@passlock/client 0.9.30 → 2.0.0-beta.1

package/dist/user/user.d.ts

@@ -1,25 +0,0 @@
-/**
- * Check for an existing user
- */
-import { Context, Effect as E, Layer } from 'effect';
-import type { BadRequest, Disabled, NotFound } from '@passlock/shared/dist/error/error.js';
-import type { VerifyEmail } from '@passlock/shared/dist/schema/email.js';
-import { UserClient } from '../rpc/user.js';
-export type Email = {
-    email: string;
-};
-export type ResendEmail = VerifyEmail & {
-    userId: string;
-};
-export type ResendEmailErrors = BadRequest | NotFound | Disabled;
-declare const UserService_base: Context.TagClass<UserService, "@services/UserService", {
-    isExistingUser: (request: Email) => E.Effect<boolean, BadRequest>;
-    resendVerificationEmail: (request: ResendEmail) => E.Effect<void, ResendEmailErrors>;
-}>;
-export declare class UserService extends UserService_base {
-}
-type Dependencies = UserClient;
-export declare const isExistingUser: (request: Email) => E.Effect<boolean, BadRequest, Dependencies>;
-export declare const resendVerificationEmail: (request: ResendEmail) => E.Effect<void, ResendEmailErrors, Dependencies>;
-export declare const UserServiceLive: Layer.Layer<UserService, never, UserClient>;
-export {};

package/dist/user/user.fixture.d.ts

@@ -1,12 +0,0 @@
-import { Layer as L } from 'effect';
-import { IsExistingUserReq, IsExistingUserRes, ResendEmailReq, ResendEmailRes, VerifyEmailRes } from '@passlock/shared/dist/rpc/user.js';
-import { UserClient } from '../rpc/user.js';
-import type { ResendEmail } from './user.js';
-export declare const email = "jdoe@gmail.com";
-export declare const isRegisteredReq: IsExistingUserReq;
-export declare const isRegisteredRes: IsExistingUserRes;
-export declare const verifyEmailRes: VerifyEmailRes;
-export declare const resendEmailReq: ResendEmail;
-export declare const rpcResendEmailReq: ResendEmailReq;
-export declare const rpcResendEmailRes: ResendEmailRes;
-export declare const rpcClientTest: L.Layer<UserClient, never, never>;

package/dist/user/user.fixture.js

@@ -1,20 +0,0 @@
-import { Effect as E, Layer as L, Option as O } from 'effect';
-import { IsExistingUserReq, IsExistingUserRes, ResendEmailReq, ResendEmailRes, VerifyEmailRes, } from '@passlock/shared/dist/rpc/user.js';
-import * as Fixtures from '../test/fixtures.js';
-import { UserClient } from '../rpc/user.js';
-export const email = 'jdoe@gmail.com';
-export const isRegisteredReq = new IsExistingUserReq({ email });
-export const isRegisteredRes = new IsExistingUserRes({ existingUser: false, detail: O.none() });
-export const verifyEmailRes = new VerifyEmailRes({ principal: Fixtures.principal });
-export const resendEmailReq = { userId: '123', method: 'code' };
-export const rpcResendEmailReq = new ResendEmailReq({
-    userId: '123',
-    verifyEmail: { method: 'code' },
-});
-export const rpcResendEmailRes = new ResendEmailRes({});
-export const rpcClientTest = L.succeed(UserClient, UserClient.of({
-    isExistingUser: () => E.succeed({ existingUser: true, detail: O.none() }),
-    verifyEmail: () => E.succeed(verifyEmailRes),
-    resendVerificationEmail: () => E.fail(Fixtures.notImplemented),
-}));
-//# sourceMappingURL=user.fixture.js.map

package/dist/user/user.fixture.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"user.fixture.js","sourceRoot":"","sources":["../../src/user/user.fixture.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,IAAI,CAAC,EAAE,KAAK,IAAI,CAAC,EAAE,MAAM,IAAI,CAAC,EAAE,MAAM,QAAQ,CAAA;AAE7D,OAAO,EACL,iBAAiB,EACjB,iBAAiB,EACjB,cAAc,EACd,cAAc,EACd,cAAc,GACf,MAAM,mCAAmC,CAAA;AAE1C,OAAO,KAAK,QAAQ,MAAM,qBAAqB,CAAA;AAC/C,OAAO,EAAE,UAAU,EAAE,MAAM,gBAAgB,CAAA;AAG3C,MAAM,CAAC,MAAM,KAAK,GAAG,gBAAgB,CAAA;AACrC,MAAM,CAAC,MAAM,eAAe,GAAG,IAAI,iBAAiB,CAAC,EAAE,KAAK,EAAE,CAAC,CAAA;AAC/D,MAAM,CAAC,MAAM,eAAe,GAAG,IAAI,iBAAiB,CAAC,EAAE,YAAY,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,CAAA;AAC/F,MAAM,CAAC,MAAM,cAAc,GAAG,IAAI,cAAc,CAAC,EAAE,SAAS,EAAE,QAAQ,CAAC,SAAS,EAAE,CAAC,CAAA;AACnF,MAAM,CAAC,MAAM,cAAc,GAAgB,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,CAAA;AAC5E,MAAM,CAAC,MAAM,iBAAiB,GAAG,IAAI,cAAc,CAAC;IAClD,MAAM,EAAE,KAAK;IACb,WAAW,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE;CAChC,CAAC,CAAA;AACF,MAAM,CAAC,MAAM,iBAAiB,GAAG,IAAI,cAAc,CAAC,EAAE,CAAC,CAAA;AAEvD,MAAM,CAAC,MAAM,aAAa,GAAG,CAAC,CAAC,OAAO,CACpC,UAAU,EACV,UAAU,CAAC,EAAE,CAAC;IACZ,cAAc,EAAE,GAAG,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,YAAY,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC;IACzE,WAAW,EAAE,GAAG,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,cAAc,CAAC;IAC5C,uBAAuB,EAAE,GAAG,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,cAAc,CAAC;CAC/D,CAAC,CACH,CAAA"}

package/dist/user/user.js

@@ -1,38 +0,0 @@
-/**
- * Check for an existing user
- */
-import { Context, Effect as E, Layer, flow } from 'effect';
-import { IsExistingUserReq, ResendEmailReq } from '@passlock/shared/dist/rpc/user.js';
-import { UserClient } from '../rpc/user.js';
-/* Service */
-export class UserService extends Context.Tag('@services/UserService')() {
-}
-export const isExistingUser = (request) => {
-    return E.gen(function* (_) {
-        yield* _(E.logInfo('Checking registration status'));
-        const rpcClient = yield* _(UserClient);
-        yield* _(E.logDebug('Making RPC request'));
-        const { existingUser } = yield* _(rpcClient.isExistingUser(new IsExistingUserReq(request)));
-        return existingUser;
-    });
-};
-export const resendVerificationEmail = (request) => {
-    return E.gen(function* (_) {
-        yield* _(E.logInfo('Resending verification email'));
-        const rpcClient = yield* _(UserClient);
-        yield* _(E.logDebug('Making RPC request'));
-        const { userId, ...verifyEmail } = request;
-        yield* _(rpcClient.resendVerificationEmail(new ResendEmailReq({ userId, verifyEmail })));
-    });
-};
-/* Live */
-/* v8 ignore start */
-export const UserServiceLive = Layer.effect(UserService, E.gen(function* (_) {
-    const context = yield* _(E.context());
-    return UserService.of({
-        isExistingUser: flow(isExistingUser, E.provide(context)),
-        resendVerificationEmail: flow(resendVerificationEmail, E.provide(context)),
-    });
-}));
-/* v8 ignore stop */
-//# sourceMappingURL=user.js.map

package/dist/user/user.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"user.js","sourceRoot":"","sources":["../../src/user/user.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,OAAO,EAAE,OAAO,EAAE,MAAM,IAAI,CAAC,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,QAAQ,CAAA;AAG1D,OAAO,EAAE,iBAAiB,EAAE,cAAc,EAAE,MAAM,mCAAmC,CAAA;AAGrF,OAAO,EAAE,UAAU,EAAE,MAAM,gBAAgB,CAAA;AAW3C,aAAa;AAEb,MAAM,OAAO,WAAY,SAAQ,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC,EAMlE;CAAG;AAMN,MAAM,CAAC,MAAM,cAAc,GAAG,CAAC,OAAc,EAA+C,EAAE;IAC5F,OAAO,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;QACvB,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,8BAA8B,CAAC,CAAC,CAAA;QACnD,MAAM,SAAS,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,CAAA;QAEtC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,oBAAoB,CAAC,CAAC,CAAA;QAC1C,MAAM,EAAE,YAAY,EAAE,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,cAAc,CAAC,IAAI,iBAAiB,CAAC,OAAO,CAAC,CAAC,CAAC,CAAA;QAE3F,OAAO,YAAY,CAAA;IACrB,CAAC,CAAC,CAAA;AACJ,CAAC,CAAA;AAED,MAAM,CAAC,MAAM,uBAAuB,GAAG,CACrC,OAAoB,EAC6B,EAAE;IACnD,OAAO,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;QACvB,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,8BAA8B,CAAC,CAAC,CAAA;QACnD,MAAM,SAAS,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,CAAA;QAEtC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,oBAAoB,CAAC,CAAC,CAAA;QAC1C,MAAM,EAAE,MAAM,EAAE,GAAG,WAAW,EAAE,GAAG,OAAO,CAAA;QAC1C,KAAK,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,uBAAuB,CAAC,IAAI,cAAc,CAAC,EAAE,MAAM,EAAE,WAAW,EAAE,CAAC,CAAC,CAAC,CAAA;IAC1F,CAAC,CAAC,CAAA;AACJ,CAAC,CAAA;AAED,UAAU;AAEV,qBAAqB;AACrB,MAAM,CAAC,MAAM,eAAe,GAAG,KAAK,CAAC,MAAM,CACzC,WAAW,EACX,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;IAChB,MAAM,OAAO,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,EAAc,CAAC,CAAA;IACjD,OAAO,WAAW,CAAC,EAAE,CAAC;QACpB,cAAc,EAAE,IAAI,CAAC,cAAc,EAAE,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;QACxD,uBAAuB,EAAE,IAAI,CAAC,uBAAuB,EAAE,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;KAC3E,CAAC,CAAA;AACJ,CAAC,CAAC,CACH,CAAA;AACD,oBAAoB"}

package/dist/version.d.ts

@@ -1 +0,0 @@
-export declare const PASSLOCK_CLIENT_VERSION = "0.9.30";

package/dist/version.js

@@ -1,2 +0,0 @@
-export const PASSLOCK_CLIENT_VERSION = '0.9.30';
-//# sourceMappingURL=version.js.map

package/dist/version.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"version.js","sourceRoot":"","sources":["../src/version.ts"],"names":[],"mappings":"AAAA,MAAM,CAAC,MAAM,uBAAuB,GAAG,YAAY,CAAA"}

package/src/authentication/authenticate.fixture.ts

@@ -1,73 +0,0 @@
-import { Effect as E, Layer as L, Option as O } from 'effect'
-
-import {
-  OptionsRes,
-  VerificationReq,
-  VerificationRes,
-} from '@passlock/shared/dist/rpc/authentication.js'
-import { IsExistingUserRes, VerifyEmailRes } from '@passlock/shared/dist/rpc/user.js'
-import type { AuthenticationCredential } from '@passlock/shared/dist/schema/passkey.js'
-
-import * as Fixtures from '../test/fixtures.js'
-import { AuthenticationClient } from '../rpc/authentication.js'
-import { type AuthenticationRequest, GetCredential } from './authenticate.js'
-
-export const session = 'session'
-export const token = 'token'
-export const code = 'code'
-export const authType = 'passkey'
-export const expireAt = Date.now() + 10000
-
-export const request: AuthenticationRequest = {
-  userVerification: O.some('preferred'),
-  email: O.none(),
-}
-
-export const rpcOptionsRes = new OptionsRes({
-  session,
-  publicKey: {
-    rpId: 'passlock.dev',
-    challenge: 'FKZSl_saKu5OXjLLwoq8eK3wlD8XgpGiS10SszW5RiE',
-    timeout: 60000,
-    userVerification: 'preferred',
-  },
-})
-
-export const credential: AuthenticationCredential = {
-  id: '1',
-  type: 'public-key',
-  rawId: 'id',
-  response: {
-    clientDataJSON: '',
-    authenticatorData: '',
-    signature: '',
-    userHandle: null,
-  },
-  clientExtensionResults: {},
-  authenticatorAttachment: null,
-}
-
-export const rpcVerificationReq = new VerificationReq({ session, credential })
-
-export const rpcVerificationRes = new VerificationRes({ principal: Fixtures.principal })
-
-export const rpcIsExistingUserRes = new IsExistingUserRes({ existingUser: true, detail: O.none() })
-
-export const rpcVerifyEmailRes = new VerifyEmailRes({ principal: Fixtures.principal })
-
-export const getCredentialTest = L.succeed(
-  GetCredential,
-  GetCredential.of({ getCredential: () => E.succeed(credential) }),
-)
-
-export const rpcClientTest = L.succeed(
-  AuthenticationClient,
-  AuthenticationClient.of({
-    getAuthenticationOptions: () => E.succeed(rpcOptionsRes),
-    verifyAuthenticationCredential: () => E.succeed(rpcVerificationRes),
-  }),
-)
-
-export const principal = Fixtures.principal
-export const capabilitiesTest = Fixtures.capabilitiesTest
-export const storageServiceTest = Fixtures.storageServiceTest

package/src/authentication/authenticate.test.ts

@@ -1,249 +0,0 @@
-import { Effect as E, Layer as L, Layer, LogLevel, Logger, Option as O, pipe } from 'effect'
-import { describe, expect, test, vi } from 'vitest'
-import { mock } from 'vitest-mock-extended'
-
-import * as Fixture from './authenticate.fixture.js'
-import { AuthenticationClient } from '../rpc/authentication.js'
-import { StorageService } from '../storage/storage.js'
-import { AuthenticateServiceLive, AuthenticationService, GetCredential } from './authenticate.js'
-
-describe('authenticate should', () => {
-  test('return a valid principal', async () => {
-    const assertions = E.gen(function* (_) {
-      const service = yield* _(AuthenticationService)
-
-      const result = yield* _(
-        service.authenticatePasskey({
-          email: O.none(),
-          userVerification: O.some('preferred'),
-        }),
-      )
-
-      expect(result).toEqual(Fixture.principal)
-    })
-
-    const service = pipe(
-      AuthenticateServiceLive,
-      L.provide(Fixture.getCredentialTest),
-      L.provide(Fixture.capabilitiesTest),
-      L.provide(Fixture.storageServiceTest),
-      L.provide(Fixture.rpcClientTest),
-    )
-
-    const effect = pipe(E.provide(assertions, service), Logger.withMinimumLogLevel(LogLevel.None))
-
-    return E.runPromise(effect)
-  })
-
-  test('pass the authentication request to the backend', async () => {
-    const assertions = E.gen(function* (_) {
-      const service = yield* _(AuthenticationService)
-
-      yield* _(
-        service.authenticatePasskey({
-          email: O.none(),
-          userVerification: O.some('preferred'),
-        }),
-      )
-
-      const rpcClient = yield* _(AuthenticationClient)
-      expect(rpcClient.getAuthenticationOptions).toHaveBeenCalledOnce()
-      expect(rpcClient.verifyAuthenticationCredential).toHaveBeenCalledOnce()
-    })
-
-    const rpcClientTest = L.effect(
-      AuthenticationClient,
-      E.sync(() => {
-        const rpcMock = mock<AuthenticationClient['Type']>()
-
-        rpcMock.getAuthenticationOptions.mockReturnValue(E.succeed(Fixture.rpcOptionsRes))
-        rpcMock.verifyAuthenticationCredential.mockReturnValue(
-          E.succeed(Fixture.rpcVerificationRes),
-        )
-
-        return rpcMock
-      }),
-    )
-
-    const service = pipe(
-      AuthenticateServiceLive,
-      L.provide(Fixture.getCredentialTest),
-      L.provide(Fixture.capabilitiesTest),
-      L.provide(Fixture.storageServiceTest),
-      L.provide(rpcClientTest),
-    )
-
-    const layers = Layer.merge(service, rpcClientTest)
-    const effect = pipe(E.provide(assertions, layers), Logger.withMinimumLogLevel(LogLevel.None))
-
-    return E.runPromise(effect)
-  })
-
-  test('send the credential to the backend', async () => {
-    const assertions = E.gen(function* (_) {
-      const service = yield* _(AuthenticationService)
-
-      yield* _(
-        service.authenticatePasskey({
-          email: O.none(),
-          userVerification: O.some('preferred'),
-        }),
-      )
-
-      const rpcClient = yield* _(AuthenticationClient)
-      expect(rpcClient.getAuthenticationOptions).toHaveBeenCalledOnce()
-      expect(rpcClient.verifyAuthenticationCredential).toHaveBeenCalledWith(
-        Fixture.rpcVerificationReq,
-      )
-    })
-
-    const rpcClientTest = L.effect(
-      AuthenticationClient,
-      E.sync(() => {
-        const rpcMock = mock<AuthenticationClient['Type']>()
-
-        rpcMock.getAuthenticationOptions.mockReturnValue(E.succeed(Fixture.rpcOptionsRes))
-        rpcMock.verifyAuthenticationCredential.mockReturnValue(
-          E.succeed(Fixture.rpcVerificationRes),
-        )
-
-        return rpcMock
-      }),
-    )
-
-    const service = pipe(
-      AuthenticateServiceLive,
-      L.provide(Fixture.getCredentialTest),
-      L.provide(Fixture.capabilitiesTest),
-      L.provide(Fixture.storageServiceTest),
-      L.provide(rpcClientTest),
-    )
-
-    const layers = Layer.merge(service, rpcClientTest)
-    const effect = pipe(E.provide(assertions, layers), Logger.withMinimumLogLevel(LogLevel.None))
-
-    return E.runPromise(effect)
-  })
-
-  test('store the credential in local storage', async () => {
-    const assertions = E.gen(function* (_) {
-      const service = yield* _(AuthenticationService)
-
-      yield* _(
-        service.authenticatePasskey({
-          email: O.none(),
-          userVerification: O.some('preferred'),
-        }),
-      )
-
-      const storageService = yield* _(StorageService)
-      expect(storageService.storeToken).toHaveBeenCalledWith(Fixture.principal)
-    })
-
-    const storageServiceTest = L.effect(
-      StorageService,
-      E.sync(() => {
-        const storageMock = mock<StorageService['Type']>()
-
-        storageMock.storeToken.mockReturnValue(E.void)
-        storageMock.clearExpiredToken.mockReturnValue(E.void)
-
-        return storageMock
-      }),
-    )
-
-    const service = pipe(
-      AuthenticateServiceLive,
-      L.provide(Fixture.getCredentialTest),
-      L.provide(Fixture.capabilitiesTest),
-      L.provide(Fixture.rpcClientTest),
-      L.provide(storageServiceTest),
-    )
-
-    const layers = Layer.merge(service, storageServiceTest)
-    const effect = pipe(E.provide(assertions, layers), Logger.withMinimumLogLevel(LogLevel.None))
-
-    return E.runPromise(effect)
-  })
-
-  test('schedule deletion of the local token', async () => {
-    const assertions = E.gen(function* (_) {
-      const service = yield* _(AuthenticationService)
-
-      yield* _(
-        service.authenticatePasskey({
-          email: O.none(),
-          userVerification: O.some('preferred'),
-        }),
-      )
-
-      const storageService = yield* _(StorageService)
-      expect(storageService.clearExpiredToken).toHaveBeenCalledWith('passkey')
-    })
-
-    const storageServiceTest = L.effect(
-      StorageService,
-      E.sync(() => {
-        const storageMock = mock<StorageService['Type']>()
-
-        storageMock.storeToken.mockReturnValue(E.void)
-        storageMock.clearExpiredToken.mockReturnValue(E.void)
-
-        return storageMock
-      }),
-    )
-
-    const service = pipe(
-      AuthenticateServiceLive,
-      L.provide(Fixture.getCredentialTest),
-      L.provide(Fixture.capabilitiesTest),
-      L.provide(Fixture.rpcClientTest),
-      L.provide(storageServiceTest),
-    )
-
-    const layers = Layer.merge(service, storageServiceTest)
-    const effect = pipe(E.provide(assertions, layers), Logger.withMinimumLogLevel(LogLevel.None))
-
-    return E.runPromise(effect)
-  })
-
-  test("return an error if the browser can't create a credential", async () => {
-    const assertions = E.gen(function* (_) {
-      const service = yield* _(AuthenticationService)
-
-      yield* _(
-        service.authenticatePasskey({
-          email: O.none(),
-          userVerification: O.some('preferred'),
-        }),
-      )
-
-      const { getCredential } = yield* _(GetCredential)
-      expect(getCredential).toHaveBeenCalledOnce()
-    })
-
-    const getCredentialTest = L.effect(
-      GetCredential,
-      E.sync(() => {
-        const getCredential = vi.fn()
-
-        getCredential.mockReturnValue(E.succeed(Fixture.credential))
-
-        return { getCredential }
-      }),
-    )
-
-    const service = pipe(
-      AuthenticateServiceLive,
-      L.provide(Fixture.storageServiceTest),
-      L.provide(Fixture.capabilitiesTest),
-      L.provide(Fixture.rpcClientTest),
-      L.provide(getCredentialTest),
-    )
-
-    const layers = Layer.merge(service, getCredentialTest)
-    const effect = pipe(E.provide(assertions, layers), Logger.withMinimumLogLevel(LogLevel.None))
-
-    return E.runPromise(effect)
-  })
-})

package/src/authentication/authenticate.ts

@@ -1,149 +0,0 @@
-/**
- * Passkey authentication effects
- */
-import {
-  type CredentialRequestOptionsJSON,
-  parseRequestOptionsFromJSON,
-} from '@github/webauthn-json/browser-ponyfill'
-import { Context, Effect as E, Layer, flow, pipe } from 'effect'
-
-import { InternalBrowserError, type NotSupported } from '@passlock/shared/dist/error/error.js'
-import {
-  type OptionsErrors,
-  type OptionsReq,
-  type VerificationErrors,
-  VerificationReq,
-} from '@passlock/shared/dist/rpc/authentication.js'
-import type { AuthenticationCredential } from '@passlock/shared/dist/schema/passkey.js'
-import type { Principal } from '@passlock/shared/dist/schema/principal.js'
-
-import { Capabilities } from '../capabilities/capabilities.js'
-import { AuthenticationClient } from '../rpc/authentication.js'
-import { StorageService } from '../storage/storage.js'
-
-/* Requests */
-
-export type AuthenticationRequest = OptionsReq
-/* Errors */
-
-export type AuthenticationErrors = NotSupported | OptionsErrors | VerificationErrors
-
-/* Dependencies */
-
-export class GetCredential extends Context.Tag('@services/GetCredential')<
-  GetCredential,
-  {
-    getCredential: (
-      request: CredentialRequestOptions,
-    ) => E.Effect<AuthenticationCredential, InternalBrowserError>
-  }
->() {}
-
-/* Service */
-
-export class AuthenticationService extends Context.Tag('@services/AuthenticationService')<
-  AuthenticationService,
-  {
-    authenticatePasskey: (
-      request: AuthenticationRequest,
-    ) => E.Effect<Principal, AuthenticationErrors>
-  }
->() {}
-
-/* Utilities */
-
-const fetchOptions = (request: OptionsReq) => {
-  return E.gen(function* (_) {
-    yield* _(E.logDebug('Making request'))
-
-    const rpcClient = yield* _(AuthenticationClient)
-    const { publicKey, session } = yield* _(rpcClient.getAuthenticationOptions(request))
-
-    yield* _(E.logDebug('Converting Passlock options to CredentialRequestOptions'))
-    const options = yield* _(toRequestOptions({ publicKey }))
-
-    return { options, session }
-  })
-}
-
-const toRequestOptions = (request: CredentialRequestOptionsJSON) => {
-  return pipe(
-    E.try(() => parseRequestOptionsFromJSON(request)),
-    E.mapError(
-      error =>
-        new InternalBrowserError({
-          message: 'Browser was unable to create credential request options',
-          detail: String(error.error),
-        }),
-    ),
-  )
-}
-
-const verifyCredential = (request: VerificationReq) => {
-  return E.gen(function* (_) {
-    yield* _(E.logDebug('Making request'))
-
-    const rpcClient = yield* _(AuthenticationClient)
-    const { principal } = yield* _(rpcClient.verifyAuthenticationCredential(request))
-
-    return principal
-  })
-}
-
-/* Effects */
-
-type Dependencies = GetCredential | Capabilities | StorageService | AuthenticationClient
-
-export const authenticatePasskey = (
-  request: AuthenticationRequest,
-): E.Effect<Principal, AuthenticationErrors, Dependencies> => {
-  const effect = E.gen(function* (_) {
-    yield* _(E.logInfo('Checking if browser supports Passkeys'))
-    const capabilities = yield* _(Capabilities)
-    yield* _(capabilities.passkeySupport)
-
-    yield* _(E.logInfo('Fetching authentication options from Passlock'))
-
-    const { options, session } = yield* _(fetchOptions(request))
-
-    yield* _(E.logInfo('Looking up credential'))
-    const { getCredential } = yield* _(GetCredential)
-    const credential = yield* _(getCredential(options))
-
-    yield* _(E.logInfo('Verifying credential with Passlock'))
-    const principal = yield* _(verifyCredential(new VerificationReq({ credential, session })))
-
-    const storageService = yield* _(StorageService)
-    yield* _(storageService.storeToken(principal))
-    yield* _(E.logDebug('Stored token in local storage'))
-
-    yield* _(E.logDebug('Defering local token deletion'))
-    const delayedClearTokenE = pipe(
-      storageService.clearExpiredToken('passkey'),
-      E.delay('6 minutes'),
-      E.fork,
-    )
-    yield* _(delayedClearTokenE)
-
-    return principal
-  })
-
-  return E.catchTag(effect, 'InternalBrowserError', e => E.die(e))
-}
-
-/* Live */
-
-/* v8 ignore start */
-export const AuthenticateServiceLive = Layer.effect(
-  AuthenticationService,
-  E.gen(function* (_) {
-    const context = yield* _(
-      E.context<GetCredential | AuthenticationClient | Capabilities | StorageService>(),
-    )
-
-    return AuthenticationService.of({
-      authenticatePasskey: flow(authenticatePasskey, E.provide(context)),
-    })
-  }),
-)
-/* v8 ignore stop */

package/src/capabilities/capabilities.ts

@@ -1,83 +0,0 @@
-/**
- * Test if the browser supports passkeys, conditional UI etc
- */
-import { Context, Effect as E, Layer, identity, pipe } from 'effect'
-
-import { NotSupported } from '@passlock/shared/dist/error/error.js'
-
-/* Service */
-
-export class Capabilities extends Context.Tag('@services/Capabilities')<
-  Capabilities,
-  {
-    passkeySupport: E.Effect<void, NotSupported>
-    isPasskeySupport: E.Effect<boolean>
-    autofillSupport: E.Effect<void, NotSupported>
-    isAutofillSupport: E.Effect<boolean>
-  }
->() {}
-
-/* Effects */
-
-const hasWebAuthn = E.suspend(() =>
-  typeof window.PublicKeyCredential === 'function'
-    ? E.void
-    : new NotSupported({ message: 'WebAuthn API is not supported on this device' }),
-)
-
-const hasPlatformAuth = pipe(
-  E.tryPromise(() => window.PublicKeyCredential.isUserVerifyingPlatformAuthenticatorAvailable()),
-  E.filterOrFail(
-    identity,
-    () => new NotSupported({ message: 'No platform authenticator available on this device' }),
-  ),
-  E.asVoid,
-)
-
-const hasConditionalUi = pipe(
-  E.tryPromise({
-    try: () => window.PublicKeyCredential.isConditionalMediationAvailable(),
-    catch: () =>
-      new NotSupported({ message: 'Conditional mediation not available on this device' }),
-  }),
-  E.filterOrFail(
-    identity,
-    () => new NotSupported({ message: 'Conditional mediation not available on this device' }),
-  ),
-  E.asVoid,
-)
-
-export const passkeySupport = pipe(
-  hasWebAuthn,
-  E.andThen(hasPlatformAuth),
-  E.catchTag('UnknownException', e => E.die(e)),
-)
-
-export const isPasskeySupport = pipe(
-  passkeySupport,
-  E.match({
-    onFailure: () => false,
-    onSuccess: () => true,
-  }),
-)
-
-export const autofillSupport = pipe(passkeySupport, E.andThen(hasConditionalUi))
-
-export const isAutofillSupport = pipe(
-  autofillSupport,
-  E.match({
-    onFailure: () => false,
-    onSuccess: () => true,
-  }),
-)
-
-/* Live */
-
-/* v8 ignore start */
-export const capabilitiesLive = Layer.succeed(Capabilities, {
-  passkeySupport,
-  isPasskeySupport,
-  autofillSupport,
-  isAutofillSupport,
-})
-/* v8 ignore stop */