@plainkey/browser 0.4.1 → 0.6.0

package/dist/index.d.ts

@@ -1,30 +1,48 @@
-import { LoginBeginRequest, LoginCompleteResponse, RegistrationBeginRequest, RegistrationCompleteResponse, UserCredentialBeginRequest, UserCredentialCompleteResponse } from "@plainkey/types";
+import { AddPasskeyResult, AuthenticateResult, CreateUserWithPasskeyResult, UserIdentifier } from "@plainkey/types";
 
-//#region src/plainkey-client.d.ts
-type PlainKeyClientParams = {
-  projectId: string;
-  baseUrl?: string;
-};
-declare class PlainKeyClient {
+//#region src/plainKey.d.ts
+
+/**
+ * PlainKey client for the browser. Used to register new users, add passkeys to existing users, and log users in.
+ *
+ * Docs: https://plainkey.io/docs
+ *
+ * @param projectId - Your PlainKey project ID. You can find it in the PlainKey admin dashboard.
+ * @param baseUrl - Set by default to https://api.plainkey.io/api. Change only for development purposes.
+ */
+declare class PlainKey {
   private readonly projectId;
   private readonly baseUrl;
-  constructor(clientParams: PlainKeyClientParams);
+  constructor(projectId: string, baseUrl?: string);
+  /**
+   * Helper to parse response JSON.
+   * Throws error if status code is not 200 OK, if the response is not valid JSON.
+   */
+  private parseResponse;
   /**
-   * Registration of a new user with passkey.
-   * Creates a new user and adds a credential to it.
+   * Registration of a new user with a passkey. Will require user interaction to create a passkey.
+   *
+   * @param userName - A stable unique identifier for the user, like an email address or username.
+   * Can be empty for usernameless login.
    */
-  Registration(beginParams: RegistrationBeginRequest): Promise<RegistrationCompleteResponse>;
+  createUserWithPasskey(userName?: string): Promise<CreateUserWithPasskeyResult>;
   /**
-   * Add credential to existing user.
-   * Requires a valid user authentication token passed in beginParams, which will be sent in the request body.
-   * However, do not store the token in local storage, database, etc. Always keep it in memory.
+   * Adds a passkey to an existing user. Will require user interaction to create a passkey.
+   *
+   * @param userToken - The user authentication token, obtained from login.
+   * Do NOT store it in local storage, database, etc. Always keep it in memory.
+   *
+   * @param userIdentifier - An object with either the user's PlainKey User ID or their userName.
    */
-  AddCredential(beginParams: UserCredentialBeginRequest): Promise<UserCredentialCompleteResponse>;
+  addPasskey(userToken: string, userIdentifier: UserIdentifier): Promise<AddPasskeyResult>;
   /**
-   * Performs a login ceremony.
+   * Authenticates a user. Can be used for login, verification, 2FA, etc.
+   * Will require user interaction to authenticate.
+   *
+   * @param userIdentifier - An object with either the user's PlainKey User ID or their userName.
    */
-  Login(beginParams: LoginBeginRequest): Promise<LoginCompleteResponse>;
+  authenticate(userIdentifier: UserIdentifier): Promise<AuthenticateResult>;
 }
 //#endregion
-export { PlainKeyClient, PlainKeyClientParams };
+export { PlainKey };
 //# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","names":[],"sources":["../src/plainkey-client.ts"],"sourcesContent":[],"mappings":";;;KAsBY,oBAAA;EAAA,SAAA,EAAA,MAAA;EAMC,OAAA,CAAA,EAAA,MAAA;CAIe;AAWM,cAfrB,cAAA,CAeqB;EAAmC,iBAAA,SAAA;EAAR,iBAAA,OAAA;EAwD5C,WAAA,CAAA,YAAA,EAnEW,oBAmEX;EACJ;;;;EAuDkC,YAAA,CAAA,WAAA,EAhHb,wBAgHa,CAAA,EAhHc,OAgHd,CAhHsB,4BAgHtB,CAAA;EAAO;;;;;6BAxDrC,6BACZ,QAAQ;;;;qBAuDc,oBAAoB,QAAQ"}
+{"version":3,"file":"index.d.ts","names":[],"sources":["../src/plainKey.ts"],"sourcesContent":[],"mappings":";;;;;;AAiCA;;;;;;AAuMqC,cAvMxB,QAAA,CAuMwB;EAAyB,iBAAA,SAAA;EAAR,iBAAA,OAAA;EAAO,WAAA,CAAA,SAAA,EAAA,MAAA,EAAA,OAAA,CAAA,EAAA,MAAA;;;;;;;;;;;;4CApJX,QAAQ;;;;;;;;;gDAuEJ,iBAAiB,QAAQ;;;;;;;+BA6E1C,iBAAiB,QAAQ"}

package/dist/index.js

@@ -1,134 +1,205 @@
 import { startAuthentication, startRegistration } from "@simplewebauthn/browser";
 
-//#region src/plainkey-client.ts
-var PlainKeyClient = class {
-	constructor(clientParams) {
-		const { projectId, baseUrl = "https://api.plainkey.io/api" } = clientParams;
+//#region src/plainKey.ts
+/**
+* PlainKey client for the browser. Used to register new users, add passkeys to existing users, and log users in.
+*
+* Docs: https://plainkey.io/docs
+*
+* @param projectId - Your PlainKey project ID. You can find it in the PlainKey admin dashboard.
+* @param baseUrl - Set by default to https://api.plainkey.io/api. Change only for development purposes.
+*/
+var PlainKey = class {
+	constructor(projectId, baseUrl = "https://api.plainkey.io/api") {
+		if (!projectId) throw new Error("Project ID is required");
+		if (!baseUrl) throw new Error("Base URL is required");
 		this.projectId = projectId;
 		this.baseUrl = baseUrl.replace(/\/$/, "");
 	}
 	/**
-	* Registration of a new user with passkey.
-	* Creates a new user and adds a credential to it.
+	* Helper to parse response JSON.
+	* Throws error if status code is not 200 OK, if the response is not valid JSON.
 	*/
-	async Registration(beginParams) {
-		const beginResponse = await fetch(`${this.baseUrl}/user/register/begin`, {
-			method: "POST",
-			headers: {
-				"Content-Type": "application/json",
-				"x-project-id": this.projectId
-			},
-			body: JSON.stringify(beginParams)
-		});
-		if (!beginResponse.ok) {
-			const errorData = await beginResponse.json();
-			throw new Error(errorData.error);
+	async parseResponse(response) {
+		let bodyText;
+		try {
+			bodyText = await response.text();
+		} catch {
+			throw new Error("Network error while reading server response");
 		}
-		const { options, user } = await beginResponse.json();
-		const credential = await startRegistration({ optionsJSON: options });
-		const completeParams = {
-			userIdentifier: { userId: user.id },
-			credential
-		};
-		const completeResponse = await fetch(`${this.baseUrl}/user/register/complete`, {
-			method: "POST",
-			headers: {
-				"Content-Type": "application/json",
-				"x-project-id": this.projectId
-			},
-			body: JSON.stringify(completeParams)
-		});
-		if (!completeResponse.ok) {
-			const errorData = await completeResponse.json();
-			throw new Error(errorData.error);
+		let json;
+		try {
+			json = bodyText ? JSON.parse(bodyText) : {};
+		} catch {
+			if (!response.ok) throw new Error("Server returned an invalid JSON error response");
+			throw new Error("Invalid JSON received from server");
 		}
-		const response = await completeResponse.json();
-		if (!response) throw new Error("No registration response from server");
-		return response;
+		if (!response.ok) {
+			const message = json && typeof json.error === "string" ? json.error : "Unknown server error";
+			throw new Error(message);
+		}
+		return json;
 	}
 	/**
-	* Add credential to existing user.
-	* Requires a valid user authentication token passed in beginParams, which will be sent in the request body.
-	* However, do not store the token in local storage, database, etc. Always keep it in memory.
+	* Registration of a new user with a passkey. Will require user interaction to create a passkey.
+	*
+	* @param userName - A stable unique identifier for the user, like an email address or username.
+	* Can be empty for usernameless login.
 	*/
-	async AddCredential(beginParams) {
-		const beginResponse = await fetch(`${this.baseUrl}/user/credential/begin`, {
-			method: "POST",
-			headers: {
-				"Content-Type": "application/json",
-				"x-project-id": this.projectId
-			},
-			body: JSON.stringify(beginParams)
-		});
-		if (!beginResponse.ok) {
-			const errorData = await beginResponse.json();
-			throw new Error(errorData.error);
-		}
-		const { options, user } = await beginResponse.json();
-		const credential = await startRegistration({ optionsJSON: options });
-		const completeParams = {
-			userToken: beginParams.userToken,
-			userIdentifier: { userId: user.id },
-			credential
-		};
-		const completeResponse = await fetch(`${this.baseUrl}/user/credential/complete`, {
-			method: "POST",
-			headers: {
-				"Content-Type": "application/json",
-				"x-project-id": this.projectId
-			},
-			body: JSON.stringify(completeParams)
-		});
-		if (!completeResponse.ok) {
-			const errorData = await completeResponse.json();
-			throw new Error(errorData.error);
+	async createUserWithPasskey(userName) {
+		try {
+			const beginParams = { userName };
+			const beginResponse = await fetch(`${this.baseUrl}/user/register/begin`, {
+				method: "POST",
+				headers: {
+					"Content-Type": "application/json",
+					"x-project-id": this.projectId
+				},
+				body: JSON.stringify(beginParams)
+			});
+			const { options, user } = await this.parseResponse(beginResponse);
+			const credential = await startRegistration({ optionsJSON: options });
+			const completeParams = {
+				userIdentifier: { userId: user.id },
+				credential
+			};
+			const completeResponse = await fetch(`${this.baseUrl}/user/register/complete`, {
+				method: "POST",
+				headers: {
+					"Content-Type": "application/json",
+					"x-project-id": this.projectId
+				},
+				body: JSON.stringify(completeParams)
+			});
+			const completeResponseData = await this.parseResponse(completeResponse);
+			if (!completeResponseData.success) throw new Error("Server could not complete registration");
+			return {
+				success: completeResponseData.success,
+				data: {
+					user: completeResponseData.user,
+					token: completeResponseData.token,
+					credential: completeResponseData.credential,
+					session: completeResponseData.session
+				}
+			};
+		} catch (error) {
+			return {
+				success: false,
+				error: { message: error instanceof Error ? error.message : "Unknown error" }
+			};
 		}
-		const response = await completeResponse.json();
-		if (!response) throw new Error("No credential registration response from server");
-		return response;
 	}
 	/**
-	* Performs a login ceremony.
+	* Adds a passkey to an existing user. Will require user interaction to create a passkey.
+	*
+	* @param userToken - The user authentication token, obtained from login.
+	* Do NOT store it in local storage, database, etc. Always keep it in memory.
+	*
+	* @param userIdentifier - An object with either the user's PlainKey User ID or their userName.
 	*/
-	async Login(beginParams) {
-		const beginResponse = await fetch(`${this.baseUrl}/login/begin`, {
-			method: "POST",
-			headers: {
-				"Content-Type": "application/json",
-				"x-project-id": this.projectId
-			},
-			body: JSON.stringify(beginParams)
-		});
-		if (!beginResponse.ok) {
-			const errorData = await beginResponse.json();
-			throw new Error(errorData.error);
+	async addPasskey(userToken, userIdentifier) {
+		try {
+			if (!userIdentifier) throw new Error("User identifier is required");
+			if (!userIdentifier.userId && !userIdentifier.userName) throw new Error("Either a userId or a userName is required");
+			const beginParams = {
+				userToken,
+				userIdentifier
+			};
+			const beginResponse = await fetch(`${this.baseUrl}/user/credential/begin`, {
+				method: "POST",
+				headers: {
+					"Content-Type": "application/json",
+					"x-project-id": this.projectId
+				},
+				body: JSON.stringify(beginParams)
+			});
+			const { options, user } = await this.parseResponse(beginResponse);
+			const credential = await startRegistration({ optionsJSON: options });
+			const completeParams = {
+				userToken: beginParams.userToken,
+				userIdentifier: { userId: user.id },
+				credential
+			};
+			const completeResponse = await fetch(`${this.baseUrl}/user/credential/complete`, {
+				method: "POST",
+				headers: {
+					"Content-Type": "application/json",
+					"x-project-id": this.projectId
+				},
+				body: JSON.stringify(completeParams)
+			});
+			const completeResponseData = await this.parseResponse(completeResponse);
+			if (!completeResponseData.success) throw new Error("Server could not complete passkey registration");
+			return {
+				success: completeResponseData.success,
+				data: {
+					user: completeResponseData.user,
+					token: completeResponseData.token,
+					credential: completeResponseData.credential,
+					session: completeResponseData.session
+				}
+			};
+		} catch (error) {
+			return {
+				success: false,
+				error: { message: error instanceof Error ? error.message : "Unknown error" }
+			};
 		}
-		const beginResponseData = await beginResponse.json();
-		if (!beginResponseData.options) throw new Error("No options found in login begin response");
-		const authenticationResponse = await startAuthentication({ optionsJSON: beginResponseData.options });
-		if (!authenticationResponse) throw new Error("No authentication response from browser");
-		const completeParams = {
-			loginSessionId: beginResponseData.loginSession.id,
-			authenticationResponse
-		};
-		const verificationResponse = await fetch(`${this.baseUrl}/login/complete`, {
-			method: "POST",
-			headers: {
-				"Content-Type": "application/json",
-				"x-project-id": this.projectId
-			},
-			body: JSON.stringify(completeParams)
-		});
-		if (!verificationResponse.ok) {
-			const errorData = await verificationResponse.json();
-			throw new Error(errorData.error);
+	}
+	/**
+	* Authenticates a user. Can be used for login, verification, 2FA, etc.
+	* Will require user interaction to authenticate.
+	*
+	* @param userIdentifier - An object with either the user's PlainKey User ID or their userName.
+	*/
+	async authenticate(userIdentifier) {
+		if (!userIdentifier) throw new Error("User identifier is required");
+		if (!userIdentifier.userId && !userIdentifier.userName) throw new Error("Either a userId or a userName is required");
+		try {
+			const beginParams = { userIdentifier };
+			const beginResponse = await fetch(`${this.baseUrl}/login/begin`, {
+				method: "POST",
+				headers: {
+					"Content-Type": "application/json",
+					"x-project-id": this.projectId
+				},
+				body: JSON.stringify(beginParams)
+			});
+			const beginResponseData = await this.parseResponse(beginResponse);
+			if (!beginResponseData.options) throw new Error("Server returned no options in login begin response");
+			const authenticationResponse = await startAuthentication({ optionsJSON: beginResponseData.options });
+			if (!authenticationResponse) throw new Error("No authentication response from browser");
+			const completeParams = {
+				loginSessionId: beginResponseData.loginSession.id,
+				authenticationResponse
+			};
+			const verificationResponse = await fetch(`${this.baseUrl}/login/complete`, {
+				method: "POST",
+				headers: {
+					"Content-Type": "application/json",
+					"x-project-id": this.projectId
+				},
+				body: JSON.stringify(completeParams)
+			});
+			const verificationResponseData = await this.parseResponse(verificationResponse);
+			if (!verificationResponseData.verified) throw new Error("Server could not verify login");
+			return {
+				success: verificationResponseData.verified,
+				data: {
+					user: verificationResponseData.user,
+					token: verificationResponseData.token,
+					session: verificationResponseData.session
+				}
+			};
+		} catch (error) {
+			return {
+				success: false,
+				error: { message: error instanceof Error ? error.message : "Unknown error" }
+			};
 		}
-		const verificationResponseData = await verificationResponse.json();
-		if (!verificationResponseData) throw new Error("No login verification response from server");
-		return verificationResponseData;
 	}
 };
 
 //#endregion
-export { PlainKeyClient };
+export { PlainKey };
 //# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","names":["errorData: ErrorResponse","credential: RegistrationResponseJSON","completeParams: RegistrationCompleteRequest","response: RegistrationCompleteResponse","completeParams: UserCredentialCompleteRequest","response: UserCredentialCompleteResponse","beginResponseData: LoginBeginResponse","authenticationResponse: AuthenticationResponseJSON","completeParams: LoginCompleteRequest","verificationResponseData: LoginCompleteResponse"],"sources":["../src/plainkey-client.ts"],"sourcesContent":["import { startAuthentication, startRegistration } from \"@simplewebauthn/browser\"\nimport { RegistrationResponseJSON, AuthenticationResponseJSON } from \"@simplewebauthn/browser\"\n\nimport type {\n  RegistrationBeginRequest,\n  RegistrationCompleteRequest,\n  UserCredentialBeginRequest,\n  UserCredentialCompleteRequest,\n  LoginBeginRequest,\n  LoginCompleteRequest\n} from \"@plainkey/types\"\n\nimport type {\n  RegistrationBeginResponse,\n  RegistrationCompleteResponse,\n  UserCredentialBeginResponse,\n  UserCredentialCompleteResponse,\n  LoginBeginResponse,\n  LoginCompleteResponse,\n  ErrorResponse\n} from \"@plainkey/types\"\n\nexport type PlainKeyClientParams = {\n  projectId: string\n  baseUrl?: string\n}\n\n// TODO: Account for errors like this: \"Unexpected token 'R', \"Response v\"... is not valid JSON\"\nexport class PlainKeyClient {\n  private readonly projectId: string\n  private readonly baseUrl: string\n\n  constructor(clientParams: PlainKeyClientParams) {\n    const { projectId, baseUrl = \"https://api.plainkey.io/api\" } = clientParams\n\n    this.projectId = projectId\n    this.baseUrl = baseUrl.replace(/\\/$/, \"\") // Remove trailing slash\n  }\n\n  /**\n   * Registration of a new user with passkey.\n   * Creates a new user and adds a credential to it.\n   */\n  async Registration(beginParams: RegistrationBeginRequest): Promise<RegistrationCompleteResponse> {\n    // Step 1: Get registration options from server\n    const beginResponse = await fetch(`${this.baseUrl}/user/register/begin`, {\n      method: \"POST\",\n      headers: {\n        \"Content-Type\": \"application/json\",\n        \"x-project-id\": this.projectId\n      },\n      body: JSON.stringify(beginParams)\n    })\n\n    if (!beginResponse.ok) {\n      const errorData: ErrorResponse = await beginResponse.json()\n      throw new Error(errorData.error)\n    }\n\n    const { options, user } = (await beginResponse.json()) as RegistrationBeginResponse\n\n    // Step 2: Create credential using browser's WebAuthn API\n    const credential: RegistrationResponseJSON = await startRegistration({\n      optionsJSON: options\n    })\n\n    // Step 3: Send credential to server for verification\n    const completeParams: RegistrationCompleteRequest = {\n      userIdentifier: { userId: user.id },\n      credential\n    }\n\n    const completeResponse = await fetch(`${this.baseUrl}/user/register/complete`, {\n      method: \"POST\",\n      headers: {\n        \"Content-Type\": \"application/json\",\n        \"x-project-id\": this.projectId\n      },\n      body: JSON.stringify(completeParams)\n    })\n\n    if (!completeResponse.ok) {\n      const errorData: ErrorResponse = await completeResponse.json()\n      throw new Error(errorData.error)\n    }\n\n    // Intentionally not throwing errors on verification failure - UI should handle this.\n    const response: RegistrationCompleteResponse = await completeResponse.json()\n    if (!response) throw new Error(\"No registration response from server\")\n\n    return response\n  }\n\n  /**\n   * Add credential to existing user.\n   * Requires a valid user authentication token passed in beginParams, which will be sent in the request body.\n   * However, do not store the token in local storage, database, etc. Always keep it in memory.\n   */\n  async AddCredential(\n    beginParams: UserCredentialBeginRequest\n  ): Promise<UserCredentialCompleteResponse> {\n    // Step 1: Get credential registration options from server\n\n    const beginResponse = await fetch(`${this.baseUrl}/user/credential/begin`, {\n      method: \"POST\",\n      headers: {\n        \"Content-Type\": \"application/json\",\n        \"x-project-id\": this.projectId\n      },\n      body: JSON.stringify(beginParams)\n    })\n\n    if (!beginResponse.ok) {\n      const errorData: ErrorResponse = await beginResponse.json()\n      throw new Error(errorData.error)\n    }\n\n    const { options, user } = (await beginResponse.json()) as UserCredentialBeginResponse\n\n    // Step 2: Create credential using browser's WebAuthn API\n    const credential: RegistrationResponseJSON = await startRegistration({\n      optionsJSON: options\n    })\n\n    // Step 3: Send credential to server for verification\n    const completeParams: UserCredentialCompleteRequest = {\n      userToken: beginParams.userToken,\n      userIdentifier: { userId: user.id },\n      credential\n    }\n\n    const completeResponse = await fetch(`${this.baseUrl}/user/credential/complete`, {\n      method: \"POST\",\n      headers: {\n        \"Content-Type\": \"application/json\",\n        \"x-project-id\": this.projectId\n      },\n      body: JSON.stringify(completeParams)\n    })\n\n    if (!completeResponse.ok) {\n      const errorData: ErrorResponse = await completeResponse.json()\n      throw new Error(errorData.error)\n    }\n\n    // Intentionally not throwing errors on verification failure - UI should handle this.\n    const response: UserCredentialCompleteResponse = await completeResponse.json()\n    if (!response) throw new Error(\"No credential registration response from server\")\n\n    return response\n  }\n\n  /**\n   * Performs a login ceremony.\n   */\n  async Login(beginParams: LoginBeginRequest): Promise<LoginCompleteResponse> {\n    // Step 1: Get authentication options from server\n    const beginResponse = await fetch(`${this.baseUrl}/login/begin`, {\n      method: \"POST\",\n      headers: {\n        \"Content-Type\": \"application/json\",\n        \"x-project-id\": this.projectId\n      },\n      body: JSON.stringify(beginParams)\n    })\n\n    if (!beginResponse.ok) {\n      const errorData: ErrorResponse = await beginResponse.json()\n      throw new Error(errorData.error)\n    }\n\n    const beginResponseData: LoginBeginResponse = await beginResponse.json()\n    if (!beginResponseData.options) {\n      throw new Error(\"No options found in login begin response\")\n    }\n\n    // Step 2: Pass options to the authenticator and wait for response\n    const authenticationResponse: AuthenticationResponseJSON = await startAuthentication({\n      optionsJSON: beginResponseData.options\n    })\n\n    if (!authenticationResponse) {\n      throw new Error(\"No authentication response from browser\")\n    }\n\n    // Step 3: POST the response to the server\n    // This uses the login session ID from the begin response - always in JS memory.\n    // Do not store it in local storage, database, etc.\n    const completeParams: LoginCompleteRequest = {\n      loginSessionId: beginResponseData.loginSession.id,\n      authenticationResponse\n    }\n\n    const verificationResponse = await fetch(`${this.baseUrl}/login/complete`, {\n      method: \"POST\",\n      headers: {\n        \"Content-Type\": \"application/json\",\n        \"x-project-id\": this.projectId\n      },\n      body: JSON.stringify(completeParams)\n    })\n\n    if (!verificationResponse.ok) {\n      const errorData: ErrorResponse = await verificationResponse.json()\n      throw new Error(errorData.error)\n    }\n\n    // Intentionally not throwing errors on verification failure - UI should handle this.\n    const verificationResponseData: LoginCompleteResponse = await verificationResponse.json()\n    if (!verificationResponseData) throw new Error(\"No login verification response from server\")\n\n    return verificationResponseData\n  }\n}\n"],"mappings":";;;AA4BA,IAAa,iBAAb,MAA4B;CAI1B,YAAY,cAAoC;EAC9C,MAAM,EAAE,WAAW,UAAU,kCAAkC;AAE/D,OAAK,YAAY;AACjB,OAAK,UAAU,QAAQ,QAAQ,OAAO,GAAG;;;;;;CAO3C,MAAM,aAAa,aAA8E;EAE/F,MAAM,gBAAgB,MAAM,MAAM,GAAG,KAAK,QAAQ,uBAAuB;GACvE,QAAQ;GACR,SAAS;IACP,gBAAgB;IAChB,gBAAgB,KAAK;IACtB;GACD,MAAM,KAAK,UAAU,YAAY;GAClC,CAAC;AAEF,MAAI,CAAC,cAAc,IAAI;GACrB,MAAMA,YAA2B,MAAM,cAAc,MAAM;AAC3D,SAAM,IAAI,MAAM,UAAU,MAAM;;EAGlC,MAAM,EAAE,SAAS,SAAU,MAAM,cAAc,MAAM;EAGrD,MAAMC,aAAuC,MAAM,kBAAkB,EACnE,aAAa,SACd,CAAC;EAGF,MAAMC,iBAA8C;GAClD,gBAAgB,EAAE,QAAQ,KAAK,IAAI;GACnC;GACD;EAED,MAAM,mBAAmB,MAAM,MAAM,GAAG,KAAK,QAAQ,0BAA0B;GAC7E,QAAQ;GACR,SAAS;IACP,gBAAgB;IAChB,gBAAgB,KAAK;IACtB;GACD,MAAM,KAAK,UAAU,eAAe;GACrC,CAAC;AAEF,MAAI,CAAC,iBAAiB,IAAI;GACxB,MAAMF,YAA2B,MAAM,iBAAiB,MAAM;AAC9D,SAAM,IAAI,MAAM,UAAU,MAAM;;EAIlC,MAAMG,WAAyC,MAAM,iBAAiB,MAAM;AAC5E,MAAI,CAAC,SAAU,OAAM,IAAI,MAAM,uCAAuC;AAEtE,SAAO;;;;;;;CAQT,MAAM,cACJ,aACyC;EAGzC,MAAM,gBAAgB,MAAM,MAAM,GAAG,KAAK,QAAQ,yBAAyB;GACzE,QAAQ;GACR,SAAS;IACP,gBAAgB;IAChB,gBAAgB,KAAK;IACtB;GACD,MAAM,KAAK,UAAU,YAAY;GAClC,CAAC;AAEF,MAAI,CAAC,cAAc,IAAI;GACrB,MAAMH,YAA2B,MAAM,cAAc,MAAM;AAC3D,SAAM,IAAI,MAAM,UAAU,MAAM;;EAGlC,MAAM,EAAE,SAAS,SAAU,MAAM,cAAc,MAAM;EAGrD,MAAMC,aAAuC,MAAM,kBAAkB,EACnE,aAAa,SACd,CAAC;EAGF,MAAMG,iBAAgD;GACpD,WAAW,YAAY;GACvB,gBAAgB,EAAE,QAAQ,KAAK,IAAI;GACnC;GACD;EAED,MAAM,mBAAmB,MAAM,MAAM,GAAG,KAAK,QAAQ,4BAA4B;GAC/E,QAAQ;GACR,SAAS;IACP,gBAAgB;IAChB,gBAAgB,KAAK;IACtB;GACD,MAAM,KAAK,UAAU,eAAe;GACrC,CAAC;AAEF,MAAI,CAAC,iBAAiB,IAAI;GACxB,MAAMJ,YAA2B,MAAM,iBAAiB,MAAM;AAC9D,SAAM,IAAI,MAAM,UAAU,MAAM;;EAIlC,MAAMK,WAA2C,MAAM,iBAAiB,MAAM;AAC9E,MAAI,CAAC,SAAU,OAAM,IAAI,MAAM,kDAAkD;AAEjF,SAAO;;;;;CAMT,MAAM,MAAM,aAAgE;EAE1E,MAAM,gBAAgB,MAAM,MAAM,GAAG,KAAK,QAAQ,eAAe;GAC/D,QAAQ;GACR,SAAS;IACP,gBAAgB;IAChB,gBAAgB,KAAK;IACtB;GACD,MAAM,KAAK,UAAU,YAAY;GAClC,CAAC;AAEF,MAAI,CAAC,cAAc,IAAI;GACrB,MAAML,YAA2B,MAAM,cAAc,MAAM;AAC3D,SAAM,IAAI,MAAM,UAAU,MAAM;;EAGlC,MAAMM,oBAAwC,MAAM,cAAc,MAAM;AACxE,MAAI,CAAC,kBAAkB,QACrB,OAAM,IAAI,MAAM,2CAA2C;EAI7D,MAAMC,yBAAqD,MAAM,oBAAoB,EACnF,aAAa,kBAAkB,SAChC,CAAC;AAEF,MAAI,CAAC,uBACH,OAAM,IAAI,MAAM,0CAA0C;EAM5D,MAAMC,iBAAuC;GAC3C,gBAAgB,kBAAkB,aAAa;GAC/C;GACD;EAED,MAAM,uBAAuB,MAAM,MAAM,GAAG,KAAK,QAAQ,kBAAkB;GACzE,QAAQ;GACR,SAAS;IACP,gBAAgB;IAChB,gBAAgB,KAAK;IACtB;GACD,MAAM,KAAK,UAAU,eAAe;GACrC,CAAC;AAEF,MAAI,CAAC,qBAAqB,IAAI;GAC5B,MAAMR,YAA2B,MAAM,qBAAqB,MAAM;AAClE,SAAM,IAAI,MAAM,UAAU,MAAM;;EAIlC,MAAMS,2BAAkD,MAAM,qBAAqB,MAAM;AACzF,MAAI,CAAC,yBAA0B,OAAM,IAAI,MAAM,6CAA6C;AAE5F,SAAO"}
+{"version":3,"file":"index.js","names":["bodyText: string","json: any","beginParams: RegistrationBeginRequest","credential: RegistrationResponseJSON","completeParams: RegistrationCompleteRequest","completeResponseData: RegistrationCompleteResponse","beginParams: UserCredentialBeginRequest","completeParams: UserCredentialCompleteRequest","completeResponseData: UserCredentialCompleteResponse","beginParams: LoginBeginRequest","beginResponseData: LoginBeginResponse","authenticationResponse: AuthenticationResponseJSON","completeParams: LoginCompleteRequest","verificationResponseData: LoginCompleteResponse"],"sources":["../src/plainKey.ts"],"sourcesContent":["import { startAuthentication, startRegistration } from \"@simplewebauthn/browser\"\nimport { RegistrationResponseJSON, AuthenticationResponseJSON } from \"@simplewebauthn/browser\"\n\nimport type {\n  RegistrationBeginRequest,\n  RegistrationCompleteRequest,\n  UserCredentialBeginRequest,\n  UserCredentialCompleteRequest,\n  LoginBeginRequest,\n  LoginCompleteRequest,\n  UserIdentifier,\n  CreateUserWithPasskeyResult,\n  AddPasskeyResult,\n  AuthenticateResult\n} from \"@plainkey/types\"\n\nimport type {\n  RegistrationBeginResponse,\n  RegistrationCompleteResponse,\n  UserCredentialBeginResponse,\n  UserCredentialCompleteResponse,\n  LoginBeginResponse,\n  LoginCompleteResponse\n} from \"@plainkey/types\"\n\n/**\n * PlainKey client for the browser. Used to register new users, add passkeys to existing users, and log users in.\n *\n * Docs: https://plainkey.io/docs\n *\n * @param projectId - Your PlainKey project ID. You can find it in the PlainKey admin dashboard.\n * @param baseUrl - Set by default to https://api.plainkey.io/api. Change only for development purposes.\n */\nexport class PlainKey {\n  private readonly projectId: string\n  private readonly baseUrl: string\n\n  constructor(projectId: string, baseUrl: string = \"https://api.plainkey.io/api\") {\n    if (!projectId) throw new Error(\"Project ID is required\")\n    if (!baseUrl) throw new Error(\"Base URL is required\")\n\n    this.projectId = projectId\n    this.baseUrl = baseUrl.replace(/\\/$/, \"\") // Remove trailing slash\n  }\n\n  /**\n   * Helper to parse response JSON.\n   * Throws error if status code is not 200 OK, if the response is not valid JSON.\n   */\n  private async parseResponse<T = any>(response: Response): Promise<T> {\n    let bodyText: string\n\n    // Read as text first to avoid JSON.parse errors on any HTML/plaintext error responses.\n    try {\n      bodyText = await response.text()\n    } catch {\n      throw new Error(\"Network error while reading server response\")\n    }\n\n    // Parse the response text as JSON.\n    let json: any\n\n    try {\n      json = bodyText ? JSON.parse(bodyText) : {}\n    } catch {\n      if (!response.ok) throw new Error(\"Server returned an invalid JSON error response\")\n      throw new Error(\"Invalid JSON received from server\")\n    }\n\n    if (!response.ok) {\n      // Server should return { error: string }\n      const message = json && typeof json.error === \"string\" ? json.error : \"Unknown server error\"\n      throw new Error(message)\n    }\n\n    return json as T\n  }\n\n  /**\n   * Registration of a new user with a passkey. Will require user interaction to create a passkey.\n   *\n   * @param userName - A stable unique identifier for the user, like an email address or username.\n   * Can be empty for usernameless login.\n   */\n  async createUserWithPasskey(userName?: string): Promise<CreateUserWithPasskeyResult> {\n    try {\n      // Step 1: Get registration options from server\n      const beginParams: RegistrationBeginRequest = { userName }\n      const beginResponse = await fetch(`${this.baseUrl}/user/register/begin`, {\n        method: \"POST\",\n        headers: {\n          \"Content-Type\": \"application/json\",\n          \"x-project-id\": this.projectId\n        },\n        body: JSON.stringify(beginParams)\n      })\n\n      // Parse response JSON\n      const { options, user } = await this.parseResponse<RegistrationBeginResponse>(beginResponse)\n\n      // Step 2: Create credential using browser's WebAuthn API\n      const credential: RegistrationResponseJSON = await startRegistration({\n        optionsJSON: options\n      })\n\n      // Step 3: Send credential to server for verification\n      const completeParams: RegistrationCompleteRequest = {\n        userIdentifier: { userId: user.id },\n        credential\n      }\n\n      const completeResponse = await fetch(`${this.baseUrl}/user/register/complete`, {\n        method: \"POST\",\n        headers: {\n          \"Content-Type\": \"application/json\",\n          \"x-project-id\": this.projectId\n        },\n        body: JSON.stringify(completeParams)\n      })\n\n      // Parse response JSON\n      const completeResponseData: RegistrationCompleteResponse =\n        await this.parseResponse<RegistrationCompleteResponse>(completeResponse)\n\n      if (!completeResponseData.success) throw new Error(\"Server could not complete registration\")\n\n      // Return success\n      return {\n        success: completeResponseData.success,\n        data: {\n          user: completeResponseData.user,\n          token: completeResponseData.token,\n          credential: completeResponseData.credential,\n          session: completeResponseData.session\n        }\n      }\n    } catch (error) {\n      // Return error\n      return {\n        success: false,\n        error: {\n          message: error instanceof Error ? error.message : \"Unknown error\"\n        }\n      }\n    }\n  }\n\n  /**\n   * Adds a passkey to an existing user. Will require user interaction to create a passkey.\n   *\n   * @param userToken - The user authentication token, obtained from login.\n   * Do NOT store it in local storage, database, etc. Always keep it in memory.\n   *\n   * @param userIdentifier - An object with either the user's PlainKey User ID or their userName.\n   */\n  async addPasskey(userToken: string, userIdentifier: UserIdentifier): Promise<AddPasskeyResult> {\n    try {\n      // Validate user identifier\n      if (!userIdentifier) throw new Error(\"User identifier is required\")\n      if (!userIdentifier.userId && !userIdentifier.userName)\n        throw new Error(\"Either a userId or a userName is required\")\n\n      // Step 1: Get credential registration options from server\n      const beginParams: UserCredentialBeginRequest = { userToken, userIdentifier }\n      const beginResponse = await fetch(`${this.baseUrl}/user/credential/begin`, {\n        method: \"POST\",\n        headers: {\n          \"Content-Type\": \"application/json\",\n          \"x-project-id\": this.projectId\n        },\n        body: JSON.stringify(beginParams)\n      })\n\n      // Parse response JSON\n      const { options, user }: UserCredentialBeginResponse =\n        await this.parseResponse<UserCredentialBeginResponse>(beginResponse)\n\n      // Step 2: Create credential using browser's WebAuthn API\n      const credential: RegistrationResponseJSON = await startRegistration({\n        optionsJSON: options\n      })\n\n      // Step 3: Send credential to server for verification\n      const completeParams: UserCredentialCompleteRequest = {\n        userToken: beginParams.userToken,\n        userIdentifier: { userId: user.id },\n        credential\n      }\n\n      const completeResponse = await fetch(`${this.baseUrl}/user/credential/complete`, {\n        method: \"POST\",\n        headers: {\n          \"Content-Type\": \"application/json\",\n          \"x-project-id\": this.projectId\n        },\n        body: JSON.stringify(completeParams)\n      })\n\n      // Parse response JSON\n      const completeResponseData: UserCredentialCompleteResponse =\n        await this.parseResponse<UserCredentialCompleteResponse>(completeResponse)\n\n      if (!completeResponseData.success)\n        throw new Error(\"Server could not complete passkey registration\")\n\n      // Return success\n      return {\n        success: completeResponseData.success,\n        data: {\n          user: completeResponseData.user,\n          token: completeResponseData.token,\n          credential: completeResponseData.credential,\n          session: completeResponseData.session\n        }\n      }\n    } catch (error) {\n      // Return error\n      return {\n        success: false,\n        error: {\n          message: error instanceof Error ? error.message : \"Unknown error\"\n        }\n      }\n    }\n  }\n\n  /**\n   * Authenticates a user. Can be used for login, verification, 2FA, etc.\n   * Will require user interaction to authenticate.\n   *\n   * @param userIdentifier - An object with either the user's PlainKey User ID or their userName.\n   */\n  async authenticate(userIdentifier: UserIdentifier): Promise<AuthenticateResult> {\n    // Validate user identifier\n    if (!userIdentifier) throw new Error(\"User identifier is required\")\n    if (!userIdentifier.userId && !userIdentifier.userName)\n      throw new Error(\"Either a userId or a userName is required\")\n\n    try {\n      // Step 1: Get authentication options from server\n      const beginParams: LoginBeginRequest = { userIdentifier }\n      const beginResponse = await fetch(`${this.baseUrl}/login/begin`, {\n        method: \"POST\",\n        headers: {\n          \"Content-Type\": \"application/json\",\n          \"x-project-id\": this.projectId\n        },\n        body: JSON.stringify(beginParams)\n      })\n\n      // Parse response JSON\n      const beginResponseData: LoginBeginResponse =\n        await this.parseResponse<LoginBeginResponse>(beginResponse)\n\n      if (!beginResponseData.options)\n        throw new Error(\"Server returned no options in login begin response\")\n\n      // Step 2: Pass options to the authenticator and wait for response\n      const authenticationResponse: AuthenticationResponseJSON = await startAuthentication({\n        optionsJSON: beginResponseData.options\n      })\n\n      if (!authenticationResponse) throw new Error(\"No authentication response from browser\")\n\n      // Step 3: POST the response to the server\n      // This uses the login session ID from the begin response - always in JS memory.\n      // Do not store it in local storage, database, etc.\n      const completeParams: LoginCompleteRequest = {\n        loginSessionId: beginResponseData.loginSession.id,\n        authenticationResponse\n      }\n\n      const verificationResponse = await fetch(`${this.baseUrl}/login/complete`, {\n        method: \"POST\",\n        headers: {\n          \"Content-Type\": \"application/json\",\n          \"x-project-id\": this.projectId\n        },\n        body: JSON.stringify(completeParams)\n      })\n\n      const verificationResponseData: LoginCompleteResponse =\n        await this.parseResponse<LoginCompleteResponse>(verificationResponse)\n\n      if (!verificationResponseData.verified) throw new Error(\"Server could not verify login\")\n\n      // Return success\n      return {\n        success: verificationResponseData.verified,\n        data: {\n          user: verificationResponseData.user,\n          token: verificationResponseData.token,\n          session: verificationResponseData.session\n        }\n      }\n    } catch (error) {\n      // Return error\n      return {\n        success: false,\n        error: {\n          message: error instanceof Error ? error.message : \"Unknown error\"\n        }\n      }\n    }\n  }\n}\n"],"mappings":";;;;;;;;;;;AAiCA,IAAa,WAAb,MAAsB;CAIpB,YAAY,WAAmB,UAAkB,+BAA+B;AAC9E,MAAI,CAAC,UAAW,OAAM,IAAI,MAAM,yBAAyB;AACzD,MAAI,CAAC,QAAS,OAAM,IAAI,MAAM,uBAAuB;AAErD,OAAK,YAAY;AACjB,OAAK,UAAU,QAAQ,QAAQ,OAAO,GAAG;;;;;;CAO3C,MAAc,cAAuB,UAAgC;EACnE,IAAIA;AAGJ,MAAI;AACF,cAAW,MAAM,SAAS,MAAM;UAC1B;AACN,SAAM,IAAI,MAAM,8CAA8C;;EAIhE,IAAIC;AAEJ,MAAI;AACF,UAAO,WAAW,KAAK,MAAM,SAAS,GAAG,EAAE;UACrC;AACN,OAAI,CAAC,SAAS,GAAI,OAAM,IAAI,MAAM,iDAAiD;AACnF,SAAM,IAAI,MAAM,oCAAoC;;AAGtD,MAAI,CAAC,SAAS,IAAI;GAEhB,MAAM,UAAU,QAAQ,OAAO,KAAK,UAAU,WAAW,KAAK,QAAQ;AACtE,SAAM,IAAI,MAAM,QAAQ;;AAG1B,SAAO;;;;;;;;CAST,MAAM,sBAAsB,UAAyD;AACnF,MAAI;GAEF,MAAMC,cAAwC,EAAE,UAAU;GAC1D,MAAM,gBAAgB,MAAM,MAAM,GAAG,KAAK,QAAQ,uBAAuB;IACvE,QAAQ;IACR,SAAS;KACP,gBAAgB;KAChB,gBAAgB,KAAK;KACtB;IACD,MAAM,KAAK,UAAU,YAAY;IAClC,CAAC;GAGF,MAAM,EAAE,SAAS,SAAS,MAAM,KAAK,cAAyC,cAAc;GAG5F,MAAMC,aAAuC,MAAM,kBAAkB,EACnE,aAAa,SACd,CAAC;GAGF,MAAMC,iBAA8C;IAClD,gBAAgB,EAAE,QAAQ,KAAK,IAAI;IACnC;IACD;GAED,MAAM,mBAAmB,MAAM,MAAM,GAAG,KAAK,QAAQ,0BAA0B;IAC7E,QAAQ;IACR,SAAS;KACP,gBAAgB;KAChB,gBAAgB,KAAK;KACtB;IACD,MAAM,KAAK,UAAU,eAAe;IACrC,CAAC;GAGF,MAAMC,uBACJ,MAAM,KAAK,cAA4C,iBAAiB;AAE1E,OAAI,CAAC,qBAAqB,QAAS,OAAM,IAAI,MAAM,yCAAyC;AAG5F,UAAO;IACL,SAAS,qBAAqB;IAC9B,MAAM;KACJ,MAAM,qBAAqB;KAC3B,OAAO,qBAAqB;KAC5B,YAAY,qBAAqB;KACjC,SAAS,qBAAqB;KAC/B;IACF;WACM,OAAO;AAEd,UAAO;IACL,SAAS;IACT,OAAO,EACL,SAAS,iBAAiB,QAAQ,MAAM,UAAU,iBACnD;IACF;;;;;;;;;;;CAYL,MAAM,WAAW,WAAmB,gBAA2D;AAC7F,MAAI;AAEF,OAAI,CAAC,eAAgB,OAAM,IAAI,MAAM,8BAA8B;AACnE,OAAI,CAAC,eAAe,UAAU,CAAC,eAAe,SAC5C,OAAM,IAAI,MAAM,4CAA4C;GAG9D,MAAMC,cAA0C;IAAE;IAAW;IAAgB;GAC7E,MAAM,gBAAgB,MAAM,MAAM,GAAG,KAAK,QAAQ,yBAAyB;IACzE,QAAQ;IACR,SAAS;KACP,gBAAgB;KAChB,gBAAgB,KAAK;KACtB;IACD,MAAM,KAAK,UAAU,YAAY;IAClC,CAAC;GAGF,MAAM,EAAE,SAAS,SACf,MAAM,KAAK,cAA2C,cAAc;GAGtE,MAAMH,aAAuC,MAAM,kBAAkB,EACnE,aAAa,SACd,CAAC;GAGF,MAAMI,iBAAgD;IACpD,WAAW,YAAY;IACvB,gBAAgB,EAAE,QAAQ,KAAK,IAAI;IACnC;IACD;GAED,MAAM,mBAAmB,MAAM,MAAM,GAAG,KAAK,QAAQ,4BAA4B;IAC/E,QAAQ;IACR,SAAS;KACP,gBAAgB;KAChB,gBAAgB,KAAK;KACtB;IACD,MAAM,KAAK,UAAU,eAAe;IACrC,CAAC;GAGF,MAAMC,uBACJ,MAAM,KAAK,cAA8C,iBAAiB;AAE5E,OAAI,CAAC,qBAAqB,QACxB,OAAM,IAAI,MAAM,iDAAiD;AAGnE,UAAO;IACL,SAAS,qBAAqB;IAC9B,MAAM;KACJ,MAAM,qBAAqB;KAC3B,OAAO,qBAAqB;KAC5B,YAAY,qBAAqB;KACjC,SAAS,qBAAqB;KAC/B;IACF;WACM,OAAO;AAEd,UAAO;IACL,SAAS;IACT,OAAO,EACL,SAAS,iBAAiB,QAAQ,MAAM,UAAU,iBACnD;IACF;;;;;;;;;CAUL,MAAM,aAAa,gBAA6D;AAE9E,MAAI,CAAC,eAAgB,OAAM,IAAI,MAAM,8BAA8B;AACnE,MAAI,CAAC,eAAe,UAAU,CAAC,eAAe,SAC5C,OAAM,IAAI,MAAM,4CAA4C;AAE9D,MAAI;GAEF,MAAMC,cAAiC,EAAE,gBAAgB;GACzD,MAAM,gBAAgB,MAAM,MAAM,GAAG,KAAK,QAAQ,eAAe;IAC/D,QAAQ;IACR,SAAS;KACP,gBAAgB;KAChB,gBAAgB,KAAK;KACtB;IACD,MAAM,KAAK,UAAU,YAAY;IAClC,CAAC;GAGF,MAAMC,oBACJ,MAAM,KAAK,cAAkC,cAAc;AAE7D,OAAI,CAAC,kBAAkB,QACrB,OAAM,IAAI,MAAM,qDAAqD;GAGvE,MAAMC,yBAAqD,MAAM,oBAAoB,EACnF,aAAa,kBAAkB,SAChC,CAAC;AAEF,OAAI,CAAC,uBAAwB,OAAM,IAAI,MAAM,0CAA0C;GAKvF,MAAMC,iBAAuC;IAC3C,gBAAgB,kBAAkB,aAAa;IAC/C;IACD;GAED,MAAM,uBAAuB,MAAM,MAAM,GAAG,KAAK,QAAQ,kBAAkB;IACzE,QAAQ;IACR,SAAS;KACP,gBAAgB;KAChB,gBAAgB,KAAK;KACtB;IACD,MAAM,KAAK,UAAU,eAAe;IACrC,CAAC;GAEF,MAAMC,2BACJ,MAAM,KAAK,cAAqC,qBAAqB;AAEvE,OAAI,CAAC,yBAAyB,SAAU,OAAM,IAAI,MAAM,gCAAgC;AAGxF,UAAO;IACL,SAAS,yBAAyB;IAClC,MAAM;KACJ,MAAM,yBAAyB;KAC/B,OAAO,yBAAyB;KAChC,SAAS,yBAAyB;KACnC;IACF;WACM,OAAO;AAEd,UAAO;IACL,SAAS;IACT,OAAO,EACL,SAAS,iBAAiB,QAAQ,MAAM,UAAU,iBACnD;IACF"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@plainkey/browser",
-  "version": "0.4.1",
+  "version": "0.6.0",
   "description": "PlainKey browser SDK for passkey registration, login and credential management",
   "type": "module",
   "main": "./dist/index.js",