the browser API,
@@ -7,7 +16,7 @@
  * @param options - The PublicKeyCredentialCreationOptions from the server.
  * @returns A promise that resolves to a JSON-serializable representation of the PublicKeyCredential.
  */
-export declare function register(options: PublicKeyCredentialCreationOptions): Promise<PublicKeyCredential>;
+export declare function register(options: PublicKeyCredentialCreationOptions): Promise<AttestationResult>;
 /**
  * Initiates the WebAuthn authentication process.
  * It takes server-provided options, converts them for the browser API,

package/dist/index.cjs.js CHANGED Viewed

@@ -557,11 +557,11 @@ function base64urlToArrayBuffer(base64url) {
  */
 function arrayBufferToBase64url(buffer) {
     var bytes = new Uint8Array(buffer);
-    var binaryStr = String.fromCharCode.apply(null, bytes);
+    var binaryStr = Array.from(bytes, function (b) { return String.fromCharCode(b); }).join("");
     return btoa(binaryStr)
         .replace(/\+/g, "-")
         .replace(/\//g, "_")
-        .replace(/=/g, "");
+        .replace(/=+$/, ""); // use regex to remove all trailing '='
 }
 /**
@@ -575,21 +575,23 @@ function arrayBufferToBase64url(buffer) {
  */
 function register(options) {
     return __awaiter(this, void 0, void 0, function () {
-        var createOptions, credential, publicKeyCredential, attestationResponse;
-        return __generator(this, function (_a) {
-            switch (_a.label) {
+        var createOptions, credential, publicKeyCredential, attestationResponse, transports, err_1;
+        var _a, _b, _c;
+        return __generator(this, function (_d) {
+            switch (_d.label) {
                 case 0:
+                    _d.trys.push([0, 2, , 3]);
                     createOptions = __assign(__assign({}, options), { challenge: base64urlToArrayBuffer(options.challenge), user: __assign(__assign({}, options.user), { id: base64urlToArrayBuffer(options.user.id) }) });
                     return [4 /*yield*/, navigator.credentials.create({
                             publicKey: createOptions,
                         })];
                 case 1:
-                    credential = _a.sent();
-                    if (!credential) {
-                        throw new Error("Failed to create credential.");
-                    }
+                    credential = _d.sent();
+                    if (!credential)
+                        throw new Error("No credential created.");
                     publicKeyCredential = credential;
                     attestationResponse = publicKeyCredential.response;
+                    transports = (_c = (_b = (_a = publicKeyCredential.response).getTransports) === null || _b === void 0 ? void 0 : _b.call(_a)) !== null && _c !== void 0 ? _c : [];
                     return [2 /*return*/, {
                             id: publicKeyCredential.id,
                             rawId: arrayBufferToBase64url(publicKeyCredential.rawId),
@@ -597,8 +599,19 @@ function register(options) {
                             response: {
                                 clientDataJSON: arrayBufferToBase64url(attestationResponse.clientDataJSON),
                                 attestationObject: arrayBufferToBase64url(attestationResponse.attestationObject),
+                                transports: transports,
                             },
                         }];
+                case 2:
+                    err_1 = _d.sent();
+                    if (err_1.name === "NotAllowedError") {
+                        throw new Error("Registration cancelled by user.");
+                    }
+                    if (err_1.name === "InvalidStateError") {
+                        throw new Error("Passkey already registered for this user.");
+                    }
+                    throw err_1;
+                case 3: return [2 /*return*/];
             }
         });
     });
@@ -1864,12 +1877,12 @@ var MFAOptions = function (_a) {
     var idToken = context.authMode === "MSAL" ? context.idToken : "";
     var authenticate = useWebAuthn().authenticate;
     var handleFIDOLogin = function () { return __awaiter(void 0, void 0, void 0, function () {
-        var options, fixedOptions, assertionResponse, error_1;
-        var _a, _b, _c, _d, _e, _f;
-        return __generator(this, function (_g) {
-            switch (_g.label) {
+        var options, assertionResponse, error_1;
+        var _a, _b, _c, _d, _e, _f, _g, _h, _j, _k, _l, _m;
+        return __generator(this, function (_o) {
+            switch (_o.label) {
                 case 0:
-                    _g.trys.push([0, 4, , 5]);
+                    _o.trys.push([0, 4, , 5]);
                     // 1. Fetch authentication challenge from your server
                     console.log("Requesting authentication challenge from server...");
                     return [4 /*yield*/, axios.post(MFAEndpoints.RetrieveAuthChallenge, {}, {
@@ -1879,17 +1892,20 @@ var MFAOptions = function (_a) {
                             },
                         })];
                 case 1:
-                    options = (_g.sent()).data;
+                    options = (_o.sent()).data;
                     console.log("Received challenge:", options);
-                    fixedOptions = __assign(__assign({}, options), { pubKeyCredParams: (_a = options.pubKeyCredParams) === null || _a === void 0 ? void 0 : _a.map(function (param) { return ({
+                    __assign(__assign({}, options), { pubKeyCredParams: (_a = options.pubKeyCredParams) === null || _a === void 0 ? void 0 : _a.map(function (param) { return ({
                             type: "public-key",
                             alg: param.alg
                         }); }), attestation: ((_b = options.attestation) === null || _b === void 0 ? void 0 : _b.toLowerCase()) || "none", authenticatorSelection: __assign(__assign({}, options.authenticatorSelection), { residentKey: ((_d = (_c = options.authenticatorSelection) === null || _c === void 0 ? void 0 : _c.residentKey) === null || _d === void 0 ? void 0 : _d.toLowerCase()) || "discouraged", userVerification: ((_f = (_e = options.authenticatorSelection) === null || _e === void 0 ? void 0 : _e.userVerification) === null || _f === void 0 ? void 0 : _f.toLowerCase()) || "preferred" }) });
                     // 2. Call the SDK to trigger the browser's passkey authentication UI
                     console.log("Calling SDK authenticate function...");
-                    return [4 /*yield*/, authenticate(fixedOptions)];
+                    return [4 /*yield*/, authenticate(__assign(__assign({}, options), { pubKeyCredParams: (_g = options.pubKeyCredParams) === null || _g === void 0 ? void 0 : _g.map(function (param) { return ({
+                                type: "public-key",
+                                alg: param.alg
+                            }); }), attestation: ((_h = options.attestation) === null || _h === void 0 ? void 0 : _h.toLowerCase()) || "none", authenticatorSelection: __assign(__assign({}, options.authenticatorSelection), { residentKey: ((_k = (_j = options.authenticatorSelection) === null || _j === void 0 ? void 0 : _j.residentKey) === null || _k === void 0 ? void 0 : _k.toLowerCase()) || "discouraged", userVerification: ((_m = (_l = options.authenticatorSelection) === null || _l === void 0 ? void 0 : _l.userVerification) === null || _m === void 0 ? void 0 : _m.toLowerCase()) || "preferred" }) }))];
                 case 2:
-                    assertionResponse = _g.sent();
+                    assertionResponse = _o.sent();
                     console.log("Authentication assertion received from client:", assertionResponse);
                     // 3. Send the assertion back to the server for verification
                     console.log("Sending assertion to server for verification...");
@@ -1901,11 +1917,11 @@ var MFAOptions = function (_a) {
                             withCredentials: true, // credentials: 'include'
                         })];
                 case 3:
-                    _g.sent();
+                    _o.sent();
                     sonner.toast.success("🔑 Sign-in successful!");
                     return [3 /*break*/, 5];
                 case 4:
-                    error_1 = _g.sent();
+                    error_1 = _o.sent();
                     console.error("Authentication failed:", error_1);
                     sonner.toast.error("❌ Could not sign in.");
                     return [3 /*break*/, 5];