@prove-identity/prove-auth 2.7.0 → 2.8.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +35 -0
- package/build/bundle/release/prove-auth.js +1 -0
- package/build/lib/index.d.ts +2 -1
- package/build/lib/index.js +3 -1
- package/build/lib/proveauth/authenticator-builder.d.ts +1 -0
- package/build/lib/proveauth/authenticator-builder.js +52 -0
- package/build/lib/proveauth/darwinium-result.d.ts +11 -0
- package/build/lib/proveauth/darwinium-result.js +25 -0
- package/build/lib/proveauth/darwinium-wrapper.d.ts +6 -0
- package/build/lib/proveauth/darwinium-wrapper.js +97 -0
- package/build/lib/proveauth/device-context-options.d.ts +7 -0
- package/build/lib/proveauth/device-context-options.js +7 -1
- package/build/lib/proveauth/internal/auth-error.js +1 -1
- package/build/lib/proveauth/internal/auth-session.d.ts +4 -2
- package/build/lib/proveauth/internal/auth-session.js +70 -10
- package/build/lib/proveauth/internal/auth-status-actions.js +1 -1
- package/build/lib/proveauth/internal/auth-token-claims.d.ts +1 -0
- package/build/lib/proveauth/internal/device-auth.d.ts +3 -1
- package/build/lib/proveauth/internal/device-passive-register-step.js +5 -1
- package/build/lib/proveauth/internal/device-passive-silent-step.js +5 -1
- package/build/lib/proveauth/internal/device-passive-verify-step.js +5 -4
- package/build/lib/proveauth/internal/device-universal-redirect-steps.js +2 -2
- package/build/lib/proveauth/internal/main-authenticator.js +0 -3
- package/build/lib/proveauth/internal/mobile-instantlink-step.js +5 -3
- package/build/lib/proveauth/internal/platform.d.ts +2 -0
- package/build/lib/proveauth/internal/report-error-step.d.ts +1 -2
- package/build/lib/proveauth/internal/report-error-step.js +13 -12
- package/build/lib/proveauth/internal/settings.d.ts +4 -0
- package/build/lib/proveauth/internal/settings.js +15 -0
- package/build/lib/proveauth/internal/web-device-auth.d.ts +3 -1
- package/build/lib/proveauth/internal/web-device-auth.js +31 -15
- package/build/lib/proveauth/internal/web-platform.d.ts +2 -1
- package/build/lib/proveauth/internal/web-platform.js +19 -0
- package/build/lib/proveauth/version.d.ts +2 -2
- package/build/lib/proveauth/version.js +2 -2
- package/package.json +1 -1
package/README.md
CHANGED
|
@@ -15,3 +15,38 @@ This SDK provides JavaScript client API to the Prove's authentication platform P
|
|
|
15
15
|
- Build the sdk first, then build the sample code:
|
|
16
16
|
- Build SDK web bundle - `npm run clean && npm run build && npm run bundle-dev`
|
|
17
17
|
- Build and start sample code - `cd samples/basic; npm run build && npm run serve`
|
|
18
|
+
|
|
19
|
+
## Running Unit Tests
|
|
20
|
+
|
|
21
|
+
This project provides several options for running unit tests. Follow these instructions to execute the tests:
|
|
22
|
+
|
|
23
|
+
### Standard Test Run
|
|
24
|
+
|
|
25
|
+
To run the standard test suite:
|
|
26
|
+
|
|
27
|
+
```
|
|
28
|
+
npm test
|
|
29
|
+
```
|
|
30
|
+
|
|
31
|
+
This command will execute all unit tests and display the results in your default web browser.
|
|
32
|
+
|
|
33
|
+
### Running Tests with Node
|
|
34
|
+
|
|
35
|
+
If you need to run tests in a Node.js environment:
|
|
36
|
+
|
|
37
|
+
```
|
|
38
|
+
npm run test-with-node
|
|
39
|
+
```
|
|
40
|
+
|
|
41
|
+
This command will execute all unit tests and display the results in your terminal.
|
|
42
|
+
|
|
43
|
+
### Using the Test Runner
|
|
44
|
+
|
|
45
|
+
To run integration tests using Test Runner:
|
|
46
|
+
|
|
47
|
+
npm run test-runner
|
|
48
|
+
|
|
49
|
+
This command uses Test Runner client to execute integration tests enabled for the Web SDK.
|
|
50
|
+
Execution of integration tests depends on the Test Runner server components, which are part of
|
|
51
|
+
(Garfield backend service)[https://gitlab.com/prove-identity/prove-auth/garfield], and must be
|
|
52
|
+
started in advance using `make test-localhost-up` command in that repo.
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
!function(e,t){"object"==typeof exports&&"object"==typeof module?module.exports=t():"function"==typeof define&&define.amd?define([],t):"object"==typeof exports?exports.proveAuth=t():e.proveAuth=t()}(self,(()=>(()=>{"use strict";var e={6616:(e,t,r)=>{r.r(t),r.d(t,{ERROR_API_KEY_EXPIRED:()=>w,ERROR_API_KEY_INVALID:()=>R,ERROR_API_KEY_MISSING:()=>E,ERROR_BAD_REQUEST_FORMAT:()=>O,ERROR_BAD_RESPONSE_FORMAT:()=>l,ERROR_CLIENT_TIMEOUT:()=>s,ERROR_CSP_BLOCK:()=>u,ERROR_FORBIDDEN_ENDPOINT:()=>m,ERROR_FORBIDDEN_HEADER:()=>P,ERROR_FORBIDDEN_ORIGIN:()=>b,ERROR_GENERAL_SERVER_FAILURE:()=>y,ERROR_INSTALLATION_METHOD_RESTRICTED:()=>v,ERROR_INTEGRATION_FAILURE:()=>_,ERROR_INVALID_ENDPOINT:()=>d,ERROR_NETWORK_ABORT:()=>c,ERROR_NETWORK_CONNECTION:()=>a,ERROR_RATE_LIMIT:()=>S,ERROR_SCRIPT_LOAD_FAIL:()=>C,ERROR_SERVER_TIMEOUT:()=>A,ERROR_SUBSCRIPTION_NOT_ACTIVE:()=>g,ERROR_TOKEN_EXPIRED:()=>N,ERROR_TOKEN_INVALID:()=>I,ERROR_TOKEN_MISSING:()=>D,ERROR_UNSUPPORTED_VERSION:()=>p,ERROR_WRONG_REGION:()=>f,default:()=>j,defaultEndpoint:()=>n,defaultScriptUrlPattern:()=>U,defaultTlsEndpoint:()=>o,load:()=>F});var i=function(){return i=Object.assign||function(e){for(var t,r=1,i=arguments.length;r<i;r++)for(var n in t=arguments[r])Object.prototype.hasOwnProperty.call(t,n)&&(e[n]=t[n]);return e},i.apply(this,arguments)};Object.create,Object.create,"function"==typeof SuppressedError&&SuppressedError;var n={default:"endpoint"},o={default:"tlsEndpoint"},s="Client timeout",a="Network connection error",c="Network request aborted",l="Response cannot be parsed",u="Blocked by CSP",d="The endpoint parameter is not a valid URL";function h(e){for(var t="",r=0;r<e.length;++r)if(r>0){var i=e[r].toLowerCase();i!==e[r]?t+=" ".concat(i):t+=e[r]}else t+=e[r].toUpperCase();return t}var f=h("WrongRegion"),g=h("SubscriptionNotActive"),p=h("UnsupportedVersion"),v=h("InstallationMethodRestricted"),m=h("HostnameRestricted"),_=h("IntegrationFailed"),E="API key required",R="API key not found",w="API key expired",O="Request cannot be parsed",y="Request failed",A="Request failed to process",S="Too many requests, rate limit exceeded",b="Not available for this origin",P="Not available with restricted header",D=E,I=R,N=w,T="3.11.0",C="Failed to load the JS script of the agent",M="9319";function L(e,t){var r,i,n,o,s=[],a=(r=function(e){var t=function(e,t,r){if(r||2===arguments.length)for(var i,n=0,o=t.length;n<o;n++)!i&&n in t||(i||(i=Array.prototype.slice.call(t,0,n)),i[n]=t[n]);return e.concat(i||Array.prototype.slice.call(t))}([],e,!0);return{current:function(){return t[0]},postpone:function(){var e=t.shift();void 0!==e&&t.push(e)},exclude:function(){t.shift()}}}(e),o=0,i=function(){return Math.random()*Math.min(3e3,100*Math.pow(2,o++))},n=new Set,[r.current(),function(e,t){var o,s=t instanceof Error?t.message:"";if(s===u||s===d)r.exclude(),o=0;else if(s===M)r.exclude();else if(s===C){var a=Date.now()-e.getTime()<50,c=r.current();c&&a&&!n.has(c)&&(n.add(c),o=0),r.postpone()}else r.postpone();var l=r.current();return void 0===l?void 0:[l,null!=o?o:e.getTime()+i()-Date.now()]}]),c=a[0],l=a[1];if(void 0===c)return Promise.reject(new TypeError("The list of script URL patterns is empty"));var h=function(e){var r=new Date,i=function(t){return s.push({url:e,startedAt:r,finishedAt:new Date,error:t})},n=t(e);return n.then((function(){return i()}),i),n.catch((function(e){if(s.length>=5)throw e;var t=l(r,e);if(!t)throw e;var i,n=t[0],o=t[1];return(i=o,new Promise((function(e){return setTimeout(e,i)}))).then((function(){return h(n)}))}))};return h(c).then((function(e){return[e,s]}))}var x="https://fpnpmcdn.net/v<version>/<apiKey>/loader_v<loaderVersion>.js",U=x;function F(e){var t;e.scriptUrlPattern;var r=e.token,n=e.apiKey,o=void 0===n?r:n,s=function(e,t){var r={};for(var i in e)Object.prototype.hasOwnProperty.call(e,i)&&t.indexOf(i)<0&&(r[i]=e[i]);if(null!=e&&"function"==typeof Object.getOwnPropertySymbols){var n=0;for(i=Object.getOwnPropertySymbols(e);n<i.length;n++)t.indexOf(i[n])<0&&Object.prototype.propertyIsEnumerable.call(e,i[n])&&(r[i[n]]=e[i[n]])}return r}(e,["scriptUrlPattern","token","apiKey"]),a=null!==(t=function(e,t){return function(e,t){return Object.prototype.hasOwnProperty.call(e,t)}(e,t)?e[t]:void 0}(e,"scriptUrlPattern"))&&void 0!==t?t:x,c=function(){var e=[],t=function(){e.push({time:new Date,state:document.visibilityState})},r=function(e,t,r,i){return e.addEventListener(t,r,i),function(){return e.removeEventListener(t,r,i)}}(document,"visibilitychange",t);return t(),[e,r]}(),l=c[0],u=c[1];return Promise.resolve().then((function(){if(!o||"string"!=typeof o)throw new Error(E);return L(function(e,t){return(Array.isArray(e)?e:[e]).map((function(e){return function(e,t){var r=encodeURIComponent;return e.replace(/<[^<>]+>/g,(function(e){return"<version>"===e?"3":"<apiKey>"===e?r(t):"<loaderVersion>"===e?r(T):e}))}(String(e),t)}))}(a,o),k)})).catch((function(e){throw u(),function(e){return e instanceof Error&&e.message===M?new Error(C):e}(e)})).then((function(e){var t=e[0],r=e[1];return u(),t.load(i(i({},s),{ldi:{attempts:r,visibilityStates:l}}))}))}function k(e){return function(e,t,r,i){var n,o=document,s="securitypolicyviolation",a=function(t){var r=new URL(e,location.href),i=t.blockedURI;i!==r.href&&i!==r.protocol.slice(0,-1)&&i!==r.origin||(n=t,c())};o.addEventListener(s,a);var c=function(){return o.removeEventListener(s,a)};return Promise.resolve().then(t).then((function(e){return c(),e}),(function(e){return new Promise((function(e){var t=new MessageChannel;t.port1.onmessage=function(){return e()},t.port2.postMessage(null)})).then((function(){if(c(),n)return function(){throw new Error(u)}();throw e}))}))}(e,(function(){return function(e){return new Promise((function(t,r){if(function(e){if(URL.prototype)try{return new URL(e,location.href),!1}catch(e){if(e instanceof Error&&"TypeError"===e.name)return!0;throw e}}(e))throw new Error(d);var i=document.createElement("script"),n=function(){var e;return null===(e=i.parentNode)||void 0===e?void 0:e.removeChild(i)},o=document.head||document.getElementsByTagName("head")[0];i.onload=function(){n(),t()},i.onerror=function(){n(),r(new Error(C))},i.async=!0,i.src=e,o.appendChild(i)}))}(e)})).then(B)}function B(){var e=window,t="__fpjs_p_l_b",r=e[t];if(function(e,t){var r,i=null===(r=Object.getOwnPropertyDescriptor)||void 0===r?void 0:r.call(Object,e,t);(null==i?void 0:i.configurable)?delete e[t]:i&&!i.writable||(e[t]=void 0)}(e,t),"function"!=typeof(null==r?void 0:r.load))throw new Error(M);return r}var j={load:F,defaultScriptUrlPattern:x,ERROR_SCRIPT_LOAD_FAIL:C,ERROR_API_KEY_EXPIRED:w,ERROR_API_KEY_INVALID:R,ERROR_API_KEY_MISSING:E,ERROR_BAD_REQUEST_FORMAT:O,ERROR_BAD_RESPONSE_FORMAT:l,ERROR_CLIENT_TIMEOUT:s,ERROR_CSP_BLOCK:u,ERROR_FORBIDDEN_ENDPOINT:m,ERROR_FORBIDDEN_HEADER:P,ERROR_FORBIDDEN_ORIGIN:b,ERROR_GENERAL_SERVER_FAILURE:y,ERROR_INSTALLATION_METHOD_RESTRICTED:v,ERROR_INTEGRATION_FAILURE:_,ERROR_INVALID_ENDPOINT:d,ERROR_NETWORK_ABORT:c,ERROR_NETWORK_CONNECTION:a,ERROR_RATE_LIMIT:S,ERROR_SERVER_TIMEOUT:A,ERROR_SUBSCRIPTION_NOT_ACTIVE:g,ERROR_TOKEN_EXPIRED:w,ERROR_TOKEN_INVALID:R,ERROR_TOKEN_MISSING:E,ERROR_UNSUPPORTED_VERSION:p,ERROR_WRONG_REGION:f,defaultEndpoint:n,defaultTlsEndpoint:o}},2715:(e,t)=>{var r;Object.defineProperty(t,"__esModule",{value:!0}),t.LoggerFactory=t.LogLevel=void 0,function(e){e[e.disabled=0]="disabled",e[e.error=1]="error",e[e.warn=2]="warn",e[e.info=3]="info",e[e.debug=4]="debug",e[e.trace=5]="trace"}(r=t.LogLevel||(t.LogLevel={}));class i{static setLogLevel(e){i.logLevel=e}static setLogWriter(e){i.logWriter=e}static getLogger(e){return{trace:(...e)=>{i.logLevel>=r.trace&&i.logWriter.write(r.trace,...e)},debug:(...e)=>{i.logLevel>=r.debug&&i.logWriter.write(r.debug,...e)},info:(...e)=>{i.logLevel>=r.info&&i.logWriter.write(r.info,...e)},warn:(...e)=>{i.logLevel>=r.warn&&i.logWriter.write(r.warn,...e)},error:(...e)=>{i.logLevel>=r.error&&i.logWriter.write(r.error,...e)}}}}i.logWriter=new class{write(e,...t){switch(e){case r.trace:case r.debug:console.debug(...t);break;case r.info:console.info(...t);break;case r.warn:console.warn(...t);break;case r.error:console.error(...t)}}},i.logLevel=r.info,t.LoggerFactory=i},8266:function(e,t,r){var i=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0}),t.LogLevel=t.LoggerFactory=t.DeviceDescriptor=t.StepCode=t.ErrorCode=t.AuthenticatorBuilder=t.VERSION_CODE=t.VERSION_NAME=void 0;const n=r(9843);Object.defineProperty(t,"VERSION_NAME",{enumerable:!0,get:function(){return n.VERSION_NAME}}),Object.defineProperty(t,"VERSION_CODE",{enumerable:!0,get:function(){return n.VERSION_CODE}});const o=i(r(7460));t.AuthenticatorBuilder=o.default;const s=r(6639);Object.defineProperty(t,"ErrorCode",{enumerable:!0,get:function(){return s.ErrorCode}});const a=r(2400);Object.defineProperty(t,"StepCode",{enumerable:!0,get:function(){return a.StepCode}});const c=i(r(79));t.DeviceDescriptor=c.default;const l=r(2715);Object.defineProperty(t,"LoggerFactory",{enumerable:!0,get:function(){return l.LoggerFactory}}),Object.defineProperty(t,"LogLevel",{enumerable:!0,get:function(){return l.LogLevel}})},7460:function(e,t,r){var i=this&&this.__createBinding||(Object.create?function(e,t,r,i){void 0===i&&(i=r);var n=Object.getOwnPropertyDescriptor(t,r);n&&!("get"in n?!t.__esModule:n.writable||n.configurable)||(n={enumerable:!0,get:function(){return t[r]}}),Object.defineProperty(e,i,n)}:function(e,t,r,i){void 0===i&&(i=r),e[i]=t[r]}),n=this&&this.__setModuleDefault||(Object.create?function(e,t){Object.defineProperty(e,"default",{enumerable:!0,value:t})}:function(e,t){e.default=t}),o=this&&this.__importStar||function(e){if(e&&e.__esModule)return e;var t={};if(null!=e)for(var r in e)"default"!==r&&Object.prototype.hasOwnProperty.call(e,r)&&i(t,e,r);return n(t,e),t},s=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0});const a=s(r(3060)),c=s(r(7834)),l=s(r(7747)),u=s(r(5386)),d=s(r(689)),h=s(r(4670)),f=o(r(9134));function g(e){return"function"==typeof e?{execute:t=>e(t)}:e}t.default=class{constructor(e){this._deviceIpDetection=!1,this._timeout=0,this._config=e||new a.default}withStartStep(e){return this._startStep=g(e),this}withFinishStep(e){return this._finishStep=g(e),this}withPixelImplementation(){return this._authStep=void 0,this}withFetchImplementation(){return this._authStep=new l.default,this}withPassiveImplementation(){return this._authStep=new h.default,this}withDeviceIpDetection(e=!0){return this._deviceIpDetection=e,this}withTimeout(e){return this._timeout=e,this}build(){let e=this._authStep;const t=this._startStep;let r=this._finishStep;e||(e=new f.default,r=new f.PixelFinishStep);const i=this._deviceIpDetection?new u.default:new d.default;if(!t)throw new Error("Start step is required");if(!r)throw new Error("Finish step is required");return new c.default(i,t,e,r,this._timeout)}}},6639:(e,t)=>{var r;Object.defineProperty(t,"__esModule",{value:!0}),t.ErrorCode=void 0,(r=t.ErrorCode||(t.ErrorCode={}))[r.GENERIC_UNKNOWN_REASON=0]="GENERIC_UNKNOWN_REASON",r[r.GENERIC_TIMEOUT=1]="GENERIC_TIMEOUT",r[r.GENERIC_INVALID_STATE=2]="GENERIC_INVALID_STATE",r[r.GENERIC_COMMUNICATION_ERROR=3]="GENERIC_COMMUNICATION_ERROR",r[r.PRE_CHECK_AIRPLANE_MODE_ENABLED=17]="PRE_CHECK_AIRPLANE_MODE_ENABLED",r[r.PRE_CHECK_NO_CELLULAR_RADIO=18]="PRE_CHECK_NO_CELLULAR_RADIO",r[r.PRE_CHECK_NO_CELLULAR_CONNECTION=19]="PRE_CHECK_NO_CELLULAR_CONNECTION",r[r.PRE_CHECK_WIFI_CALLING_ENABLED=20]="PRE_CHECK_WIFI_CALLING_ENABLED",r[r.PRE_CHECK_WIFI_CANNOT_BE_OVERRIDDEN=21]="PRE_CHECK_WIFI_CANNOT_BE_OVERRIDDEN",r[r.AUTH_MALFORMED_INPUT_DATA=65]="AUTH_MALFORMED_INPUT_DATA",r[r.AUTH_BAD_CREDENTIALS=66]="AUTH_BAD_CREDENTIALS",r[r.AUTH_VFP_KEY_EXPIRED=67]="AUTH_VFP_KEY_EXPIRED",r[r.AUTH_INVALID_RESPONSE=68]="AUTH_INVALID_RESPONSE"},6902:(e,t)=>{Object.defineProperty(t,"__esModule",{value:!0});class r extends Error{constructor(e,...t){super(...t),this.errorCode=e,Error.captureStackTrace&&Error.captureStackTrace(this,r),this.name="AuthLocalError",this.errorCode=e}}t.default=r},7747:function(e,t,r){var i=this&&this.__awaiter||function(e,t,r,i){return new(r||(r=Promise))((function(n,o){function s(e){try{c(i.next(e))}catch(e){o(e)}}function a(e){try{c(i.throw(e))}catch(e){o(e)}}function c(e){var t;e.done?n(e.value):(t=e.value,t instanceof r?t:new r((function(e){e(t)}))).then(s,a)}c((i=i.apply(e,t||[])).next())}))},n=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0});const o=n(r(8498)),s=n(r(5112)),a=n(r(5030)),c=r(2715),l=r(6458);t.default=class{constructor(){this.logger=c.LoggerFactory.getLogger("fetch-authentication-step")}execute(e){return i(this,void 0,void 0,(function*(){this.logger.info("use fetch");const t=(0,l.toURL)(e.authUrl);let r;return t.searchParams.get("testVfp")?(this.logger.info("test flow detected"),r=a.default.create(t)):"2"===t.searchParams.get("pfflow")?(this.logger.info("flow v2 detected"),r=s.default.create(t)):(this.logger.info("flow v1 detected"),r=o.default.create(t)),{vfp:yield r.handle()}}))}}},5030:function(e,t){var r=this&&this.__awaiter||function(e,t,r,i){return new(r||(r=Promise))((function(n,o){function s(e){try{c(i.next(e))}catch(e){o(e)}}function a(e){try{c(i.throw(e))}catch(e){o(e)}}function c(e){var t;e.done?n(e.value):(t=e.value,t instanceof r?t:new r((function(e){e(t)}))).then(s,a)}c((i=i.apply(e,t||[])).next())}))};Object.defineProperty(t,"__esModule",{value:!0});class i{static create(e){var t,r,n;const o=null!==(r=parseInt(null!==(t=e.searchParams.get("delay"))&&void 0!==t?t:"0"))&&void 0!==r?r:0,s=null!==(n=e.searchParams.get("testVfp"))&&void 0!==n?n:"";return new i(s,o)}constructor(e,t){this.testVfp=e,this.delay=t}handle(){return r(this,void 0,void 0,(function*(){return new Promise((e=>{setTimeout((()=>e(this.testVfp)),this.delay)}))}))}}t.default=i},6458:function(e,t,r){var i=this&&this.__awaiter||function(e,t,r,i){return new(r||(r=Promise))((function(n,o){function s(e){try{c(i.next(e))}catch(e){o(e)}}function a(e){try{c(i.throw(e))}catch(e){o(e)}}function c(e){var t;e.done?n(e.value):(t=e.value,t instanceof r?t:new r((function(e){e(t)}))).then(s,a)}c((i=i.apply(e,t||[])).next())}))},n=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0}),t.RawURL=t.Base64=t.fetchAuth=t.handleHttpError=t.toURL=void 0;const o=r(2715),s=r(6639),a=r(9843),c=n(r(6902));t.toURL=function(e){try{return new l(e)}catch(t){throw new c.default(s.ErrorCode.AUTH_MALFORMED_INPUT_DATA,"Malformed url "+e)}},t.handleHttpError=function(e){return i(this,void 0,void 0,(function*(){const t=e.status;switch(t){case 404:throw new c.default(s.ErrorCode.AUTH_BAD_CREDENTIALS);case 410:throw new c.default(s.ErrorCode.AUTH_VFP_KEY_EXPIRED);default:let r;try{r=(yield e.json()).error}catch(e){}throw new c.default(s.ErrorCode.AUTH_INVALID_RESPONSE,r||`http error (${e.statusText} , code = ${t})`)}}))},t.fetchAuth=function(e,t){var r;const i=o.LoggerFactory.getLogger("http-client"),n=null!=t?t:{},l=null!==(r=n.method)&&void 0!==r?r:"GET";if(i.debug(`${l} ${e} ${e.protocol}`),"http:"===e.protocol)throw new c.default(s.ErrorCode.GENERIC_INVALID_STATE,`Web SDK cannot make http request [${e}]`);const u={};let d;return e.searchParams.set("sdkVersion",a.VERSION_NAME),"object"==typeof n.body&&(u["Content-Type"]="application/json",d=JSON.stringify(n.body)),d&&i.debug(`request body: ${d}`),fetch(e.toString(),{method:l,mode:"cors",headers:u,body:d}).then((e=>(i.debug(`${e.status} ${e.statusText}`),e)))},t.Base64=new class{constructor(){this.PADCHAR="=",this.ALPHA="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/"}getByte(e,t){return e.charCodeAt(t)}getByte64(e,t){return this.ALPHA.indexOf(e.charAt(t))}_decode(e){let t,r,i=0,n=e.length,o=[];if(e=String(e),0===n)return e;for(e.charAt(n-1)===this.PADCHAR&&(i=1,e.charAt(n-2)===this.PADCHAR&&(i=2),n-=4),t=0;t<n;t+=4)r=this.getByte64(e,t)<<18|this.getByte64(e,t+1)<<12|this.getByte64(e,t+2)<<6|this.getByte64(e,t+3),o.push(String.fromCharCode(r>>16,r>>8&255,255&r));switch(i){case 1:r=this.getByte64(e,t)<<18|this.getByte64(e,t+1)<<12|this.getByte64(e,t+2)<<6,o.push(String.fromCharCode(r>>16,r>>8&255));break;case 2:r=this.getByte64(e,t)<<18|this.getByte64(e,t+1)<<12,o.push(String.fromCharCode(r>>16))}return o.join("")}_encode(e){let t,r,i=[],n=(e=String(e)).length-e.length%3;if(0===e.length)return e;for(t=0;t<n;t+=3)r=this.getByte(e,t)<<16|this.getByte(e,t+1)<<8|this.getByte(e,t+2),i.push(this.ALPHA.charAt(r>>18)),i.push(this.ALPHA.charAt(r>>12&63)),i.push(this.ALPHA.charAt(r>>6&63)),i.push(this.ALPHA.charAt(63&r));switch(e.length-n){case 1:r=this.getByte(e,t)<<16,i.push(this.ALPHA.charAt(r>>18)+this.ALPHA.charAt(r>>12&63)+this.PADCHAR+this.PADCHAR);break;case 2:r=this.getByte(e,t)<<16|this.getByte(e,t+1)<<8,i.push(this.ALPHA.charAt(r>>18)+this.ALPHA.charAt(r>>12&63)+this.ALPHA.charAt(r>>6&63)+this.PADCHAR)}return i.join("")}decode(e,t=!0){return e=t?e.replace(".","+").replace("_","/").replace("-","="):e,this._decode(e)}encode(e,t=!0){const r=this._encode(e);return t?r.replace("+",".").replace("/","_").replace("=","-"):r}};class l{constructor(e){this.url=e,this.params=[],this.searchParams={get:e=>this._get(e),getAll:e=>this._getAll(e),set:(e,t,r=!1)=>this._set(e,t,r)};const t=new URL(e);this.protocol=t.protocol;for(const e of t.searchParams.keys())this.params.push({key:e,values:t.searchParams.getAll(e),encode:!1})}_set(e,t,r=!1){const i=this.params.findIndex((t=>t.key===e));-1===i?this.params.push({key:e,values:[t],encode:r}):this.params.splice(i,1,{key:e,values:[t],encode:r})}_get(e){const t=this._getAll(e);return t?t[0]:void 0}_getAll(e){var t;return null===(t=this.params.find((t=>t.key===e)))||void 0===t?void 0:t.values}toString(){function e(e,t){return t?encodeURIComponent(e):null==e?void 0:e.replace(/\?/g,"%3F").replace(/\&/g,"%26")}const t=this.url.indexOf("?");let r=-1==t?this.url:this.url.slice(0,t),i=[];for(const t of this.params)for(const r of t.values)i.push(`${e(t.key,t.encode)}=${e(r,t.encode)}`);return i.length&&(r+="?"+i.join("&")),r}}t.RawURL=l},8498:function(e,t,r){var i=this&&this.__awaiter||function(e,t,r,i){return new(r||(r=Promise))((function(n,o){function s(e){try{c(i.next(e))}catch(e){o(e)}}function a(e){try{c(i.throw(e))}catch(e){o(e)}}function c(e){var t;e.done?n(e.value):(t=e.value,t instanceof r?t:new r((function(e){e(t)}))).then(s,a)}c((i=i.apply(e,t||[])).next())}))},n=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0});const o=r(2715),s=n(r(6902)),a=r(6639),c=r(6458);class l{static create(e){return e.searchParams.set("r","f"),new l(e)}constructor(e){this.url=e,this.logger=o.LoggerFactory.getLogger("flow-v1")}handle(){var e,t;return i(this,void 0,void 0,(function*(){let r;const i=this.url.searchParams.get("vfp");let n=this.url;for(this.logger.debug(`current vfp ${i}`);;){try{r=yield(0,c.fetchAuth)(n,{})}catch(e){throw new s.default(a.ErrorCode.GENERIC_COMMUNICATION_ERROR,e.message)}if(console.log(r.url),r.status>=300&&r.status<400){const o=new c.RawURL(null!==(e=r.headers.get("Location"))&&void 0!==e?e:"");this.logger.debug(`redirect to ${o}`);const s=null!==(t=o.searchParams.get("vfp"))&&void 0!==t?t:o.searchParams.get("token");if(s&&s!==i)return this.logger.debug(`vfp changed to ${s}`),s;n=o}else{if(r.status>=200&&r.status<300){let e;try{e=yield r.json()}catch(e){throw new s.default(a.ErrorCode.AUTH_INVALID_RESPONSE,e.message)}this.logger.debug("got json response",e);const t=this.getVfpFromJson(e);if(!t)throw new s.default(a.ErrorCode.AUTH_INVALID_RESPONSE,`Received unknown payload: ${JSON.stringify(e)}`);return t}yield(0,c.handleHttpError)(r)}}}))}getVfpFromJson(e){const t=e.vfp;if(t)return t;const r=e.token,i=e.correlation_id;if(r)return i?i+"..."+r:r;const n=e.reconcilation_token;return n?i?i+"..."+n:n:void 0}}t.default=l},5112:function(e,t,r){var i=this&&this.__awaiter||function(e,t,r,i){return new(r||(r=Promise))((function(n,o){function s(e){try{c(i.next(e))}catch(e){o(e)}}function a(e){try{c(i.throw(e))}catch(e){o(e)}}function c(e){var t;e.done?n(e.value):(t=e.value,t instanceof r?t:new r((function(e){e(t)}))).then(s,a)}c((i=i.apply(e,t||[])).next())}))},n=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0});const o=r(2715),s=r(6639),a=n(r(6902)),c=r(6458);class l{static create(e){var t;const r=e.searchParams.get("data");if(!r)throw new a.default(s.ErrorCode.AUTH_MALFORMED_INPUT_DATA,"Invalid flow.v2 data - missing in url");let i,n,o,u;try{const e=c.Base64.decode(r);console.log("decoded",e),i=JSON.parse(e)}catch(e){throw console.error(e),new a.default(s.ErrorCode.AUTH_MALFORMED_INPUT_DATA,"Invalid flow.v2 data - cannot parse as json")}try{n=new c.RawURL(null!==(t=i.url)&&void 0!==t?t:"")}catch(e){throw new a.default(s.ErrorCode.AUTH_MALFORMED_INPUT_DATA,"Invalid flow.v2 data - missing/invalid url field")}try{o=i.vfp}catch(e){throw new a.default(s.ErrorCode.AUTH_MALFORMED_INPUT_DATA,"Invalid flow.v2 data - missing vfp field")}try{u=i.data}catch(e){throw new a.default(s.ErrorCode.AUTH_MALFORMED_INPUT_DATA,"Invalid flow.v2 data - missing data field")}return new l(n,o,u,i["att-1004"])}constructor(e,t,r,i){this.url=e,this.vfp=t,this.data=r,this.att1004=i,this.logger=o.LoggerFactory.getLogger("flow-v2")}handle(){var e;return i(this,void 0,void 0,(function*(){let t=!1,r=JSON.parse(JSON.stringify(this.data));for(;;){let i;try{i=yield(0,c.fetchAuth)(this.url,{method:"POST",body:r})}catch(e){throw new a.default(s.ErrorCode.GENERIC_COMMUNICATION_ERROR,e.message)}if(i.status>=200&&i.status<300){const n=yield i.text();if(this.logger.trace(`att response body: ${n}`),!t)try{if(1004===JSON.parse(n).status){const i=null!==(e=this.att1004)&&void 0!==e?e:["application-id"];if(i){t=!0,this.logger.debug(`flow v2.5 detected, use application-id: ${i}`),r.put("application-id",i);continue}this.logger.debug("missing att1004.application-id, continue flow v2")}}catch(e){}const o=c.Base64.encode(n);return`${this.vfp}___${o}${t?"___R2":""}`}if(i.status>=300&&i.status<400)throw new a.default(s.ErrorCode.AUTH_INVALID_RESPONSE,"Unexpected redirect in flow v2");yield(0,c.handleHttpError)(i)}}))}}t.default=l},4670:function(e,t,r){var i=this&&this.__awaiter||function(e,t,r,i){return new(r||(r=Promise))((function(n,o){function s(e){try{c(i.next(e))}catch(e){o(e)}}function a(e){try{c(i.throw(e))}catch(e){o(e)}}function c(e){var t;e.done?n(e.value):(t=e.value,t instanceof r?t:new r((function(e){e(t)}))).then(s,a)}c((i=i.apply(e,t||[])).next())}))},n=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0});const o=n(r(5030)),s=r(2715),a=r(6458),c=r(9843);t.default=class{constructor(){this.logger=s.LoggerFactory.getLogger("passive-authentication-step")}execute(e){return i(this,void 0,void 0,(function*(){this.logger.info("use passive");const t=(0,a.toURL)(e.authUrl);let r;if(t.searchParams.get("testVfp"))this.logger.info("test flow detected"),r=o.default.create(t);else{if("2"===t.searchParams.get("pfflow"))throw new Error("flow v2 detected but not supported by passive auth implementation");this.logger.info("flow v1 detected"),r=new l(t)}return{vfp:yield r.handle()}}))}};class l{constructor(e){this.url=e,this.logger=s.LoggerFactory.getLogger("passive-flow-v1")}handle(){return i(this,void 0,void 0,(function*(){return new Promise(((e,t)=>{const r="_proveAuthResponse";this.url.searchParams.set("jsonp","true"),this.url.searchParams.set("sdkVersion",c.VERSION_NAME);const i=window;this.logger.trace("install global callback"),i[r]=r=>{if(o)return;s();const i=r?this.getVfpFromJson(r):void 0;i?e(i):t(new Error(r?"script loaded but vfp not defined":"script loaded but callback not trigerred"))};const n=document.createElement("script");let o=!1;const s=()=>{this.logger.trace("cleanup global callback"),o=!0,i[r]=void 0,document.body.removeChild(n)};n.onload=()=>{this.logger.trace("script loaded"),setTimeout((()=>{o||(s(),t(new Error("script loaded, but not executed")))}),1e3)},n.onerror=()=>{this.logger.trace("script load error"),o||(s(),t(new Error("script load error")))},document.body.appendChild(n),n.src=this.url.toString()}))}))}getVfpFromJson(e){const t=e.vfp;if(t)return t;const r=e.token,i=e.correlation_id;if(r)return i?i+"..."+r:r;const n=e.reconcilation_token;return n?i?i+"..."+n:n:void 0}}},9134:function(e,t,r){var i=this&&this.__awaiter||function(e,t,r,i){return new(r||(r=Promise))((function(n,o){function s(e){try{c(i.next(e))}catch(e){o(e)}}function a(e){try{c(i.throw(e))}catch(e){o(e)}}function c(e){var t;e.done?n(e.value):(t=e.value,t instanceof r?t:new r((function(e){e(t)}))).then(s,a)}c((i=i.apply(e,t||[])).next())}))},n=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0}),t.PixelFinishStep=void 0;const o=n(r(5030)),s=r(2715),a=r(6458),c=r(9843);t.default=class{constructor(){this.logger=s.LoggerFactory.getLogger("pixel-authentication-step")}execute(e){return i(this,void 0,void 0,(function*(){this.logger.info("use pixel");const t=(0,a.toURL)(e.authUrl);let r;if(t.searchParams.get("testVfp"))this.logger.info("test flow detected"),r=o.default.create(t);else{if("2"===t.searchParams.get("pfflow"))throw new Error("flow v2 detected but not supported by pixel auth implementation");this.logger.info("flow v1 detected"),r=new l(t)}return{vfp:yield r.handle()}}))}};class l{constructor(e){this.url=e,this.logger=s.LoggerFactory.getLogger("pixel-flow-v1")}handle(){return i(this,void 0,void 0,(function*(){return new Promise(((e,t)=>{this.url.searchParams.set("sdkVersion",c.VERSION_NAME);const r=document.createElement("img");r.onload=()=>{this.logger.trace("pixel loaded"),e("")},r.onerror=()=>{this.logger.trace("pixel load error"),t(new Error("pixel load error"))},r.src=this.url.toString()}))}))}}t.PixelFinishStep=class{execute(e){return Promise.resolve(void 0)}}},7834:function(e,t,r){var i=this&&this.__awaiter||function(e,t,r,i){return new(r||(r=Promise))((function(n,o){function s(e){try{c(i.next(e))}catch(e){o(e)}}function a(e){try{c(i.throw(e))}catch(e){o(e)}}function c(e){var t;e.done?n(e.value):(t=e.value,t instanceof r?t:new r((function(e){e(t)}))).then(s,a)}c((i=i.apply(e,t||[])).next())}))},n=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0});const o=r(2715),s=r(2400),a=n(r(4517)),c=r(6639);class l{constructor(e){this._providedDeviceDescriptor=e}get providedDeviceDescriptor(){return this._providedDeviceDescriptor}get deviceDescriptor(){return this._deviceDescriptor}get authUrl(){return this._authUrl}get vfp(){return this._vfp}}class u{constructor(){this.currentStep=s.StepCode.PRE_CHECK,this.timedOut=!1}}t.default=class{constructor(e,t,r,i,n=0){this.deviceDescriptorStep=e,this.startStep=t,this.authenticationStep=r,this.finishStep=i,this.timeout=n,this.logger=o.LoggerFactory.getLogger("auth")}executeStep(e,t,r,n){var o;return i(this,void 0,void 0,(function*(){if(e.timedOut)throw new Error("timeout");try{e.currentStep=t,this.logger.debug(`execute step ${s.StepCode[t]}`);let i=yield r.execute(n);return this.logger.debug(`executed step ${s.StepCode[t]}`),i}catch(e){const r=null!==(o=e.errorCode)&&void 0!==o?o:c.ErrorCode.GENERIC_UNKNOWN_REASON;throw new a.default(t,r,e.message)}}))}authenticate(e){return new Promise(((t,r)=>{const i=new u;let n;this.timeout>0&&(n=setTimeout((()=>{i.timedOut=!0,r(new a.default(i.currentStep,c.ErrorCode.GENERIC_TIMEOUT,`authenticator timeout after ${this.timeout}ms`))}),this.timeout)),this.executeAuth(i,e).then((e=>{i.timedOut||(clearTimeout(n),t(e))}),(e=>{i.timedOut||(clearTimeout(n),r(e))}))}))}executeAuth(e,t){return i(this,void 0,void 0,(function*(){const r=new l(t);r._deviceDescriptor=(yield this.executeStep(e,s.StepCode.DEVICE_DESCRIPTOR,this.deviceDescriptorStep,r)).deviceDescriptor,this.logger.info(`deviceDescriptor=${r.deviceDescriptor}`),r._authUrl=(yield this.executeStep(e,s.StepCode.START,this.startStep,r)).authUrl,this.logger.info(`authUrl=${r.authUrl}`),r._vfp=(yield this.executeStep(e,s.StepCode.AUTHENTICATION,this.authenticationStep,r)).vfp,this.logger.info(`vfp=${r.vfp}`);const i=yield this.executeStep(e,s.StepCode.FINISH,this.finishStep,r);return this.logger.info("result",i),i}))}}},5386:function(e,t,r){var i=this&&this.__awaiter||function(e,t,r,i){return new(r||(r=Promise))((function(n,o){function s(e){try{c(i.next(e))}catch(e){o(e)}}function a(e){try{c(i.throw(e))}catch(e){o(e)}}function c(e){var t;e.done?n(e.value):(t=e.value,t instanceof r?t:new r((function(e){e(t)}))).then(s,a)}c((i=i.apply(e,t||[])).next())}))},n=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0});const o=r(6639),s=n(r(79)),a=n(r(6902));t.default=class{constructor(e){this.ipQueryUrl=null!=e?e:"https://device.payfone.com:4443/whatismyipaddress"}execute(e){return i(this,void 0,void 0,(function*(){if(e.providedDeviceDescriptor)return{deviceDescriptor:e.providedDeviceDescriptor};const t=yield fetch("https://device.payfone.com:4443/whatismyipaddress");if(t.ok)return{deviceDescriptor:new s.default(yield t.text())};throw new a.default(o.ErrorCode.GENERIC_COMMUNICATION_ERROR,`ip api response=${t.status}`)}))}}},689:function(e,t,r){var i=this&&this.__awaiter||function(e,t,r,i){return new(r||(r=Promise))((function(n,o){function s(e){try{c(i.next(e))}catch(e){o(e)}}function a(e){try{c(i.throw(e))}catch(e){o(e)}}function c(e){var t;e.done?n(e.value):(t=e.value,t instanceof r?t:new r((function(e){e(t)}))).then(s,a)}c((i=i.apply(e,t||[])).next())}))},n=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0});const o=n(r(79));t.default=class{execute(e){var t;return i(this,void 0,void 0,(function*(){return{deviceDescriptor:null!==(t=e.providedDeviceDescriptor)&&void 0!==t?t:new o.default}}))}}},3060:(e,t)=>{Object.defineProperty(t,"__esModule",{value:!0}),t.default=class{}},4517:(e,t,r)=>{Object.defineProperty(t,"__esModule",{value:!0});const i=r(6639),n=r(2400);class o extends Error{constructor(e,t,r){super(`${r} (stepCode=${n.StepCode[e]}, errorCode=${i.ErrorCode[t]})`),this.stepCode=e,this.errorCode=t,Error.captureStackTrace&&Error.captureStackTrace(this,o),this.name="AuthProcessError",this.stepCode=e}}t.default=o},79:(e,t)=>{Object.defineProperty(t,"__esModule",{value:!0});class r{static ip(e){return new r(e)}constructor(e,t,r){this.ip=e,this.mno=t,this.phoneNumber=r}toString(){return`ip=[${this.ip}] mno=[${this.mno}] phoneNumber=[${this.phoneNumber}]`}}t.default=r},2400:(e,t)=>{var r;Object.defineProperty(t,"__esModule",{value:!0}),t.StepCode=void 0,(r=t.StepCode||(t.StepCode={}))[r.PRE_CHECK=16]="PRE_CHECK",r[r.DEVICE_DESCRIPTOR=32]="DEVICE_DESCRIPTOR",r[r.START=48]="START",r[r.AUTHENTICATION=64]="AUTHENTICATION",r[r.FINISH=80]="FINISH"},9843:(e,t)=>{Object.defineProperty(t,"__esModule",{value:!0}),t.VERSION_CODE=t.VERSION_NAME=void 0,t.VERSION_NAME="3.0.0",t.VERSION_CODE=3e4},3607:function(e,t,r){var i=this&&this.__createBinding||(Object.create?function(e,t,r,i){void 0===i&&(i=r);var n=Object.getOwnPropertyDescriptor(t,r);n&&!("get"in n?!t.__esModule:n.writable||n.configurable)||(n={enumerable:!0,get:function(){return t[r]}}),Object.defineProperty(e,i,n)}:function(e,t,r,i){void 0===i&&(i=r),e[i]=t[r]}),n=this&&this.__setModuleDefault||(Object.create?function(e,t){Object.defineProperty(e,"default",{enumerable:!0,value:t})}:function(e,t){e.default=t}),o=this&&this.__importStar||function(e){if(e&&e.__esModule)return e;var t={};if(null!=e)for(var r in e)"default"!==r&&Object.prototype.hasOwnProperty.call(e,r)&&i(t,e,r);return n(t,e),t},s=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0}),t.DarwiniumWrapper=t.BuildConfig=t.PhoneValidationError=t.OtpError=t.OtpFinishResultType=t.MobileAuthImplementation=t.LogLevel=t.LoggerFactory=t.DeviceRole=t.CancelablePromise=t.AuthResponseStatus=t.AuthenticatorBuilder=t.VERSION=void 0;const a=r(6462);Object.defineProperty(t,"VERSION",{enumerable:!0,get:function(){return a.VERSION}});const c=o(r(4817));t.AuthenticatorBuilder=c.default,Object.defineProperty(t,"DeviceRole",{enumerable:!0,get:function(){return c.DeviceRole}}),Object.defineProperty(t,"MobileAuthImplementation",{enumerable:!0,get:function(){return c.MobileAuthImplementation}});const l=r(5501);Object.defineProperty(t,"BuildConfig",{enumerable:!0,get:function(){return l.BuildConfig}});const u=r(6267);Object.defineProperty(t,"AuthResponseStatus",{enumerable:!0,get:function(){return u.AuthResponseStatus}});const d=r(1727);Object.defineProperty(t,"LoggerFactory",{enumerable:!0,get:function(){return d.LoggerFactory}}),Object.defineProperty(t,"LogLevel",{enumerable:!0,get:function(){return d.LogLevel}});const h=s(r(4610));t.CancelablePromise=h.default;const f=r(3794);Object.defineProperty(t,"PhoneValidationError",{enumerable:!0,get:function(){return f.PhoneValidationError}});const g=r(8864);Object.defineProperty(t,"OtpError",{enumerable:!0,get:function(){return g.OtpError}}),Object.defineProperty(t,"OtpFinishResultType",{enumerable:!0,get:function(){return g.OtpFinishResultType}});const p=r(2582);Object.defineProperty(t,"DarwiniumWrapper",{enumerable:!0,get:function(){return p.DarwiniumWrapper}})},4817:function(e,t,r){var i=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0}),t.MobileAuthImplementation=t.DeviceRole=void 0;const n=r(1092),o=i(r(8370)),s=i(r(6736)),a=i(r(1840)),c=i(r(7625)),l=i(r(3075)),u=i(r(8907)),d=i(r(1703)),h=i(r(6185)),f=i(r(1044)),g=i(r(1474)),p=i(r(9790)),v=r(2207),m=i(r(9568)),_=r(1727),E=i(r(7370)),R=r(5501),w=i(r(2654)),O=i(r(3350));var y,A;!function(e){e[e.Primary=0]="Primary",e[e.Secondary=1]="Secondary"}(y=t.DeviceRole||(t.DeviceRole={})),function(e){e.Pixel="pixel",e.Fetch="fetch"}(A=t.MobileAuthImplementation||(t.MobileAuthImplementation={})),t.default=class{constructor(){this.role=y.Primary,this.mobileAuthImplementation=A.Fetch,this.upkEnabled=!1,this.log=_.LoggerFactory.getLogger("authenticator-builder"),"undefined"!=typeof window&&(this.storage=window.localStorage,this.platform=new n.WebPlatform)}withDeviceContext(e){return this.deviceContextOptions=e,this}withAuthFinishStep(e){return this.authFinishStep="function"==typeof e?{execute:t=>e(t)}:e,this}withDisplayName(e){return this.getDisplayName="function"==typeof e?e:()=>e,this}withAuthMessageHandler(e){return this.authMessageHandler=e,this}withStorage(e){return this.storage=e,this}withPlatform(e){return this.platform=e,this}withRole(e){return this.role=e,this}withMobileAuthImplementation(e){return this.mobileAuthImplementation=e,this}withDeviceIpAddress(e){return this.getDeviceIp="function"==typeof e?e:()=>e,this}withOtpFallback(e,t){return this.otpStartStep="function"==typeof e?{execute:e}:e,this.otpFinishStep="function"==typeof t?{execute:t}:t,this}withInstantLinkFallback(e){return this.instantLinkStartStep="function"==typeof e?{execute:e}:e,this}withUPKEnabled(){return this.withUniversalProveKey()}withUniversalProveKey(e){return this.userConsentStep=e?"function"==typeof e?{execute:e}:e:{execute:()=>Promise.resolve({consentGranted:!0})},this.upkEnabled=null!=this.userConsentStep,this}getUrlsByBuildConfig(e){switch(e){case R.BuildConfig.US_PROD:return[R.ProveAuthProxyScriptUrl.DEFAULT_US_PROD_SCRIPT_URL.toString(),R.ProveAuthProxyEndpoint.DEFAULT_US_PROD_ENDPOINT.toString()];case R.BuildConfig.US_UAT:return[R.ProveAuthProxyScriptUrl.DEFAULT_US_UAT_SCRIPT_URL.toString(),R.ProveAuthProxyEndpoint.DEFAULT_US_UAT_ENDPOINT.toString()];case R.BuildConfig.DEV:return this.log.debug("Recommended for Prove's internal testing only, BuildConfig.DEV might need custom endpoint URL and custom script URL values to bypass ad blockers"),[void 0,void 0];default:return this.log.warn("Unknown BuildConfig value: "+e),[void 0,void 0]}}getRegionByBuildConfig(e){var t;switch(e){case R.BuildConfig.DEV:case R.BuildConfig.US_PROD:case R.BuildConfig.US_UAT:t="us";break;default:this.log.warn("Unknown BuildConfig value, set Region to default value: us"),t="us"}return t}getFpPromiseInstanceFromOptions(e){try{const t=r(6616);if(t){if(e){let r=this.getRegionByBuildConfig(e.buildConfig),[i,n]=this.getUrlsByBuildConfig(e.buildConfig);e.customScriptUrl&&e.customEndpointUrl&&(i=e.customScriptUrl,n=e.customEndpointUrl);const o=i?[`${i}?apiKey=<apiKey>&version=<version>&loaderVersion=<loaderVersion>`,t.defaultScriptUrlPattern]:[t.defaultScriptUrlPattern],s=n?[`${n}?region=${r}`,t.defaultEndpoint]:[t.defaultEndpoint],a=t.load({apiKey:e.publicApiKey,endpoint:s,scriptUrlPattern:o,region:r}),c=a?"successfully":"unsuccessfully with null instance";return this.log.trace(`Instantiating FingerprintJS ${c}`),a}this.log.warn("Prove Key Persistence feature is not enabled")}else this.log.debug("fingerprintjs package is not installed or failed to load")}catch(e){this.log.trace("FingerprintJS is not installed or failed to load",e)}}runDarwiniumDataCollection(e,t){var r,i;if(!t)return;if(!t.extraDeviceSignalEnabled)return;const n=e.darwiniumResult;if(!n||n.isExpired())if(t.iFrameEnabledForExtraDeviceSignals){let i;switch(t.buildConfig){case R.BuildConfig.US_PROD:i=R.DarwiniumCollectionEndpoint.US_PROD;break;case R.BuildConfig.US_UAT:i=R.DarwiniumCollectionEndpoint.US_UAT;break;case R.BuildConfig.DEV:i=R.DarwiniumCollectionEndpoint.DEV;break;default:const t=new w.default;return t.setExpiration(),t.setErr("Unknown BuildConfig"),void(e.darwiniumResult=t)}null===(r=this.platform)||void 0===r||r.collectDarwiniumData(!0,i).then((t=>e.darwiniumResult=t)).catch((t=>{const r=new w.default;r.setExpiration(),r.setErr(O.default.extractMessage(t)),e.darwiniumResult=r}))}else null===(i=this.platform)||void 0===i||i.collectDarwiniumData(!1).then((t=>e.darwiniumResult=t)).catch((t=>{const r=new w.default;r.setExpiration(),r.setErr(O.default.extractMessage(t)),e.darwiniumResult=r}))}build(){var e;if(!this.platform)throw new Error("Implementation of Platform is required");if(!this.storage)throw new Error("Implementation of Storage is required");const t=this.getFpPromiseInstanceFromOptions(this.deviceContextOptions);t&&(null===(e=this.platform)||void 0===e||e.setFpPromise(t));const r=new E.default(this.storage);return r.upkEnabled=this.upkEnabled,this.runDarwiniumDataCollection(r,this.deviceContextOptions),this.role===y.Primary?new m.default(this.platform,r,this.authFinishStep,[new p.default(this.upkEnabled),new v.DeviceUniversalRedirectExchangeStep,new v.DeviceUniversalRedirectFinishStep,new s.default(this.getDisplayName,this.role),new g.default(this.getDisplayName),new f.default(this.upkEnabled,this.userConsentStep),new o.default,new a.default,new c.default(this.mobileAuthImplementation,this.getDeviceIp),new l.default(this.instantLinkStartStep,this.getDeviceIp),new u.default(this.otpStartStep,this.otpFinishStep),new h.default,new d.default(this.authMessageHandler)]):new m.default(this.platform,r,this.authFinishStep,[new s.default(this.getDisplayName,this.role),new c.default(this.mobileAuthImplementation,this.getDeviceIp),new l.default(this.instantLinkStartStep,this.getDeviceIp)])}}},8607:(e,t)=>{Object.defineProperty(t,"__esModule",{value:!0});class r{static stringToBase64(e){return e.replace(/\-/g,"+").replace(/_/g,"/")+"=".repeat(e.length%4?4-e.length%4:0)}static bufferDecode(e){return Uint8Array.from(atob(r.stringToBase64(e)),(e=>e.charCodeAt(0)))}static bufferEncode(e){const t=ArrayBuffer.isView(e)?e.buffer:e;return btoa(String.fromCharCode.apply(null,Array.from(new Uint8Array(t)))).replace(/\+/g,"-").replace(/\//g,"_").replace(/=/g,"")}}t.default=r},4610:(e,t)=>{Object.defineProperty(t,"__esModule",{value:!0}),t.default=class extends Promise{constructor(e){let t=()=>{};super(((r,i)=>e(r,i,(e=>t=e)))),this.onCancel=()=>{t()}}cancel(){this.onCancel()}}},1727:(e,t)=>{var r;Object.defineProperty(t,"__esModule",{value:!0}),t.LoggerFactory=t.LogLevel=void 0,function(e){e[e.disabled=0]="disabled",e[e.error=1]="error",e[e.warn=2]="warn",e[e.info=3]="info",e[e.debug=4]="debug",e[e.trace=5]="trace"}(r=t.LogLevel||(t.LogLevel={}));class i{static setLogLevel(e){i.logLevel=e}static setLogWriter(e){i.logWriter=e}static getLogger(e){return{trace:(...t)=>{i.logLevel>=r.trace&&i.logWriter.write(r.trace,e+": ",...t)},debug:(...t)=>{i.logLevel>=r.debug&&i.logWriter.write(r.debug,e+": ",...t)},info:(...t)=>{i.logLevel>=r.info&&i.logWriter.write(r.info,e+": ",...t)},warn:(...t)=>{i.logLevel>=r.warn&&i.logWriter.write(r.warn,e+": ",...t)},error:(...t)=>{i.logLevel>=r.error&&i.logWriter.write(r.error,e+": ",...t)}}}}i.logWriter=new class{write(e,...t){switch(e){case r.trace:case r.debug:console.debug(...t);break;case r.info:console.info(...t);break;case r.warn:console.warn(...t);break;case r.error:console.error(...t)}}},i.logLevel=r.info,t.LoggerFactory=i},2654:(e,t)=>{Object.defineProperty(t,"__esModule",{value:!0}),t.default=class{setResultBlob(e){this.resultBlob=e}setErr(e){this.err=e}getResultBlob(){return this.resultBlob}getError(){return this.err}setExpiration(){const e=new Date,t=new Date(e.getTime()+6e5);this.expiredAt=t.getTime()}isExpired(){return!this.expiredAt||Date.now()>this.expiredAt}}},2582:function(e,t,r){var i=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0}),t.DarwiniumWrapper=void 0;const n=i(r(2654)),o=i(r(3350));t.DarwiniumWrapper=class{static collectData(){return new Promise((e=>{const t=new n.default;dwn?dwn.start({geo_location_enabled:!1,mouse:!0}).collect().then((r=>{t.setResultBlob(r),t.setExpiration(),e(t)})).catch((r=>{t.setErr(o.default.extractMessage(r)),t.setExpiration(),e(t)})):(t.setErr("Darwinium instance is not avaialble"),t.setExpiration(),e(t))}))}static collectDataInIFrame(e){return new Promise((t=>{var r;const i=new n.default,o=e=>{if(e.data&&"prove-device-signal"===e.data.source){const r=e.data.dwnData;i.setResultBlob(r),i.setExpiration(),console.log(r),t(i),window.removeEventListener("message",o)}else if(e.data&&"prove-device-signal-error"===e.data.source){const r=e.data.dwnErr;i.setErr(r),i.setExpiration(),t(i),window.removeEventListener("message",o)}};let s=document.getElementById("prove-iframe");s&&(null===(r=s.parentNode)||void 0===r||r.removeChild(s)),window.addEventListener("message",o);const a=document.createElement("iframe");a.src=e,a.style.display="none",a.id="prove-iframe",document.body.appendChild(a)}))}static runDarwinmiumAndPostResultInMsg(){dwn?dwn.start({geo_location_enabled:!1,mouse:!0}).collect().then((e=>{window.parent.postMessage({source:"prove-device-signal",dwnData:e},"*")})).catch((e=>{window.parent.postMessage({source:"prove-device-signal-error",dwnErr:e},"*")})):window.parent.postMessage({source:"prove-device-signal-error",fpErr:"Darwinium instance is not avaialble"},"*")}}},5501:(e,t)=>{var r,i,n,o;Object.defineProperty(t,"__esModule",{value:!0}),t.DarwiniumCollectionEndpoint=t.BuildConfig=t.ProveAuthProxyEndpoint=t.ProveAuthProxyScriptUrl=void 0,(o=t.ProveAuthProxyScriptUrl||(t.ProveAuthProxyScriptUrl={})).DEFAULT_US_UAT_SCRIPT_URL="https://upk.uat.prove-auth.proveapis.com/vFqZceQyx8/uqLttozA7q",o.DEFAULT_US_PROD_SCRIPT_URL="https://upk.prove-auth.proveapis.com/vf82rhgDRK/r4VnwuwPUd",(n=t.ProveAuthProxyEndpoint||(t.ProveAuthProxyEndpoint={})).DEFAULT_US_UAT_ENDPOINT="https://upk.uat.prove-auth.proveapis.com/vFqZceQyx8/bt9xhGAgQw",n.DEFAULT_US_PROD_ENDPOINT="https://upk.prove-auth.proveapis.com/vf82rhgDRK/ePaZsNne4X",(i=t.BuildConfig||(t.BuildConfig={})).DEV="DEV",i.US_UAT="US_UAT",i.US_PROD="US_PROD",(r=t.DarwiniumCollectionEndpoint||(t.DarwiniumCollectionEndpoint={})).DEV="https://upk.dev.prove-auth.proveapis.com/device-context",r.US_UAT="https://upk.uat.prove-auth.proveapis.com/device-context",r.US_PROD="https://upk.prove-auth.proveapis.com/device-context"},3350:(e,t)=>{Object.defineProperty(t,"__esModule",{value:!0});class r extends Error{constructor(e,t,r,i){super(e),this.code=t,this.nextStep=r,this.reportable=void 0===i||i}static extractMessage(e){let t="";if(e){const r="message";e[r]?t=e[r]:(t=e.toString(),t.startsWith("[object ")&&(t=JSON.stringify(e)))}return t}}t.default=r},6267:(e,t)=>{var r;Object.defineProperty(t,"__esModule",{value:!0}),t.AuthResponseStatus=void 0,(r=t.AuthResponseStatus||(t.AuthResponseStatus={})).Accept="accept",r.Reject="reject",r.Cancel="cancel",r.Unexpected="unexpected",r.Timeout="timeout",r.Unknown="unknown"},1204:function(e,t,r){var i=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0});const n=r(1727),o=r(6462),s=i(r(3350)),a=r(2102),c=i(r(5186));t.default=class{get namespace(){var e;return(null===(e=this.claims)||void 0===e?void 0:e.auth.ans)||this.settings.namespace}get backendOrigin(){var e;return this.backendOriginOverride||(null===(e=this.claims)||void 0===e?void 0:e.auth.endp)}get authId(){var e;return null===(e=this.claims)||void 0===e?void 0:e.auth.id}get challenge(){var e;return null===(e=this.claims)||void 0===e?void 0:e.auth.chlg}get next(){var e;return null===(e=this.claims)||void 0===e?void 0:e.auth.next}constructor(e,t,r){var i,o;this.channels=new Set,this.log=n.LoggerFactory.getLogger("auth-session"),this.platform=t,this.authToken=r,this.settings=e,r&&(this.claims=this.parseJwt(r),this.settings.namespace=this.claims.auth.ans,this.uvLevel=(null===(o=null===(i=this.claims.auth.subs.dev)||void 0===i?void 0:i.auths.pasv)||void 0===o?void 0:o.uvlvl)||a.UserVerificationLevel.Discouraged),this.requestSigner=t.createRequestSigner(this)}fetchFromBackend(e,t){const r="POST",i="application/json",n=JSON.stringify(t),s=e.split("?"),a=s[0],l=s.length>1?s[1]:"",u=new Headers({Accept:i,"Content-Type":i,"PA-Version":o.USER_AGENT_VERSIONS});return this.authToken&&u.set("Authorization","Bearer "+this.authToken),new Promise(((t,o)=>{this.requestSigner.sign(r,a,l,i,n).then((i=>{i&&(u.set("PA-Sig-Version",i.version),u.set("PA-Challenge",i.challenge),u.set("PA-KID",i.keyId),u.set("PA-Signature",i.signature)),this.platform.fetch(this.backendOrigin+e,{mode:"cors",method:r,headers:u,body:n}).then((e=>e.json())).then((e=>{e.error&&e.error.code===c.default.ERROR_NO_DEVICE_FOUND&&(this.settings.reset(),this.platform.deviceAuth.reset()),t(e)})).catch(o)})).catch(o)}))}createMessageChannel(e,t,r,i){if(!this.authToken)throw new Error("Authentication token is not initialized, cannot create MessageChannel");const n=this.backendOrigin.replace(/^http/,"ws"),o=this.platform.createMessageChannel(n+e);var a=!0;const c=setInterval((()=>{a?(this.log.trace("Sending ping message"),a=!1,o.send("ping")):(this.log.warn("Failed to receive ping response in time, closing the channel"),clearInterval(c),o.close(),r("Channel communication stalled"),this.channels.delete(o))}),3e4);return o.addEventListener("close",(e=>{this.log.debug("Message channel is closed"),clearInterval(c),t(),this.channels.delete(o)})),o.addEventListener("error",(e=>{this.log.trace("Message channel encountered an error"),this.log.trace(e),clearInterval(c),r(s.default.extractMessage(e)),this.channels.delete(o)})),o.addEventListener("message",(e=>{if(this.log.trace("Message channel received a message"),this.log.trace(e),"origin"in e&&e.origin!==n)r("Unexpected origin");else{const t=e.data;t&&"string"==typeof t?"pong"===t?a=!0:i(t):i(e.toString())}})),this.channels.add(o),o}closeAllMessageChannels(){this.log.trace("Closing all message channels, total "+this.channels.size+" registered channels");const e=new Set(this.channels);e.forEach((e=>e.close())),e.clear(),this.channels.clear()}getDeviceRegistration(){return new Promise(((e,t)=>{this.platform.deviceAuth.getRegistration(this.namespace).then((t=>{t&&(this.backendOriginOverride?this.log.debug("Not overriding backend URL since it has been already set"):(this.backendOriginOverride=t.endpoint,this.log.debug("backend URL overridden with "+this.backendOriginOverride))),e(t)})).catch(t)}))}embedFpResultToDeviceRegistration(e){return new Promise((t=>{this.getFingerprintData().then((r=>{r&&e.setFpSignal(r),t(e)})).catch((t=>{const r=`Unexpected error happened during Fingerprint data collection: ${t.toString}`;this.log.warn(r),e.setFpSignal({error:r})}))}))}embedDarwiniumResultToDeviceRegistration(e){return new Promise((t=>{const r="Darwinium data is not avaialble";if(this.shouldSendDarwiniumData()){const t=this.settings.darwiniumResult;t?t.isExpired()?e.setDarwiniumSignal({error:"Darwinium data is expired"}):t.getResultBlob()?e.setDarwiniumSignal({results:t.getResultBlob()}):t.getError()?e.setDarwiniumSignal({error:t.getError()}):e.setDarwiniumSignal({error:r}):e.setDarwiniumSignal({error:r})}t(e)}))}embedDarwiniumSignal(e){const t="Darwinium data is not avaialble";if(this.shouldSendDarwiniumData()){const r=this.settings.darwiniumResult;r?r.isExpired()?e.darwinium={error:"Darwinium data is expired"}:r.getResultBlob()?e.darwinium={results:r.getResultBlob()}:r.getError()?e.darwinium={error:r.getError()}:e.darwinium={error:t}:e.darwinium={error:t}}}getFingerprintData(){return new Promise((e=>{var t=this.platform.getFpPromise();if(this.shouldCollectFP())if(t)t.then((e=>e.get())).then((t=>{if(t.sealedResult)this.log.debug(`FP result: ${t.sealedResult}`),e({results:t.sealedResult});else{const t="Cannot found sealed result in Fingerprint returned payload";this.log.warn(t),e({error:t})}})).catch((t=>{const r=`Error in collecting Fingerprint data: ${t.toString}`;this.log.warn(r),e({error:r})}));else{const t="Found null instance of Fingerprint, check if your input API key is valid";this.log.warn(t),e({error:t})}else this.log.debug("Fingerprint is not enabled from AuthToken"),e(void 0)}))}shouldCollectFP(){var e,t,r;return!!(null===(r=null===(t=null===(e=this.claims)||void 0===e?void 0:e.auth.subs.dev)||void 0===t?void 0:t.sgnls)||void 0===r?void 0:r.fpt)}shouldSendDarwiniumData(){var e,t,r;return!!(null===(r=null===(t=null===(e=this.claims)||void 0===e?void 0:e.auth.subs.dev)||void 0===t?void 0:t.sgnls)||void 0===r?void 0:r.dwn)}parseJwt(e){return JSON.parse(atob(e.split(".")[1]))}}},3225:function(e,t,r){var i=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0}),t.AuthStatusActions=void 0;const n=r(1727),o=i(r(3350));t.AuthStatusActions=class{constructor(){this.log=n.LoggerFactory.getLogger("auth-status-actions")}waitForStatus(e){var t=!1;return this.log.trace("Waiting for auth status"),new Promise(((r,i)=>{const n=e.createMessageChannel("/v1/client/status?token="+encodeURIComponent(e.authToken),(()=>{t||i(new o.default("Failed to receive secondary authentication status, no response"))}),(e=>{t=!0,i(new o.default("Failed to receive secondary authentication status: "+e))}),(s=>{t=!0;try{this.log.debug("Secondary authentication status: "+s);const t=JSON.parse(s);t.error?i(new o.default(t.error.message,t.error.code,t.next)):(e.lastStep=t.next,r(t.next))}catch(e){i(e)}finally{this.log.trace("Closing channel"),n.close()}}))}))}}},2102:(e,t)=>{var r;Object.defineProperty(t,"__esModule",{value:!0}),t.UserVerificationLevel=void 0,(r=t.UserVerificationLevel||(t.UserVerificationLevel={})).Discouraged="none",r.Preferred="pref",r.Required="req"},8370:function(e,t,r){var i=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0});const n=i(r(8607)),o=r(1727),s=i(r(3350)),a=i(r(5186));class c{constructor(){this.log=o.LoggerFactory.getLogger("device-passive-register-step"),this.name=c.NAME}execute(e){return new Promise(((t,r)=>{e.getDeviceRegistration().then((i=>{i?e.embedFpResultToDeviceRegistration(i).then((t=>e.embedDarwiniumResultToDeviceRegistration(t))).then((i=>{this.finishRegistration(e,[this.getFido2Registration(e)],i.getSignals()).then(t).catch(r)})):e.platform.deviceAuth.createRegistration({namespace:e.namespace,endpoint:e.backendOrigin}).then((t=>e.embedFpResultToDeviceRegistration(t))).then((t=>e.embedDarwiniumResultToDeviceRegistration(t))).then((i=>{i.getAuthRegistration(e.challenge).then((t=>this.finishRegistration(e,[this.getFido2Registration(e),t],i.getSignals()))).then((n=>{i.deviceId=e.settings.deviceId,e.platform.deviceAuth.storeRegistration(i).then((()=>t(n))).catch(r)})).catch(r)})).catch(r)})).catch(r)}))}finishRegistration(e,t,r){return new Promise(((i,n)=>{e.fetchFromBackend("/v1/client/device/fido2/register/finish",{deviceName:e.platform.getPlatformName(),deviceCapabilities:e.platform.getDeviceCapabilities(),registrations:t,signals:r}).then((t=>{if(t.error)n(new s.default(t.error.message,t.error.code,t.next));else{const r=t.data;r&&r.deviceId?(e.settings.deviceId=r.deviceId,e.settings.fidoPasskeyRegistered=!0,i(t.next)):n(new s.default("Failed to register device, returned deviceId is null or empty",a.default.ERROR_AUTHENTICATION_FAILURE,t.next,!1))}})).catch(n)}))}getFido2Registration(e){const t=e.credential,r=t.response;return{webAuthnCredential:{type:null==t?void 0:t.type,id:null==t?void 0:t.id,rawId:n.default.bufferEncode(null==t?void 0:t.rawId),response:{attestationObject:n.default.bufferEncode(r.attestationObject),clientDataJSON:n.default.bufferEncode(r.clientDataJSON)}}}}}c.NAME="device/passive/register",t.default=c},1044:function(e,t,r){var i=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0});const n=r(1727),o=i(r(3350));class s{constructor(e,t){this.name=s.NAME,this.log=n.LoggerFactory.getLogger("device-passive-silent-step"),this.forUPK=e,this.userConsentStep=null!=t?t:{execute:()=>Promise.resolve({consentGranted:!0})}}execute(e){return this.log.trace("Executing"),new Promise(((t,r)=>{e.getDeviceRegistration().then((i=>{i?e.embedFpResultToDeviceRegistration(i).then((t=>e.embedDarwiniumResultToDeviceRegistration(t))).then((i=>{this.verify(e,i).then(t).catch(r)})):this.userConsentStep.execute().then((i=>{i.consentGranted?e.platform.deviceAuth.createRegistration({namespace:e.namespace,endpoint:e.backendOrigin}).then((t=>e.embedFpResultToDeviceRegistration(t))).then((t=>e.embedDarwiniumResultToDeviceRegistration(t))).then((t=>this.register(e,t))).then(t).catch(r):r(new Error("User denied the consent to register the device"))})).catch(r)})).catch(r)}))}getBackendRegisterEndpoint(){return this.forUPK?"/v1/client/device/universal/register":"/v1/client/device/passive/register"}getBackendVerifyEndpoint(){return this.forUPK?"/v1/client/device/universal/verify":"/v1/client/device/passive/verify"}register(e,t){return this.log.trace("Registering"),new Promise(((r,i)=>{t.getAuthRegistration(e.challenge).then((n=>{e.fetchFromBackend(this.getBackendRegisterEndpoint(),{deviceName:e.platform.getPlatformName(),deviceCapabilities:e.platform.getDeviceCapabilities(),registrations:[n],signals:t.getSignals()}).then((n=>{if(n.error)i(new o.default(n.error.message,n.error.code,n.next,!1));else{const s=n,a=s.data.deviceId;a||i(new o.default("Failed to register device, returned deviceId is null or empty",0,n.next)),e.settings.deviceId=a,e.settings.fidoPasskeyRegistered=s.data.passkey,t.deviceId=a,this.log.debug("Device ID: "+a),e.platform.deviceAuth.storeRegistration(t).then((()=>r(n.next))).catch(i)}})).catch(i)}))}))}verify(e,t){return this.log.trace("Verifying"),new Promise(((r,i)=>{if(t.deviceId){const n=t.deviceId+":"+e.challenge;t.sign(n).then((n=>{e.fetchFromBackend(this.getBackendVerifyEndpoint(),{deviceId:t.deviceId,keyId:t.keyId,signature:n,signals:t.getSignals()}).then((e=>{e.error?i(new o.default(e.error.message,e.error.code,e.next,!1)):r(e.next)})).catch(i)}))}else i(new o.default("Failed to initiate verification, DeviceId is missing"))}))}}s.NAME="device/passive/silent",t.default=s},6736:function(e,t,r){var i=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0}),t.DevicePassiveActions=void 0;const n=r(1727),o=i(r(8607)),s=i(r(1044)),a=r(2102),c=i(r(3350)),l=r(4817),u=r(3225);class d extends u.AuthStatusActions{constructor(e){super(),this.log=n.LoggerFactory.getLogger("device-passive-actions"),this.getDisplayName=e||(()=>null)}register(e){return this.log.trace("Registering"),new Promise(((t,r)=>{const i=this.getDisplayName();e.fetchFromBackend("/v1/client/device/fido2/register/start",{displayName:i||void 0}).then((n=>{if(n.error)r(new c.default(n.error.message,n.error.code,n.next));else{let s=n.data.credCreateOptions;s.challenge=o.default.bufferDecode(s.challenge),s.user.id=o.default.bufferDecode(s.user.id),i&&(s.user.displayName=i),s.excludeCredentials&&s.excludeCredentials.forEach((e=>{e.id=o.default.bufferDecode(e.id)})),e.platform.webauthn.createCredentials({publicKey:s}).then((i=>{i?(e.credential=i,t(n.next)):r(new c.default("Failed to create FIDO2 credentials"))})).catch(r)}})).catch(r)}))}verify(e){return this.log.trace("Verifying"),new Promise(((t,r)=>{e.settings.deviceId?e.fetchFromBackend("/v1/client/device/fido2/verify/start",{deviceId:e.settings.deviceId}).then((i=>{var n;if(i.error)r(new c.default(i.error.message,i.error.code,i.next));else{let s=i.data.credRequestOptions;s.challenge=o.default.bufferDecode(s.challenge),s.allowCredentials&&(null===(n=s.allowCredentials)||void 0===n||n.forEach((e=>{e.id=o.default.bufferDecode(e.id)}))),e.platform.webauthn.getCredentials({publicKey:s}).then((n=>{n?(e.credential=n,t(i.next)):r(new Error("Failed to load FIDO2 credentials"))})).catch(r)}})).catch(r):r(new c.default("Failed to start verification, DeviceId is missing"))}))}}t.DevicePassiveActions=d;class h extends d{constructor(e,t){super(e),this.name=h.NAME,this.role=null!=t?t:l.DeviceRole.Primary,this.log=n.LoggerFactory.getLogger("device-passive-step")}execute(e){return this.role==l.DeviceRole.Secondary?this.waitForStatus(e):e.platform.isFidoSupported()&&e.uvLevel!==a.UserVerificationLevel.Discouraged?e.settings.deviceId?e.settings.fidoPasskeyRegistered?this.verify(e):Promise.resolve(s.default.NAME):this.register(e):Promise.resolve(s.default.NAME)}}h.NAME="device/passive",t.default=h},1474:(e,t,r)=>{Object.defineProperty(t,"__esModule",{value:!0});const i=r(1727),n=r(6736);class o extends n.DevicePassiveActions{constructor(e){super(e),this.name=o.NAME,this.log=i.LoggerFactory.getLogger("device-passive-stepup-step")}execute(e){return e.platform.isFidoSupported()?e.settings.deviceId?e.settings.fidoPasskeyRegistered?Promise.reject(new Error("FIDO2 Passkey is already registered")):this.register(e):Promise.reject(new Error("Device is not registered")):Promise.reject(new Error("FIDO2 is not supported"))}}o.NAME="device/passive/stepup",t.default=o},1840:function(e,t,r){var i=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0});const n=i(r(8607)),o=r(1727),s=i(r(3350));class a{constructor(){this.log=o.LoggerFactory.getLogger("device-passive-verify-step"),this.name=a.NAME}execute(e){return new Promise(((t,r)=>{e.getFingerprintData().then((i=>{let n={fingerprint:i};e.embedDarwiniumSignal(n),this.runFidoVerifyFinish(e,n).then(t).catch(r)})).catch((i=>{var n=`Unexpected error happened during Fingerprint data collection ${i.toString}`;this.log.warn(n);let o={fingerprint:{error:n}};e.embedDarwiniumSignal(o),this.runFidoVerifyFinish(e).then(t).catch(r)}))}))}runFidoVerifyFinish(e,t){return new Promise(((r,i)=>{const o=e.credential,a=o.response;e.fetchFromBackend("/v1/client/device/fido2/verify/finish",{webAuthnAssertion:{type:null==o?void 0:o.type,id:null==o?void 0:o.id,rawId:n.default.bufferEncode(null==o?void 0:o.rawId),response:{authenticatorData:n.default.bufferEncode(a.authenticatorData),clientDataJSON:n.default.bufferEncode(a.clientDataJSON),signature:n.default.bufferEncode(a.signature),userHandle:a.userHandle?n.default.bufferEncode(a.userHandle):void 0}},signals:t}).then((t=>{if(t.error)i(new s.default(t.error.message,t.error.code,t.next));else{const i=t.data;i&&i.scanMessage?e.authMessage=i.scanMessage:this.log.warn("No data was received in the response"),r(t.next)}})).catch(i)}))}}a.NAME="device/passive/verify",t.default=a},2207:function(e,t,r){var i=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0}),t.DeviceUniversalRedirectExchangeStep=t.DeviceUniversalRedirectFinishStep=t.DeviceUniversalRedirectBaseStep=void 0;const n=i(r(3350));class o{constructor(){this.name=""}execute(e){return new Promise(((t,r)=>{var i,o,s,a,c,l;let u=null===(l=null===(c=null===(a=null===(s=null===(o=null===(i=e.claims)||void 0===i?void 0:i.auth)||void 0===o?void 0:o.subs)||void 0===s?void 0:s.dev)||void 0===a?void 0:a.auths)||void 0===c?void 0:c.unvsl)||void 0===l?void 0:l.ftu;if(void 0!==u&&u){u+=`?authId=${e.authId}`;let i="";if("redirect/exchange"===this.name)i="authexchange";else{if("redirect/finish"!==this.name)return void r(new n.default(`Unknown UPK Step: ${this.name}`,0,e.next,!0));i="authfinish"}u+=`&next=${i}`,e.platform.urlRedirect(u),t("")}else r(new n.default("AuthToken claims do not contain final target URL",0,e.next,!0))}))}}t.DeviceUniversalRedirectBaseStep=o;class s extends o{constructor(){super(...arguments),this.name=s.NAME}}s.NAME="redirect/finish",t.DeviceUniversalRedirectFinishStep=s;class a extends o{constructor(){super(...arguments),this.name=a.NAME}}a.NAME="redirect/exchange",t.DeviceUniversalRedirectExchangeStep=a},9790:function(e,t,r){var i=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0});const n=r(1727),o=i(r(3350)),s=i(r(1044));class a{constructor(e){this.log=n.LoggerFactory.getLogger("device-universal-step"),this.name=a.NAME,this.forUPK=!1,this.forUPK=e}execute(e){return this.log.trace("Executing"),new Promise(((t,r)=>{var i,n,a;if(this.forUPK)t(s.default.NAME);else{let s=null===(a=null===(n=null===(i=e.claims)||void 0===i?void 0:i.auth.subs.dev)||void 0===n?void 0:n.auths.unvsl)||void 0===a?void 0:a.endp;void 0!==s&&s?(s+=`?authId=${e.authId}&authtoken=${e.authToken}`,e.platform.urlRedirect(s),t("")):r(new o.default("AuthToken claims do not contain universal redirect URL",0,e.next,!0))}}))}}a.NAME="device/universal",t.default=a},5186:(e,t)=>{Object.defineProperty(t,"__esModule",{value:!0});class r{}r.ERROR_AUTHENTICATION_FAILURE=1e4,r.ERROR_AUTHENTICATION_EXTERNAL_FAILURE=10001,r.ERROR_AUTHENTICATION_CLIENT_FAILURE=10002,r.ERROR_AUTHENTICATION_PROHIBITED_ACTION=10003,r.ERROR_MISSING_AUTHENTICATOR_COMPLETION=10004,r.ERROR_MAX_ATTEMPTS=10005,r.ERROR_NO_DEVICE_FOUND=10006,t.default=r},9568:function(e,t,r){var i=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0});const n=r(1727),o=i(r(4610)),s=i(r(1204)),a=i(r(3350)),c=i(r(6105)),l=i(r(5186));class u{constructor(e,t,r,i){if(this.steps=new Map,this.log=n.LoggerFactory.getLogger("main-authenticator"),this.platform=e,this.authFinishStep=r,this.settings=t,i)for(let e of i)this.steps.set(e.name,e)}isPasskeyRegistered(){return this.settings.fidoPasskeyRegistered}isFidoSupported(){return this.platform.isFidoSupported()}isDeviceRegistered(){return null!==this.settings.deviceId}isMobileWeb(){const e=this.platform.getUserAgent();return null!==e&&/Mobi|Android|webOS|iPhone|iPad|BlackBerry|Opera Mini/i.test(e)}getDeviceId(){return this.settings.deviceId}resetDeviceSettings(){this.settings.reset(),this.platform.deviceAuth.reset()}authenticate(e){return new o.default(((t,r,i)=>{e||r(new Error("No authentication token provided")),this.authFinishStep||r(new Error("AuthFinish step must be specified"));try{const n=new s.default(this.settings,this.platform,e),o=this.process(n);i((()=>o.cancel())),o.then((()=>{var e;if(n.lastStep!==u.AUTH_EMPTY)return this.log.info("Authentication flow has been completed."),null===(e=this.authFinishStep)||void 0===e?void 0:e.execute({authId:n.authId});this.log.info("Next step is not provided, authentication flow is terminated without completion."),t()})).then(t).catch(r)}catch(e){r(e)}}))}unregisterDevice(){return this.isDeviceRegistered()?new Promise(((e,t)=>{this.unregister("/v1/client/device/unregister").then((()=>{this.resetDeviceSettings(),e()})).catch(t)})):Promise.resolve()}unregisterPasskey(){return this.settings.fidoPasskeyRegistered?new Promise(((e,t)=>{this.unregister("/v1/client/stepup/unregister").then((()=>{this.settings.fidoPasskeyRegistered=!1,e()})).catch(t)})):Promise.resolve()}unregister(e){return new Promise(((t,r)=>{try{new s.default(this.settings,this.platform).fetchFromBackend(e,{deviceId:this.getDeviceId()}).then((e=>{e.error?r(new a.default(e.error.message,e.error.code,e.next)):t()})).catch(r)}catch(e){r(e)}}))}process(e){return new o.default(((t,r,i)=>{i((()=>{this.log.info("Canceled"),e.closeAllMessageChannels(),t()})),this.nextStep(e,e.next,1).then(t).catch(r)}))}nextStep(e,t,r){return this.log.debug(`Authentication attempt ${r}, next step: ${t}`),e.lastStep=t,new Promise(((i,n)=>{[u.AUTH_DONE,u.AUTH_EMPTY].includes(t)?i():r>u.MAX_ATTEMPTS?n(new a.default("Too many authentication steps",l.default.ERROR_MAX_ATTEMPTS)):this.getNextStep(t).execute(e).then((t=>this.nextStep(e,t,r+1))).then(i).catch((t=>new c.default(t).execute(e).then((t=>this.nextStep(e,t,r+1))).then(i).catch(n)))}))}getNextStep(e){return this.steps.get(e)||new c.default("Unknown authentication step: "+e)}}u.AUTH_DONE="done",u.AUTH_EMPTY="",u.MAX_ATTEMPTS=50,t.default=u},7625:function(e,t,r){var i=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0});const n=i(r(3350)),o=r(1727),s=r(4817),a=i(r(5186));class c{constructor(e,t){this.name=c.NAME,this.log=o.LoggerFactory.getLogger("mobile-instant-step"),this.errorCodeBak=a.default.ERROR_AUTHENTICATION_CLIENT_FAILURE,this.implementation=e,t?(this.getDeviceIp=t,this.deviceIpDetection=!1):(this.getDeviceIp=()=>null,this.deviceIpDetection=!0)}execute(e){return new Promise(((t,r)=>{let i=e.platform.getMobileAuthBuilder().withDeviceIpDetection(this.deviceIpDetection);switch(this.implementation){case s.MobileAuthImplementation.Pixel:i=i.withPixelImplementation();break;case s.MobileAuthImplementation.Fetch:i=i.withFetchImplementation().withFinishStep((t=>new Promise(((r,i)=>{e.fetchFromBackend("/v1/client/mobile/instant/finish",{vfp:t.vfp}).then(r).catch(i)}))))}i=i.withStartStep((t=>new Promise(((r,i)=>{const o=this.deviceIpDetection?t.deviceDescriptor.ip:this.getDeviceIp();e.fetchFromBackend("/v1/client/mobile/instant/start",{cellularIp:o,implementation:this.implementation}).then((e=>{var t;e.error?(this.nextBak=e.next,this.errorCodeBak=e.error.code,i(new n.default(e.error.message,e.error.code,e.next,!1))):r({authUrl:null===(t=e.data)||void 0===t?void 0:t.redirectUrl})})).catch(i)})))),i.build().authenticate().then((i=>{if(i){const e=i;e.error&&r(new n.default(i.error.message,i.error.code,i.next,!1)),t(e.next)}else e.fetchFromBackend("/v1/client/mobile/instant/finish",{}).then((e=>t(e.next))).catch((e=>{r(new n.default(i.error.message,i.error.code,i.next,!1))}))})).catch((e=>{r(new n.default(e,this.errorCodeBak,this.nextBak,!1))}))}))}}c.NAME="mobile/instant",t.default=c},3075:function(e,t,r){var i=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0});const n=r(1727),o=r(3794),s=i(r(3350)),a=r(3225);class c extends a.AuthStatusActions{constructor(e,t){super(),this.name=c.NAME,this.log=n.LoggerFactory.getLogger("mobile-instantlink-step"),this.startStep=e,this.getDeviceIp=null!=t?t:()=>null}execute(e){return this.log.trace("Executing"),new Promise(((t,r)=>{var i,n,o,s,a,c,l=!0;(null===(o=null===(n=null===(i=e.claims)||void 0===i?void 0:i.auth.subs.mob)||void 0===n?void 0:n.auths.inln)||void 0===o?void 0:o.mnp)&&(l=!1);var u=!1;(null===(c=null===(a=null===(s=e.claims)||void 0===s?void 0:s.auth.subs.mob)||void 0===a?void 0:a.auths.inln)||void 0===c?void 0:c.tme)&&(u=!0),this.runStartStep(e,l).then((i=>{this.runFinishStep(e,u).then((()=>this.waitForStatus(e))).then((e=>t(e))).catch(r)})).catch(r)}))}runStartStep(e,t,r){return new Promise(((i,n)=>{this.startStep?this.startStep.execute(t,r).then((r=>{e.fetchFromBackend("/v1/client/mobile/instantlink/start",{sourceIp:this.getDeviceIp(),mobileNumber:null==r?void 0:r.phoneNumber}).then((r=>{var a,c,l;const u=r;if(u.error)n(new s.default(u.error.message,u.error.code,r.next,!1));else if(u.data){var d="";(null===(a=u.data)||void 0===a?void 0:a.code)&&(d+=`Error Code: ${u.data.code}, `),(null===(c=u.data)||void 0===c?void 0:c.message)?d+=`${u.data.message}`:d+="Error validating phone number";let r=new o.PhoneValidationError(d,null===(l=u.data)||void 0===l?void 0:l.code);this.log.error(`Server reports invalid phone number: ${d}`),this.runStartStep(e,t,r).then(i).catch(n)}else i(u.next)})).catch(n)})).catch(n):n(new Error("InstantLink start step must be specified"))}))}runFinishStep(e,t){return new Promise(((r,i)=>{t?(this.log.info("Simulating user clicking the instant link"),setTimeout((()=>{e.platform.fetch(e.backendOrigin+"/v1/client/mobile/instantlink/finish?token="+encodeURIComponent(e.authToken)+"&vfp=test-vfp",{mode:"no-cors",method:"GET"}).catch((e=>{this.log.error("Calling AuthFinish in test mode has failed: ",s.default.extractMessage(e))})).finally(r)}),100)):r()}))}}c.NAME="mobile/instantlink",t.default=c},8907:function(e,t,r){var i=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0});const n=r(1727),o=i(r(3350)),s=r(8864),a=r(3794);class c{constructor(e,t){this.name=c.NAME,this.log=n.LoggerFactory.getLogger("mobile-otp-step"),this.otpStartStep=e,this.otpFinishStep=t}execute(e){return new Promise(((t,r)=>{var i,n,o;if(this.otpStartStep)if(this.otpFinishStep){var s=!0;(null===(o=null===(n=null===(i=e.claims)||void 0===i?void 0:i.auth.subs.mob)||void 0===n?void 0:n.auths.otp)||void 0===o?void 0:o.mnp)&&(s=!1),this.runOtpStartStep(e,this.otpStartStep,this.otpFinishStep,s).then(t).catch(r)}else r(new Error("OtpFinishStep step must be specified"));else r(new Error("OtpStartStep step must be specified"))}))}runOtpStartStep(e,t,r,i,n){return new Promise(((s,c)=>{t.execute(i,n).then((n=>{e.fetchFromBackend("/v1/client/mobile/otp/start",{mobileNumber:null==n?void 0:n.phoneNumber}).then((n=>{const l=n;if(l.error)c(new o.default(l.error.message,l.error.code,n.next,!1));else if(l.data){let n=l.data;var u="";(null==n?void 0:n.code)&&(u+=`Error Code: ${n.code}, `),(null==n?void 0:n.message)?u+=`${n.message}`:u+="Error validating phone number";let o=new a.PhoneValidationError(u,null==n?void 0:n.code);this.log.error(`Server reports invalid phone number: ${u}`),this.runOtpStartStep(e,t,r,i,o).then(s).catch(c)}else this.runOtpFinishStep(e,t,r,i).then(s).catch(c)})).catch(c)})).catch((e=>{const t=o.default.extractMessage(e);c(new Error(`Failed to start OTP flow: ${t}`))}))}))}runOtpFinishStep(e,t,r,i,n){return new Promise(((a,c)=>{r.execute(n).then((n=>{var l;let u=n;switch(u.resultType){case s.OtpFinishResultType.OnResendOtp:this.runOtpStartStep(e,t,r,i).then(a).catch(c);break;case s.OtpFinishResultType.OnSuccess:let n=u.input;e.fetchFromBackend("/v1/client/mobile/otp/finish",{otp:null!==(l=null==n?void 0:n.otp)&&void 0!==l?l:""}).then((n=>{const l=n;if(l.error)c(new o.default(l.error.message,l.error.code,n.next,!1));else if(l.data){let n=l.data;var u="";(null==n?void 0:n.code)&&(u+=`Error Code: ${n.code}, `),(null==n?void 0:n.message)?u+=`${n.message}`:u+="Error validating OTP";let o=new s.OtpError(u,null==n?void 0:n.code);this.log.error(`Server reports invalid OTP: ${u}`),this.runOtpFinishStep(e,t,r,i,o).then(a).catch(c)}else a(n.next)})).catch(c)}})).catch((e=>{const t=o.default.extractMessage(e);c(new Error(`Failed to obtain OTP for verification: ${t}}`))}))}))}}c.NAME="mobile/otp",t.default=c},3794:function(e,t,r){var i=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0}),t.PhoneValidationError=void 0;const n=i(r(3350));class o extends n.default{constructor(e,t){super(e,t)}}t.PhoneValidationError=o},8566:(e,t)=>{Object.defineProperty(t,"__esModule",{value:!0}),t.getUnixTime=t.arrayBufferToHexString=t.arrayBufferToString=t.stringToArrayBuffer=t.DEVICE_CAPABILITY_WEBAUTHN=void 0,t.DEVICE_CAPABILITY_WEBAUTHN="webauthn",t.stringToArrayBuffer=function(e){return(new TextEncoder).encode(e)},t.arrayBufferToString=function(e){return String.fromCharCode.apply(null,Array.from(new Uint8Array(e)))},t.arrayBufferToHexString=function(e){return Array.from(new Uint8Array(e),(e=>("00"+e.toString(16)).slice(-2))).join("")},t.getUnixTime=function(){return Math.floor(Date.now()/1e3)}},6105:function(e,t,r){var i=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0});const n=r(1727),o=i(r(3350)),s=i(r(9568)),a=i(r(8370)),c=i(r(1044)),l=i(r(6736)),u=i(r(1840)),d=i(r(7625)),h=i(r(3075)),f=i(r(8907)),g=i(r(4704)),p=i(r(1474)),v=r(2207);class m{constructor(e){if(this.logger=n.LoggerFactory.getLogger("report-error-step"),this._message="Unknown error",this.reportable=!0,this.name="error",e instanceof o.default){const t=e;this._message=t.message,this._code=t.code,this.nextStep=t.nextStep,this.reportable=t.reportable}else e&&(this._message=o.default.extractMessage(e));this._message||this.logger.warn("Unexpected error: "+e)}get code(){return this._code}get message(){return this._message}execute(e){let t=`Authentication step ${e.lastStep} failed`;if(this._code&&(t=t+", code: "+this._code),this._message&&(t=t+", message: "+this._message),this.logger.error(t),this.nextStep===s.default.AUTH_DONE)return Promise.resolve(s.default.AUTH_DONE);const r=e.lastStep?m.endpointMap.get(e.lastStep):void 0;return!r||!this.reportable&&this.nextStep?this.nextStep?Promise.resolve(this.nextStep):Promise.reject(new o.default("Cannot determine the next auth step")):new Promise(((t,i)=>{e.fetchFromBackend(`/v1/client/${r}/error`,{code:this._code?this._code:void 0,message:this._message}).then((e=>t(e.next))).catch(i)}))}}m.endpointMap=new Map([[l.default.NAME,"device/passive"],[c.default.NAME,"device/passive"],[a.default.NAME,"device/fido2"],[u.default.NAME,"device/fido2"],[p.default.NAME,"device/fido2"],[d.default.NAME,"mobile/instant"],[h.default.NAME,"mobile/instantlink"],[f.default.NAME,"mobile/otp"],[g.default.NAME,"user/mobileactive"],[v.DeviceUniversalRedirectExchangeStep.NAME,"device/universal"],[v.DeviceUniversalRedirectFinishStep.NAME,"device/universal"]]),t.default=m},1770:(e,t,r)=>{Object.defineProperty(t,"__esModule",{value:!0});const i=r(1727),n=r(8566),o=["/v1/client/stepup/unregister","/v1/client/device/unregister","/v1/client/device/passive/error","/v1/client/mobile/instant/error","/v1/client/mobile/otp/error","/v1/client/user/mobileactive","/v1/client/user/mobileactive/error"];t.default=class{constructor(e){this.log=i.LoggerFactory.getLogger("request-signer"),this.session=e}sign(e,t,r,i,n){return new Promise(((s,a)=>{this.session.getDeviceRegistration().then((c=>c&&c.deviceId?o.includes(t)?void Promise.all([this.getChallenge(c.deviceId),this.getHash(n)]).then((n=>{const o=n[0],l=n[1],u=e+"\n"+t+"\n"+r+"\n"+i+"\n"+o+"\n"+l;c.sign(u).then((e=>s({version:"3",challenge:o,signature:e,keyId:c.keyId}))).catch(a)})).catch(a):(this.log.debug("No signing needed for "+t),void s(null)):(this.log.debug("Device not registered, cannot sign"),void s(null)))).catch(a)}))}getChallenge(e){return new Promise(((t,r)=>{this.cachedChallenge&&this.cachedChallenge.receivedAt&&this.cachedChallenge.ttl&&this.cachedChallenge.deviceId===e&&this.cachedChallenge.receivedAt+this.cachedChallenge.ttl-60>(0,n.getUnixTime)()?t(this.cachedChallenge.challenge):this.session.fetchFromBackend("/v1/client/challenge",{deviceId:e}).then((e=>e)).then((e=>{var i;e.error?r(null===(i=e.error)||void 0===i?void 0:i.message):(e.receivedAt=(0,n.getUnixTime)(),this.cachedChallenge=e,t(e.challenge))})).catch(r)}))}getHash(e){return new Promise(((t,r)=>{crypto.subtle.digest("SHA-256",(0,n.stringToArrayBuffer)(e)).then((e=>t((0,n.arrayBufferToHexString)(e)))).catch(r)}))}}},1703:function(e,t,r){var i=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0});const n=i(r(3350)),o=r(1727);class s{constructor(e){this.log=o.LoggerFactory.getLogger("scan-message-step"),this.name=s.NAME,this.authMessageHandler=e}execute(e){return new Promise(((t,r)=>{this.authMessageHandler?(e.authMessage||(this.log.warn("Auth message is missing"),e.authMessage={}),this.authMessageHandler(e.authMessage).then((i=>{e.fetchFromBackend("/v1/client/user/response",{response:i}).then((e=>{e.error?r(new n.default(e.error.message,e.error.code,e.next)):t(e.next)}))})).catch(r)):r(new n.default("Failed to process auth message, the handler was not specified"))}))}}s.NAME="scan/message",t.default=s},7370:function(e,t,r){var i=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0});const n=r(1727),o=i(r(2654));class s{constructor(e){this.log=n.LoggerFactory.getLogger("settings"),this.upkEnabled=!1,this.storage=e}reset(){this.log.trace("reset"),this.deviceId=null,this.namespace=null,this.fidoPasskeyRegistered=!1}get deviceId(){return this.storage.getItem(this.getKey(s.DEVICE_ID_KEY))}set deviceId(e){this.setOrRemove(s.DEVICE_ID_KEY,e)}get fidoPasskeyRegistered(){return"true"===this.storage.getItem(this.getKey(s.FIDO_PASSKEY_REGISTERED_KEY))}set fidoPasskeyRegistered(e){this.setOrRemove(s.FIDO_PASSKEY_REGISTERED_KEY,e?"true":null)}get namespace(){return this.storage.getItem(this.getKey(s.NAMESPACE_KEY))}set namespace(e){this.log.trace("namespace set to "+e),this.setOrRemove(s.NAMESPACE_KEY,e)}get darwiniumResult(){let e=this.storage.getItem(this.getKey(s.DARWINIUM_RESULT_KEY));if(e){const t=JSON.parse(e);return Object.assign(new o.default,t)}}set darwiniumResult(e){this.setOrRemove(s.DARWINIUM_RESULT_KEY,JSON.stringify(e))}getKey(e){return`${s.KEY_PREFIX}.${e}`}setOrRemove(e,t){t?this.storage.setItem(this.getKey(e),t):this.storage.removeItem(this.getKey(e))}}s.KEY_PREFIX="ProveAuth",s.DEVICE_ID_KEY="DeviceId",s.NAMESPACE_KEY="namespace",s.FIDO_PASSKEY_REGISTERED_KEY="fidoPasskeyRegistered",s.DARWINIUM_RESULT_KEY="DarwiniumResult",t.default=s},6185:function(e,t,r){var i=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0});const n=i(r(3350));class o{constructor(){this.name=o.NAME}execute(e){return new Promise(((e,t)=>{t(new n.default(`Step ${this.name} is not supported yet`))}))}}o.NAME="user/mobileactive",t.default=o},4704:function(e,t,r){var i=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0});const n=i(r(3350));class o{constructor(){this.name=o.NAME}execute(e){return new Promise(((e,t)=>{t(new n.default(`Step ${this.name} is not supported yet`))}))}}o.NAME="user/present",t.default=o},4781:function(e,t,r){var i=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0}),t.WebDeviceRegistration=void 0;const n=r(1727),o=i(r(3350)),s=r(8566);class a{constructor(e){this.deviceId=null,this.namespace=e.namespace,this.endpoint=e.endpoint,e.createdAt?(this.createdAt=e.createdAt,this.keyId=e.keyId,this.deviceId=e.deviceId,this.algorithm=e.algorithm,this.keys=e.keys):(this.keyId=crypto.randomUUID(),this.algorithm="ES256",this.createdAt=(0,s.getUnixTime)())}setFpSignal(e){this.fingerprint=e}sign(e){return new Promise(((t,r)=>{this.initialize().then((()=>{this.keys&&crypto.subtle.sign({name:"ECDSA",hash:{name:"SHA-256"}},this.keys.privateKey,(0,s.stringToArrayBuffer)(e)).then((e=>t(btoa((0,s.arrayBufferToString)(this.p1363ToDer(e)))))).catch(r)})).catch(r)}))}getPublicKey(){return new Promise(((e,t)=>{this.initialize().then((()=>{this.keys&&crypto.subtle.exportKey("spki",this.keys.publicKey).then((t=>{const r=btoa((0,s.arrayBufferToString)(t));e("-----BEGIN PUBLIC KEY-----\n"+r+"\n-----END PUBLIC KEY-----")})).catch(t)})).catch(t)}))}getAuthRegistration(e){return new Promise(((t,r)=>{this.sign(e).then((e=>{this.getPublicKey().then((r=>{t({publicKey:{id:this.keyId,alg:this.algorithm,key:r,uvLevel:0},signature:e})})).catch(r)})).catch(r)}))}getSignals(){return{fingerprint:this.fingerprint,darwinium:this.darwinium}}setDarwiniumSignal(e){this.darwinium=e}initialize(){return new Promise(((e,t)=>{this.keys?e():crypto.subtle.generateKey({name:"ECDSA",namedCurve:"P-256"},!1,["sign","verify"]).then((t=>{this.keys=t,e()})).catch(t)}))}p1363ToDer(e){const t=(0,s.arrayBufferToHexString)(e);let r=t.substring(0,t.length/2),i=t.substring(t.length/2);r=r.replace(/^(00)+/,""),i=i.replace(/^(00)+/,""),parseInt(r.charAt(0),16)>=8&&(r=`00${r}`),parseInt(i.charAt(0),16)>=8&&(i=`00${i}`);const n=`02${(r.length/2).toString(16).padStart(2,"0")}${r}`,o=`02${(i.length/2).toString(16).padStart(2,"0")}${i}`,a=`30${((n.length+o.length)/2).toString(16).padStart(2,"0")}${n}${o}`.match(/[\da-f]{2}/gi);return a?new Uint8Array(a.map((e=>parseInt(e,16)))):new Uint8Array}lenVal(e){if("string"==typeof e||e instanceof String){const t=e;return`[${t.length}]: ${t}`}{const t=e;return`[${t.byteLength}]: ${Array.from(new Uint8Array(t),(e=>e.toString(16))).join(",")}`}}}t.WebDeviceRegistration=a;class c{constructor(e){this.log=n.LoggerFactory.getLogger("web-device-auth"),this.dbFactory=e}createRegistration(e){return new Promise(((t,r)=>{t(new a(e))}))}getRegistration(e){return new Promise(((t,r)=>{const i=this.openDatabase();i.onerror=e=>{r("Failed to open registration database: "+e)},i.onsuccess=i=>{const n=i.target.result,o=n.transaction([c.DB_STORE],"readonly");o.oncomplete=()=>n.close();const s=o.objectStore(c.DB_STORE).get(e);s.onerror=e=>{this.log.error(e),r(new Error("Failed to access registration"))},s.onsuccess=()=>{s.result?t(new a(s.result)):t(null)}}}))}storeRegistration(e){return new Promise(((t,r)=>{const i=this.openDatabase();i.onerror=e=>{r("Failed to open registration database: "+e)},i.onsuccess=i=>{const n=i.target.result,s=n.transaction([c.DB_STORE],"readwrite");s.oncomplete=()=>n.close();const a=s.objectStore(c.DB_STORE);this.log.trace("Saving registration");const l=a.put(e);l.onsuccess=()=>{this.log.trace("Registration saved"),t()},l.onerror=e=>{this.log.error(e),r(new o.default("Failed to store registration"))}}}))}deleteRegistration(e){return new Promise(((t,r)=>{var i=this.openDatabase();i.onerror=e=>{r("Failed to open registration database: "+e)},i.onsuccess=i=>{var n=i.target.result,o=n.transaction([c.DB_STORE],"readwrite");if(o.oncomplete=()=>n.close(),!n.objectStoreNames.contains(c.DB_STORE))return this.log.debug("Registration not found, store is missing"),void t();var s=o.objectStore(c.DB_STORE).delete(e);s.onsuccess=()=>{t()},s.onerror=e=>{this.log.error(e),r(new Error("Failed to delete registration"))}}}))}reset(){return new Promise(((e,t)=>{var r=this.dbFactory.deleteDatabase(c.DB_NAME);r.onsuccess=t=>{e()},r.onerror=t=>{this.log.warn("Failed to delete registration database"),this.log.warn(t),e()}}))}openDatabase(){const e=this.dbFactory.open(c.DB_NAME,c.DB_VERSION);return e.onupgradeneeded=e=>{var t;const r=null===(t=e.target)||void 0===t?void 0:t.result;r?(this.log.debug("Registration not found, database is missing, initializing"),r.createObjectStore(c.DB_STORE,{keyPath:"namespace"}).transaction.oncomplete=e=>{this.log.trace("Store initialization completed")}):this.log.error("Failed to initialize registration database: database is null")},e}}c.DB_VERSION=1,c.DB_NAME="ProveAuth",c.DB_STORE="Registrations",t.default=c},1092:function(e,t,r){var i=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0}),t.WebPlatform=t.WebSocketMessageChannel=void 0;const n=r(8266),o=r(8566),s=i(r(1770)),a=i(r(4781)),c=i(r(2654)),l=r(2582);class u{constructor(e){this.webSocket=new WebSocket(e)}addEventListener(e,t){this.webSocket.addEventListener(e,t)}send(e){this.webSocket.send(e)}close(){this.webSocket.close()}}t.WebSocketMessageChannel=u,t.WebPlatform=class{constructor(){this.webauthn={getCredentials:e=>navigator.credentials.get(e),createCredentials:e=>navigator.credentials.create(e)},this.deviceAuth=new a.default(window.indexedDB)}getPlatformName(){return`${this.getBrowserName()} ${this.getBrowserVersion()} on ${this.getOSName()}`}getUserAgent(){return navigator.userAgent}isFidoSupported(){return null!=window.PublicKeyCredential}fetch(e,t){return fetch(e,t)}createMessageChannel(e){return new u(e)}createRequestSigner(e){return new s.default(e)}getBrowserName(){const e=navigator.userAgent;let t;return t=e.indexOf("Firefox")>-1?"Firefox":e.indexOf("Opera")>-1||e.indexOf("OPR")>-1?"Opera":e.indexOf("DuckDuckGo")>-1?"DuckDuckGo":e.indexOf("SamsungBrowser")>-1?"Samsung Browser":e.indexOf("Trident")>-1?"Internet Explorer":e.indexOf("Edge")>-1?"Edge":e.indexOf("Chrome")>-1?"Chrome":e.indexOf("Safari")>-1?"Safari":"Unknown",t}getBrowserVersion(){const e=navigator.userAgent.match(/(?:Firefox|Opera|OPR|SamsungBrowser|DuckDuckGo|Internet Explorer|Edge|Chrome|Safari)[\/|\s](\d+(\.\d+)?)/i);return e?e[1]:"Unknown"}getOSName(){const e=navigator.platform,t=navigator.userAgent;let r;if(/Win/i.test(e)){r="Windows";const e=t.match(/Win(?:dows )?NT (\d+\.\d+)/i);if(e){const t=parseFloat(e[1]);r+=11===t?" 11":10===t?" 10":6.3===t?" 8.1":6.2===t?" 8":6.1===t?" 7":6===t?" Vista":5.1===t||5.2===t?" XP":" (Unknown Version)"}}else if(e.match(/Mac/i)){r="Mac OS";const e=t.match(/Mac OS X (\d+[_.]\d+([_.]\d+)?)/i);e&&(r+=" "+e[1].replace(/_/g,"."))}else r=t.match(/Android/i)?"Android":t.match(/iOS|iPhone|iPad|iPod/i)?"iOS":e.match(/Linux/i)?"Linux":"Unknown";return r}getDeviceCapabilities(){return this.isFidoSupported()?[o.DEVICE_CAPABILITY_WEBAUTHN]:[]}getMobileAuthBuilder(){return new n.AuthenticatorBuilder}exit(e){}urlRedirect(e){window.location.replace(e)}getFpPromise(){return this.fpPromise}setFpPromise(e){this.fpPromise=e}getOrigin(){return window.location.origin}collectDarwiniumData(e,t){return new Promise((r=>{if(!e)return l.DarwiniumWrapper.collectData().then((e=>r(e)));if(t)return l.DarwiniumWrapper.collectDataInIFrame(t).then((e=>r(e)));{const e=new c.default;e.setErr("iFrame is enabled for Darwinium data collection but iFrame src endpoint is unavailable"),r(e)}}))}}},8864:function(e,t,r){var i=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(t,"__esModule",{value:!0}),t.OtpFinishResultType=t.OtpError=void 0;const n=i(r(3350));class o extends n.default{constructor(e,t){super(e,t)}}var s;t.OtpError=o,(s=t.OtpFinishResultType||(t.OtpFinishResultType={}))[s.OnSuccess=0]="OnSuccess",s[s.OnResendOtp=1]="OnResendOtp"},6462:(e,t)=>{Object.defineProperty(t,"__esModule",{value:!0}),t.USER_AGENT_VERSIONS=t.API_CONTRACT_VERSION=t.VERSION=void 0,t.VERSION="2.8.2",t.API_CONTRACT_VERSION="2.9.0",t.USER_AGENT_VERSIONS=`ProveAuth/${t.VERSION} Contract/${t.API_CONTRACT_VERSION} WEB/1`}},t={};function r(i){var n=t[i];if(void 0!==n)return n.exports;var o=t[i]={exports:{}};return e[i].call(o.exports,o,o.exports,r),o.exports}return r.d=(e,t)=>{for(var i in t)r.o(t,i)&&!r.o(e,i)&&Object.defineProperty(e,i,{enumerable:!0,get:t[i]})},r.o=(e,t)=>Object.prototype.hasOwnProperty.call(e,t),r.r=e=>{"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},r(3607)})()));
|
package/build/lib/index.d.ts
CHANGED
|
@@ -11,4 +11,5 @@ import { PhoneValidationError } from './proveauth/internal/phone-number-input';
|
|
|
11
11
|
import { OtpError, OtpStartStep, OtpStartInput, OtpStartStepFn, OtpFinishStep, OtpFinishInput, OtpFinishStepFn, OtpFinishResult, OtpFinishResultType } from './proveauth/otp';
|
|
12
12
|
import { InstantLinkStartInput, InstantLinkStartStep, InstantLinkStartStepFn } from './proveauth/instantlink';
|
|
13
13
|
import UserConsentStep, { UserConsentOutput, UserConsentStepFn } from './proveauth/user-consent-step';
|
|
14
|
-
|
|
14
|
+
import { DarwiniumWrapper } from './proveauth/darwinium-wrapper';
|
|
15
|
+
export { VERSION, AuthFinishStep, AuthFinishStepFn, AuthFinishStepInput, Authenticator, AuthenticatorBuilder, AuthMessage, AuthMessageHandler, AuthResponseStatus, CancelablePromise, DeviceRole, InstantLinkStartStep, InstantLinkStartInput, InstantLinkStartStepFn, Logger, LoggerFactory, LogLevel, LogWriter, MobileAuthImplementation, OtpFinishStep, OtpFinishInput, OtpFinishResult, OtpFinishStepFn, OtpFinishResultType, OtpStartStep, OtpStartInput, OtpStartStepFn, OtpError, PhoneValidationError, BuildConfig, DeviceContextOptions, UserConsentStep, UserConsentStepFn, UserConsentOutput, DarwiniumWrapper, };
|
package/build/lib/index.js
CHANGED
|
@@ -26,7 +26,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
|
|
|
26
26
|
return (mod && mod.__esModule) ? mod : { "default": mod };
|
|
27
27
|
};
|
|
28
28
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
29
|
-
exports.BuildConfig = exports.PhoneValidationError = exports.OtpError = exports.OtpFinishResultType = exports.MobileAuthImplementation = exports.LogLevel = exports.LoggerFactory = exports.DeviceRole = exports.CancelablePromise = exports.AuthResponseStatus = exports.AuthenticatorBuilder = exports.VERSION = void 0;
|
|
29
|
+
exports.DarwiniumWrapper = exports.BuildConfig = exports.PhoneValidationError = exports.OtpError = exports.OtpFinishResultType = exports.MobileAuthImplementation = exports.LogLevel = exports.LoggerFactory = exports.DeviceRole = exports.CancelablePromise = exports.AuthResponseStatus = exports.AuthenticatorBuilder = exports.VERSION = void 0;
|
|
30
30
|
const version_1 = require("./proveauth/version");
|
|
31
31
|
Object.defineProperty(exports, "VERSION", { enumerable: true, get: function () { return version_1.VERSION; } });
|
|
32
32
|
const authenticator_builder_1 = __importStar(require("./proveauth/authenticator-builder"));
|
|
@@ -47,3 +47,5 @@ Object.defineProperty(exports, "PhoneValidationError", { enumerable: true, get:
|
|
|
47
47
|
const otp_1 = require("./proveauth/otp");
|
|
48
48
|
Object.defineProperty(exports, "OtpError", { enumerable: true, get: function () { return otp_1.OtpError; } });
|
|
49
49
|
Object.defineProperty(exports, "OtpFinishResultType", { enumerable: true, get: function () { return otp_1.OtpFinishResultType; } });
|
|
50
|
+
const darwinium_wrapper_1 = require("./proveauth/darwinium-wrapper");
|
|
51
|
+
Object.defineProperty(exports, "DarwiniumWrapper", { enumerable: true, get: function () { return darwinium_wrapper_1.DarwiniumWrapper; } });
|
|
@@ -50,5 +50,6 @@ export default class AuthenticatorBuilder {
|
|
|
50
50
|
getUrlsByBuildConfig(buildConfig?: BuildConfig): [string | undefined, string | undefined];
|
|
51
51
|
getRegionByBuildConfig(buildConfig?: BuildConfig): Region;
|
|
52
52
|
private getFpPromiseInstanceFromOptions;
|
|
53
|
+
private runDarwiniumDataCollection;
|
|
53
54
|
build(): Authenticator;
|
|
54
55
|
}
|
|
@@ -21,6 +21,8 @@ const main_authenticator_1 = __importDefault(require("./internal/main-authentica
|
|
|
21
21
|
const logger_1 = require("./common/logger");
|
|
22
22
|
const settings_1 = __importDefault(require("./internal/settings"));
|
|
23
23
|
const device_context_options_1 = require("./device-context-options");
|
|
24
|
+
const darwinium_result_1 = __importDefault(require("./darwinium-result"));
|
|
25
|
+
const auth_error_1 = __importDefault(require("./internal/auth-error"));
|
|
24
26
|
var DeviceRole;
|
|
25
27
|
(function (DeviceRole) {
|
|
26
28
|
DeviceRole[DeviceRole["Primary"] = 0] = "Primary";
|
|
@@ -200,6 +202,55 @@ class AuthenticatorBuilder {
|
|
|
200
202
|
this.log.trace('FingerprintJS is not installed or failed to load', error);
|
|
201
203
|
}
|
|
202
204
|
}
|
|
205
|
+
runDarwiniumDataCollection(settings, options) {
|
|
206
|
+
var _a, _b;
|
|
207
|
+
if (!options) {
|
|
208
|
+
return;
|
|
209
|
+
}
|
|
210
|
+
if (!options.extraDeviceSignalEnabled) {
|
|
211
|
+
return;
|
|
212
|
+
}
|
|
213
|
+
const existingDarwiniumResult = settings.darwiniumResult;
|
|
214
|
+
if (existingDarwiniumResult) {
|
|
215
|
+
if (!existingDarwiniumResult.isExpired()) {
|
|
216
|
+
return;
|
|
217
|
+
}
|
|
218
|
+
}
|
|
219
|
+
if (options.iFrameEnabledForExtraDeviceSignals) {
|
|
220
|
+
let endpoint;
|
|
221
|
+
switch (options.buildConfig) {
|
|
222
|
+
case device_context_options_1.BuildConfig.US_PROD:
|
|
223
|
+
endpoint = device_context_options_1.DarwiniumCollectionEndpoint.US_PROD;
|
|
224
|
+
break;
|
|
225
|
+
case device_context_options_1.BuildConfig.US_UAT:
|
|
226
|
+
endpoint = device_context_options_1.DarwiniumCollectionEndpoint.US_UAT;
|
|
227
|
+
break;
|
|
228
|
+
case device_context_options_1.BuildConfig.DEV:
|
|
229
|
+
endpoint = device_context_options_1.DarwiniumCollectionEndpoint.DEV;
|
|
230
|
+
break;
|
|
231
|
+
default:
|
|
232
|
+
const result = new darwinium_result_1.default();
|
|
233
|
+
result.setExpiration();
|
|
234
|
+
result.setErr('Unknown BuildConfig');
|
|
235
|
+
settings.darwiniumResult = result;
|
|
236
|
+
return;
|
|
237
|
+
}
|
|
238
|
+
(_a = this.platform) === null || _a === void 0 ? void 0 : _a.collectDarwiniumData(true, endpoint).then((result) => (settings.darwiniumResult = result)).catch((err) => {
|
|
239
|
+
const result = new darwinium_result_1.default();
|
|
240
|
+
result.setExpiration();
|
|
241
|
+
result.setErr(auth_error_1.default.extractMessage(err));
|
|
242
|
+
settings.darwiniumResult = result;
|
|
243
|
+
});
|
|
244
|
+
}
|
|
245
|
+
else {
|
|
246
|
+
(_b = this.platform) === null || _b === void 0 ? void 0 : _b.collectDarwiniumData(false).then((result) => (settings.darwiniumResult = result)).catch((err) => {
|
|
247
|
+
const result = new darwinium_result_1.default();
|
|
248
|
+
result.setExpiration();
|
|
249
|
+
result.setErr(auth_error_1.default.extractMessage(err));
|
|
250
|
+
settings.darwiniumResult = result;
|
|
251
|
+
});
|
|
252
|
+
}
|
|
253
|
+
}
|
|
203
254
|
build() {
|
|
204
255
|
var _a;
|
|
205
256
|
if (!this.platform) {
|
|
@@ -214,6 +265,7 @@ class AuthenticatorBuilder {
|
|
|
214
265
|
}
|
|
215
266
|
const settings = new settings_1.default(this.storage);
|
|
216
267
|
settings.upkEnabled = this.upkEnabled;
|
|
268
|
+
this.runDarwiniumDataCollection(settings, this.deviceContextOptions);
|
|
217
269
|
if (this.role === DeviceRole.Primary) {
|
|
218
270
|
return new main_authenticator_1.default(this.platform, settings, this.authFinishStep, [
|
|
219
271
|
new device_universal_step_1.default(this.upkEnabled),
|
|
@@ -0,0 +1,11 @@
|
|
|
1
|
+
export default class DarwiniumResult {
|
|
2
|
+
private resultBlob?;
|
|
3
|
+
private err?;
|
|
4
|
+
private expiredAt?;
|
|
5
|
+
setResultBlob(blob: string): void;
|
|
6
|
+
setErr(err: string): void;
|
|
7
|
+
getResultBlob(): string | undefined;
|
|
8
|
+
getError(): string | undefined;
|
|
9
|
+
setExpiration(): void;
|
|
10
|
+
isExpired(): boolean;
|
|
11
|
+
}
|
|
@@ -0,0 +1,25 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
class DarwiniumResult {
|
|
4
|
+
setResultBlob(blob) {
|
|
5
|
+
this.resultBlob = blob;
|
|
6
|
+
}
|
|
7
|
+
setErr(err) {
|
|
8
|
+
this.err = err;
|
|
9
|
+
}
|
|
10
|
+
getResultBlob() {
|
|
11
|
+
return this.resultBlob;
|
|
12
|
+
}
|
|
13
|
+
getError() {
|
|
14
|
+
return this.err;
|
|
15
|
+
}
|
|
16
|
+
setExpiration() {
|
|
17
|
+
const now = new Date();
|
|
18
|
+
const tenMinutesLater = new Date(now.getTime() + 10 * 60 * 1000);
|
|
19
|
+
this.expiredAt = tenMinutesLater.getTime();
|
|
20
|
+
}
|
|
21
|
+
isExpired() {
|
|
22
|
+
return this.expiredAt ? Date.now() > this.expiredAt : true;
|
|
23
|
+
}
|
|
24
|
+
}
|
|
25
|
+
exports.default = DarwiniumResult;
|
|
@@ -0,0 +1,6 @@
|
|
|
1
|
+
import DarwiniumResult from './darwinium-result';
|
|
2
|
+
export declare class DarwiniumWrapper {
|
|
3
|
+
static collectData(): Promise<DarwiniumResult>;
|
|
4
|
+
static collectDataInIFrame(iFrameSrc: string): Promise<DarwiniumResult>;
|
|
5
|
+
static runDarwinmiumAndPostResultInMsg(): void;
|
|
6
|
+
}
|
|
@@ -0,0 +1,97 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
var __importDefault = (this && this.__importDefault) || function (mod) {
|
|
3
|
+
return (mod && mod.__esModule) ? mod : { "default": mod };
|
|
4
|
+
};
|
|
5
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
6
|
+
exports.DarwiniumWrapper = void 0;
|
|
7
|
+
const darwinium_result_1 = __importDefault(require("./darwinium-result"));
|
|
8
|
+
const auth_error_1 = __importDefault(require("./internal/auth-error"));
|
|
9
|
+
class DarwiniumWrapper {
|
|
10
|
+
static collectData() {
|
|
11
|
+
return new Promise((resolve) => {
|
|
12
|
+
const result = new darwinium_result_1.default();
|
|
13
|
+
if (dwn) {
|
|
14
|
+
let dwnHandle = dwn.start({
|
|
15
|
+
geo_location_enabled: false,
|
|
16
|
+
mouse: true,
|
|
17
|
+
});
|
|
18
|
+
dwnHandle
|
|
19
|
+
.collect()
|
|
20
|
+
.then((dwnData) => {
|
|
21
|
+
result.setResultBlob(dwnData);
|
|
22
|
+
result.setExpiration();
|
|
23
|
+
resolve(result);
|
|
24
|
+
})
|
|
25
|
+
.catch((error) => {
|
|
26
|
+
result.setErr(auth_error_1.default.extractMessage(error));
|
|
27
|
+
result.setExpiration();
|
|
28
|
+
resolve(result);
|
|
29
|
+
});
|
|
30
|
+
}
|
|
31
|
+
else {
|
|
32
|
+
result.setErr('Darwinium instance is not avaialble');
|
|
33
|
+
result.setExpiration();
|
|
34
|
+
resolve(result);
|
|
35
|
+
}
|
|
36
|
+
});
|
|
37
|
+
}
|
|
38
|
+
static collectDataInIFrame(iFrameSrc) {
|
|
39
|
+
return new Promise((resolve) => {
|
|
40
|
+
var _a;
|
|
41
|
+
const result = new darwinium_result_1.default();
|
|
42
|
+
const postMsgListener = (event) => {
|
|
43
|
+
if (event.data && event.data.source === 'prove-device-signal') {
|
|
44
|
+
const blob = event.data.dwnData;
|
|
45
|
+
result.setResultBlob(blob);
|
|
46
|
+
result.setExpiration();
|
|
47
|
+
console.log(blob);
|
|
48
|
+
resolve(result);
|
|
49
|
+
window.removeEventListener('message', postMsgListener);
|
|
50
|
+
}
|
|
51
|
+
else if (event.data && event.data.source === 'prove-device-signal-error') {
|
|
52
|
+
const errMsg = event.data.dwnErr;
|
|
53
|
+
result.setErr(errMsg);
|
|
54
|
+
result.setExpiration();
|
|
55
|
+
resolve(result);
|
|
56
|
+
window.removeEventListener('message', postMsgListener);
|
|
57
|
+
}
|
|
58
|
+
};
|
|
59
|
+
let existingIframe = document.getElementById('prove-iframe');
|
|
60
|
+
if (existingIframe) {
|
|
61
|
+
(_a = existingIframe.parentNode) === null || _a === void 0 ? void 0 : _a.removeChild(existingIframe);
|
|
62
|
+
}
|
|
63
|
+
window.addEventListener('message', postMsgListener);
|
|
64
|
+
const iframe = document.createElement('iframe');
|
|
65
|
+
iframe.src = iFrameSrc;
|
|
66
|
+
iframe.style.display = 'none';
|
|
67
|
+
iframe.id = 'prove-iframe';
|
|
68
|
+
document.body.appendChild(iframe);
|
|
69
|
+
});
|
|
70
|
+
}
|
|
71
|
+
static runDarwinmiumAndPostResultInMsg() {
|
|
72
|
+
if (dwn) {
|
|
73
|
+
let dwnHandle = dwn.start({
|
|
74
|
+
geo_location_enabled: false,
|
|
75
|
+
mouse: true,
|
|
76
|
+
});
|
|
77
|
+
dwnHandle
|
|
78
|
+
.collect()
|
|
79
|
+
.then((data) => {
|
|
80
|
+
window.parent.postMessage({ source: 'prove-device-signal', dwnData: data }, '*');
|
|
81
|
+
})
|
|
82
|
+
.catch((error) => {
|
|
83
|
+
window.parent.postMessage({
|
|
84
|
+
source: 'prove-device-signal-error',
|
|
85
|
+
dwnErr: error,
|
|
86
|
+
}, '*');
|
|
87
|
+
});
|
|
88
|
+
}
|
|
89
|
+
else {
|
|
90
|
+
window.parent.postMessage({
|
|
91
|
+
source: 'prove-device-signal-error',
|
|
92
|
+
fpErr: 'Darwinium instance is not avaialble',
|
|
93
|
+
}, '*');
|
|
94
|
+
}
|
|
95
|
+
}
|
|
96
|
+
}
|
|
97
|
+
exports.DarwiniumWrapper = DarwiniumWrapper;
|
|
@@ -11,9 +11,16 @@ export declare enum BuildConfig {
|
|
|
11
11
|
US_UAT = "US_UAT",
|
|
12
12
|
US_PROD = "US_PROD"
|
|
13
13
|
}
|
|
14
|
+
export declare enum DarwiniumCollectionEndpoint {
|
|
15
|
+
DEV = "https://upk.dev.prove-auth.proveapis.com/device-context",
|
|
16
|
+
US_UAT = "https://upk.uat.prove-auth.proveapis.com/device-context",
|
|
17
|
+
US_PROD = "https://upk.prove-auth.proveapis.com/device-context"
|
|
18
|
+
}
|
|
14
19
|
export default interface DeviceContextOptions {
|
|
15
20
|
readonly buildConfig: BuildConfig;
|
|
16
21
|
readonly publicApiKey: string;
|
|
17
22
|
readonly customScriptUrl?: string;
|
|
18
23
|
readonly customEndpointUrl?: string;
|
|
24
|
+
readonly extraDeviceSignalEnabled?: boolean;
|
|
25
|
+
readonly iFrameEnabledForExtraDeviceSignals?: boolean;
|
|
19
26
|
}
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
"use strict";
|
|
2
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
-
exports.BuildConfig = exports.ProveAuthProxyEndpoint = exports.ProveAuthProxyScriptUrl = void 0;
|
|
3
|
+
exports.DarwiniumCollectionEndpoint = exports.BuildConfig = exports.ProveAuthProxyEndpoint = exports.ProveAuthProxyScriptUrl = void 0;
|
|
4
4
|
var ProveAuthProxyScriptUrl;
|
|
5
5
|
(function (ProveAuthProxyScriptUrl) {
|
|
6
6
|
ProveAuthProxyScriptUrl["DEFAULT_US_UAT_SCRIPT_URL"] = "https://upk.uat.prove-auth.proveapis.com/vFqZceQyx8/uqLttozA7q";
|
|
@@ -17,3 +17,9 @@ var BuildConfig;
|
|
|
17
17
|
BuildConfig["US_UAT"] = "US_UAT";
|
|
18
18
|
BuildConfig["US_PROD"] = "US_PROD";
|
|
19
19
|
})(BuildConfig = exports.BuildConfig || (exports.BuildConfig = {}));
|
|
20
|
+
var DarwiniumCollectionEndpoint;
|
|
21
|
+
(function (DarwiniumCollectionEndpoint) {
|
|
22
|
+
DarwiniumCollectionEndpoint["DEV"] = "https://upk.dev.prove-auth.proveapis.com/device-context";
|
|
23
|
+
DarwiniumCollectionEndpoint["US_UAT"] = "https://upk.uat.prove-auth.proveapis.com/device-context";
|
|
24
|
+
DarwiniumCollectionEndpoint["US_PROD"] = "https://upk.prove-auth.proveapis.com/device-context";
|
|
25
|
+
})(DarwiniumCollectionEndpoint = exports.DarwiniumCollectionEndpoint || (exports.DarwiniumCollectionEndpoint = {}));
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
/// <reference types="webappsec-credential-management" />
|
|
2
2
|
import AuthMessage from './auth-message';
|
|
3
|
-
import { AuthRequest, Signal } from './auth-request';
|
|
3
|
+
import { AuthRequest, Signal, Signals } from './auth-request';
|
|
4
4
|
import AuthResponse from './auth-response';
|
|
5
5
|
import AuthTokenClaims, { UserVerificationLevel } from './auth-token-claims';
|
|
6
6
|
import { DeviceRegistration } from './device-auth';
|
|
@@ -21,7 +21,6 @@ export default class AuthSession implements AuthSessionIntegration {
|
|
|
21
21
|
backendOriginOverride?: string;
|
|
22
22
|
get namespace(): string;
|
|
23
23
|
get backendOrigin(): string;
|
|
24
|
-
set backendOrigin(backendOrigin: string);
|
|
25
24
|
get authId(): string;
|
|
26
25
|
get challenge(): string;
|
|
27
26
|
get next(): string;
|
|
@@ -31,7 +30,10 @@ export default class AuthSession implements AuthSessionIntegration {
|
|
|
31
30
|
closeAllMessageChannels(): void;
|
|
32
31
|
getDeviceRegistration(): Promise<DeviceRegistration | null>;
|
|
33
32
|
embedFpResultToDeviceRegistration(registration: DeviceRegistration): Promise<DeviceRegistration>;
|
|
33
|
+
embedDarwiniumResultToDeviceRegistration(registration: DeviceRegistration): Promise<DeviceRegistration>;
|
|
34
|
+
embedDarwiniumSignal(signals: Signals): void;
|
|
34
35
|
getFingerprintData(): Promise<Signal | undefined>;
|
|
35
36
|
shouldCollectFP(): boolean;
|
|
37
|
+
shouldSendDarwiniumData(): boolean;
|
|
36
38
|
private parseJwt;
|
|
37
39
|
}
|
|
@@ -5,6 +5,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
|
|
|
5
5
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
6
6
|
const logger_1 = require("../common/logger");
|
|
7
7
|
const version_1 = require("../version");
|
|
8
|
+
const auth_error_1 = __importDefault(require("./auth-error"));
|
|
8
9
|
const auth_token_claims_1 = require("./auth-token-claims");
|
|
9
10
|
const error_code_1 = __importDefault(require("./error-code"));
|
|
10
11
|
class AuthSession {
|
|
@@ -16,9 +17,6 @@ class AuthSession {
|
|
|
16
17
|
var _a;
|
|
17
18
|
return this.backendOriginOverride || ((_a = this.claims) === null || _a === void 0 ? void 0 : _a.auth.endp);
|
|
18
19
|
}
|
|
19
|
-
set backendOrigin(backendOrigin) {
|
|
20
|
-
this.backendOriginOverride = backendOrigin;
|
|
21
|
-
}
|
|
22
20
|
get authId() {
|
|
23
21
|
var _a;
|
|
24
22
|
return (_a = this.claims) === null || _a === void 0 ? void 0 : _a.auth.id;
|
|
@@ -108,7 +106,7 @@ class AuthSession {
|
|
|
108
106
|
channel.send('ping');
|
|
109
107
|
}
|
|
110
108
|
else {
|
|
111
|
-
this.log.
|
|
109
|
+
this.log.warn('Failed to receive ping response in time, closing the channel');
|
|
112
110
|
clearInterval(keepAlive);
|
|
113
111
|
channel.close();
|
|
114
112
|
onError('Channel communication stalled');
|
|
@@ -116,21 +114,21 @@ class AuthSession {
|
|
|
116
114
|
}
|
|
117
115
|
}, KEEP_ALIVE_INTERVAL);
|
|
118
116
|
channel.addEventListener('close', (_) => {
|
|
117
|
+
this.log.debug('Message channel is closed');
|
|
119
118
|
clearInterval(keepAlive);
|
|
120
119
|
onClose();
|
|
121
120
|
this.channels.delete(channel);
|
|
122
121
|
});
|
|
123
122
|
channel.addEventListener('error', (event) => {
|
|
123
|
+
this.log.trace('Message channel encountered an error');
|
|
124
|
+
this.log.trace(event);
|
|
124
125
|
clearInterval(keepAlive);
|
|
125
|
-
|
|
126
|
-
onError(event['message']);
|
|
127
|
-
}
|
|
128
|
-
else {
|
|
129
|
-
onError(event.toString());
|
|
130
|
-
}
|
|
126
|
+
onError(auth_error_1.default.extractMessage(event));
|
|
131
127
|
this.channels.delete(channel);
|
|
132
128
|
});
|
|
133
129
|
channel.addEventListener('message', (event) => {
|
|
130
|
+
this.log.trace('Message channel received a message');
|
|
131
|
+
this.log.trace(event);
|
|
134
132
|
if ('origin' in event && event['origin'] !== endpoint) {
|
|
135
133
|
onError('Unexpected origin');
|
|
136
134
|
}
|
|
@@ -153,6 +151,7 @@ class AuthSession {
|
|
|
153
151
|
return channel;
|
|
154
152
|
}
|
|
155
153
|
closeAllMessageChannels() {
|
|
154
|
+
this.log.trace('Closing all message channels, total ' + this.channels.size + ' registered channels');
|
|
156
155
|
const channelsCopy = new Set(this.channels);
|
|
157
156
|
channelsCopy.forEach((channel) => channel.close());
|
|
158
157
|
channelsCopy.clear();
|
|
@@ -193,6 +192,63 @@ class AuthSession {
|
|
|
193
192
|
});
|
|
194
193
|
});
|
|
195
194
|
}
|
|
195
|
+
embedDarwiniumResultToDeviceRegistration(registration) {
|
|
196
|
+
return new Promise((resolve) => {
|
|
197
|
+
const notAvaialbleErrMsg = 'Darwinium data is not avaialble';
|
|
198
|
+
if (this.shouldSendDarwiniumData()) {
|
|
199
|
+
const dResult = this.settings.darwiniumResult;
|
|
200
|
+
if (dResult) {
|
|
201
|
+
if (!dResult.isExpired()) {
|
|
202
|
+
if (dResult.getResultBlob()) {
|
|
203
|
+
registration.setDarwiniumSignal({ results: dResult.getResultBlob() });
|
|
204
|
+
}
|
|
205
|
+
else {
|
|
206
|
+
if (dResult.getError()) {
|
|
207
|
+
registration.setDarwiniumSignal({ error: dResult.getError() });
|
|
208
|
+
}
|
|
209
|
+
else {
|
|
210
|
+
registration.setDarwiniumSignal({ error: notAvaialbleErrMsg });
|
|
211
|
+
}
|
|
212
|
+
}
|
|
213
|
+
}
|
|
214
|
+
else {
|
|
215
|
+
registration.setDarwiniumSignal({ error: 'Darwinium data is expired' });
|
|
216
|
+
}
|
|
217
|
+
}
|
|
218
|
+
else {
|
|
219
|
+
registration.setDarwiniumSignal({ error: notAvaialbleErrMsg });
|
|
220
|
+
}
|
|
221
|
+
}
|
|
222
|
+
resolve(registration);
|
|
223
|
+
});
|
|
224
|
+
}
|
|
225
|
+
embedDarwiniumSignal(signals) {
|
|
226
|
+
const notAvaialbleErrMsg = 'Darwinium data is not avaialble';
|
|
227
|
+
if (this.shouldSendDarwiniumData()) {
|
|
228
|
+
const dResult = this.settings.darwiniumResult;
|
|
229
|
+
if (dResult) {
|
|
230
|
+
if (!dResult.isExpired()) {
|
|
231
|
+
if (dResult.getResultBlob()) {
|
|
232
|
+
signals.darwinium = { results: dResult.getResultBlob() };
|
|
233
|
+
}
|
|
234
|
+
else {
|
|
235
|
+
if (dResult.getError()) {
|
|
236
|
+
signals.darwinium = { error: dResult.getError() };
|
|
237
|
+
}
|
|
238
|
+
else {
|
|
239
|
+
signals.darwinium = { error: notAvaialbleErrMsg };
|
|
240
|
+
}
|
|
241
|
+
}
|
|
242
|
+
}
|
|
243
|
+
else {
|
|
244
|
+
signals.darwinium = { error: 'Darwinium data is expired' };
|
|
245
|
+
}
|
|
246
|
+
}
|
|
247
|
+
else {
|
|
248
|
+
signals.darwinium = { error: notAvaialbleErrMsg };
|
|
249
|
+
}
|
|
250
|
+
}
|
|
251
|
+
}
|
|
196
252
|
getFingerprintData() {
|
|
197
253
|
return new Promise((resolve) => {
|
|
198
254
|
var fpPromise = this.platform.getFpPromise();
|
|
@@ -234,6 +290,10 @@ class AuthSession {
|
|
|
234
290
|
}
|
|
235
291
|
return false;
|
|
236
292
|
}
|
|
293
|
+
shouldSendDarwiniumData() {
|
|
294
|
+
var _a, _b, _c;
|
|
295
|
+
return ((_c = (_b = (_a = this.claims) === null || _a === void 0 ? void 0 : _a.auth.subs.dev) === null || _b === void 0 ? void 0 : _b.sgnls) === null || _c === void 0 ? void 0 : _c.dwn) ? true : false;
|
|
296
|
+
}
|
|
237
297
|
parseJwt(token) {
|
|
238
298
|
return JSON.parse(atob(token.split('.')[1]));
|
|
239
299
|
}
|
|
@@ -20,7 +20,6 @@ class AuthStatusActions {
|
|
|
20
20
|
}
|
|
21
21
|
}, (errorMessage) => {
|
|
22
22
|
gotResponse = true;
|
|
23
|
-
this.log.error('Failed: ' + errorMessage);
|
|
24
23
|
reject(new auth_error_1.default('Failed to receive secondary authentication status: ' + errorMessage));
|
|
25
24
|
}, (data) => {
|
|
26
25
|
gotResponse = true;
|
|
@@ -39,6 +38,7 @@ class AuthStatusActions {
|
|
|
39
38
|
reject(e);
|
|
40
39
|
}
|
|
41
40
|
finally {
|
|
41
|
+
this.log.trace('Closing channel');
|
|
42
42
|
channel.close();
|
|
43
43
|
}
|
|
44
44
|
});
|
|
@@ -10,11 +10,13 @@ export interface DeviceRegistration {
|
|
|
10
10
|
readonly endpoint: string;
|
|
11
11
|
deviceId: string | null;
|
|
12
12
|
fingerprint?: Signal;
|
|
13
|
+
darwinium?: Signal;
|
|
13
14
|
sign: (data: string) => Promise<string>;
|
|
14
15
|
getPublicKey: () => Promise<string>;
|
|
15
16
|
getAuthRegistration: (challenge: string) => Promise<AuthRegistration>;
|
|
16
17
|
setFpSignal: (fpSignal: Signal) => void;
|
|
17
|
-
|
|
18
|
+
setDarwiniumSignal: (dSignal: Signal) => void;
|
|
19
|
+
getSignals: () => Signals;
|
|
18
20
|
}
|
|
19
21
|
export default interface DeviceAuth {
|
|
20
22
|
createRegistration: (options: DeviceRegistrationOptions) => Promise<DeviceRegistration>;
|
|
@@ -18,7 +18,10 @@ class DevicePassiveRegisterStep {
|
|
|
18
18
|
.getDeviceRegistration()
|
|
19
19
|
.then((devRegistration) => {
|
|
20
20
|
if (devRegistration) {
|
|
21
|
-
session
|
|
21
|
+
session
|
|
22
|
+
.embedFpResultToDeviceRegistration(devRegistration)
|
|
23
|
+
.then((devRegistration) => session.embedDarwiniumResultToDeviceRegistration(devRegistration))
|
|
24
|
+
.then((devRegistration) => {
|
|
22
25
|
this.finishRegistration(session, [this.getFido2Registration(session)], devRegistration.getSignals())
|
|
23
26
|
.then(resolve)
|
|
24
27
|
.catch(reject);
|
|
@@ -31,6 +34,7 @@ class DevicePassiveRegisterStep {
|
|
|
31
34
|
endpoint: session.backendOrigin,
|
|
32
35
|
})
|
|
33
36
|
.then((devRegistration) => session.embedFpResultToDeviceRegistration(devRegistration))
|
|
37
|
+
.then((devRegistration) => session.embedDarwiniumResultToDeviceRegistration(devRegistration))
|
|
34
38
|
.then((devRegistration) => {
|
|
35
39
|
devRegistration
|
|
36
40
|
.getAuthRegistration(session.challenge)
|
|
@@ -21,7 +21,10 @@ class DevicePassiveSilentStep {
|
|
|
21
21
|
.getDeviceRegistration()
|
|
22
22
|
.then((registration) => {
|
|
23
23
|
if (registration) {
|
|
24
|
-
session
|
|
24
|
+
session
|
|
25
|
+
.embedFpResultToDeviceRegistration(registration)
|
|
26
|
+
.then((registration) => session.embedDarwiniumResultToDeviceRegistration(registration))
|
|
27
|
+
.then((registration) => {
|
|
25
28
|
this.verify(session, registration).then(resolve).catch(reject);
|
|
26
29
|
});
|
|
27
30
|
}
|
|
@@ -36,6 +39,7 @@ class DevicePassiveSilentStep {
|
|
|
36
39
|
endpoint: session.backendOrigin,
|
|
37
40
|
})
|
|
38
41
|
.then((registration) => session.embedFpResultToDeviceRegistration(registration))
|
|
42
|
+
.then((registration) => session.embedDarwiniumResultToDeviceRegistration(registration))
|
|
39
43
|
.then((registration) => this.register(session, registration))
|
|
40
44
|
.then(resolve)
|
|
41
45
|
.catch(reject);
|
|
@@ -16,15 +16,16 @@ class DevicePassiveVerifyStep {
|
|
|
16
16
|
session
|
|
17
17
|
.getFingerprintData()
|
|
18
18
|
.then((signal) => {
|
|
19
|
-
|
|
19
|
+
let signals = { fingerprint: signal };
|
|
20
|
+
session.embedDarwiniumSignal(signals);
|
|
20
21
|
this.runFidoVerifyFinish(session, signals).then(resolve).catch(reject);
|
|
21
22
|
})
|
|
22
23
|
.catch((error) => {
|
|
23
24
|
var errorMsg = `Unexpected error happened during Fingerprint data collection ${error.toString}`;
|
|
24
25
|
this.log.warn(errorMsg);
|
|
25
|
-
|
|
26
|
-
|
|
27
|
-
|
|
26
|
+
let signals = { fingerprint: { error: errorMsg } };
|
|
27
|
+
session.embedDarwiniumSignal(signals);
|
|
28
|
+
this.runFidoVerifyFinish(session).then(resolve).catch(reject);
|
|
28
29
|
});
|
|
29
30
|
});
|
|
30
31
|
}
|
|
@@ -11,8 +11,8 @@ class DeviceUniversalRedirectBaseStep {
|
|
|
11
11
|
}
|
|
12
12
|
execute(session) {
|
|
13
13
|
return new Promise((resolve, reject) => {
|
|
14
|
-
var _a, _b, _c;
|
|
15
|
-
let redirectUrl = (_c = (_b = (_a = session.claims) === null || _a === void 0 ? void 0 : _a.auth.subs.dev) === null ||
|
|
14
|
+
var _a, _b, _c, _d, _e, _f;
|
|
15
|
+
let redirectUrl = (_f = (_e = (_d = (_c = (_b = (_a = session.claims) === null || _a === void 0 ? void 0 : _a.auth) === null || _b === void 0 ? void 0 : _b.subs) === null || _c === void 0 ? void 0 : _c.dev) === null || _d === void 0 ? void 0 : _d.auths) === null || _e === void 0 ? void 0 : _e.unvsl) === null || _f === void 0 ? void 0 : _f.ftu;
|
|
16
16
|
if (typeof redirectUrl != 'undefined' && redirectUrl) {
|
|
17
17
|
redirectUrl += `?authId=${session.authId}`;
|
|
18
18
|
let upkNext = '';
|
|
@@ -52,9 +52,6 @@ class MainAuthenticator {
|
|
|
52
52
|
}
|
|
53
53
|
try {
|
|
54
54
|
const session = new auth_session_1.default(this.settings, this.platform, authToken);
|
|
55
|
-
if (this.settings.upkEnabled) {
|
|
56
|
-
session.backendOriginOverride = this.platform.getOrigin();
|
|
57
|
-
}
|
|
58
55
|
const processing = this.process(session);
|
|
59
56
|
onCancel(() => processing.cancel());
|
|
60
57
|
processing
|
|
@@ -95,11 +95,13 @@ class MobileInstantLinkStep extends auth_status_actions_1.AuthStatusActions {
|
|
|
95
95
|
'/v1/client/mobile/instantlink/finish?token=' +
|
|
96
96
|
encodeURIComponent(session.authToken) +
|
|
97
97
|
'&vfp=test-vfp', {
|
|
98
|
-
mode: 'cors',
|
|
98
|
+
mode: 'no-cors',
|
|
99
99
|
method: 'GET',
|
|
100
100
|
})
|
|
101
|
-
.
|
|
102
|
-
.
|
|
101
|
+
.catch((e) => {
|
|
102
|
+
this.log.error('Calling AuthFinish in test mode has failed: ', auth_error_1.default.extractMessage(e));
|
|
103
|
+
})
|
|
104
|
+
.finally(resolve);
|
|
103
105
|
}, SIMULATED_LINK_CLICK_DELAY);
|
|
104
106
|
}
|
|
105
107
|
else {
|
|
@@ -4,6 +4,7 @@ import { AuthRequest } from './auth-request';
|
|
|
4
4
|
import AuthResponse from './auth-response';
|
|
5
5
|
import DeviceAuth, { DeviceRegistration } from './device-auth';
|
|
6
6
|
import { Agent } from '@fingerprintjs/fingerprintjs-pro';
|
|
7
|
+
import DarwiniumResult from '../darwinium-result';
|
|
7
8
|
export declare const DEVICE_CAPABILITY_WEBAUTHN = "webauthn";
|
|
8
9
|
export interface MessageChannel {
|
|
9
10
|
addEventListener: (type: string, listener: (event: any) => void) => void;
|
|
@@ -43,6 +44,7 @@ export default interface Platform {
|
|
|
43
44
|
getFpPromise: () => Promise<Agent> | undefined;
|
|
44
45
|
setFpPromise: (fpPromise: Promise<Agent>) => void;
|
|
45
46
|
getOrigin: () => string;
|
|
47
|
+
collectDarwiniumData: (iFrameEnabled: boolean, iFrameSrc?: string) => Promise<DarwiniumResult>;
|
|
46
48
|
}
|
|
47
49
|
export declare function stringToArrayBuffer(input: string): ArrayBuffer;
|
|
48
50
|
export declare function arrayBufferToString(input: ArrayBuffer): string;
|
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
import AuthSession from './auth-session';
|
|
2
2
|
import AuthStep from './auth-step';
|
|
3
3
|
export default class ReportErrorStep implements AuthStep {
|
|
4
|
-
private static readonly
|
|
4
|
+
private static readonly endpointMap;
|
|
5
5
|
private readonly logger;
|
|
6
6
|
private _message;
|
|
7
7
|
private _code?;
|
|
@@ -12,5 +12,4 @@ export default class ReportErrorStep implements AuthStep {
|
|
|
12
12
|
get code(): number | undefined;
|
|
13
13
|
get message(): string;
|
|
14
14
|
execute(session: AuthSession): Promise<string>;
|
|
15
|
-
private lookupError;
|
|
16
15
|
}
|
|
@@ -14,6 +14,7 @@ const mobile_instant_step_1 = __importDefault(require("./mobile-instant-step"));
|
|
|
14
14
|
const mobile_instantlink_step_1 = __importDefault(require("./mobile-instantlink-step"));
|
|
15
15
|
const mobile_otp_step_1 = __importDefault(require("./mobile-otp-step"));
|
|
16
16
|
const user_present_step_1 = __importDefault(require("./user-present-step"));
|
|
17
|
+
const device_passive_stepup_step_1 = __importDefault(require("./device-passive-stepup-step"));
|
|
17
18
|
const device_universal_redirect_steps_1 = require("./device-universal-redirect-steps");
|
|
18
19
|
class ReportErrorStep {
|
|
19
20
|
constructor(error) {
|
|
@@ -53,34 +54,34 @@ class ReportErrorStep {
|
|
|
53
54
|
if (this.nextStep === main_authenticator_1.default.AUTH_DONE) {
|
|
54
55
|
return Promise.resolve(main_authenticator_1.default.AUTH_DONE);
|
|
55
56
|
}
|
|
56
|
-
|
|
57
|
+
const endpoint = session.lastStep
|
|
58
|
+
? ReportErrorStep.endpointMap.get(session.lastStep)
|
|
59
|
+
: undefined;
|
|
60
|
+
if (endpoint && (this.reportable || !this.nextStep)) {
|
|
57
61
|
return new Promise((resolve, reject) => {
|
|
58
|
-
const error = this.lookupError(session.lastStep);
|
|
59
62
|
session
|
|
60
|
-
.fetchFromBackend(`/v1/client/${
|
|
63
|
+
.fetchFromBackend(`/v1/client/${endpoint}/error`, {
|
|
61
64
|
code: this._code ? this._code : undefined,
|
|
62
65
|
message: this._message,
|
|
63
66
|
})
|
|
64
|
-
.then((response) =>
|
|
65
|
-
resolve(response.next);
|
|
66
|
-
})
|
|
67
|
+
.then((response) => resolve(response.next))
|
|
67
68
|
.catch(reject);
|
|
68
69
|
});
|
|
69
70
|
}
|
|
70
|
-
else {
|
|
71
|
+
else if (this.nextStep) {
|
|
71
72
|
return Promise.resolve(this.nextStep);
|
|
72
73
|
}
|
|
73
|
-
|
|
74
|
-
|
|
75
|
-
|
|
76
|
-
return last ? ReportErrorStep.errorMap.get(last) || defaultKind : defaultKind;
|
|
74
|
+
else {
|
|
75
|
+
return Promise.reject(new auth_error_1.default('Cannot determine the next auth step'));
|
|
76
|
+
}
|
|
77
77
|
}
|
|
78
78
|
}
|
|
79
|
-
ReportErrorStep.
|
|
79
|
+
ReportErrorStep.endpointMap = new Map([
|
|
80
80
|
[device_passive_step_1.default.NAME, 'device/passive'],
|
|
81
81
|
[device_passive_silent_step_1.default.NAME, 'device/passive'],
|
|
82
82
|
[device_passive_register_step_1.default.NAME, 'device/fido2'],
|
|
83
83
|
[device_passive_verify_step_1.default.NAME, 'device/fido2'],
|
|
84
|
+
[device_passive_stepup_step_1.default.NAME, 'device/fido2'],
|
|
84
85
|
[mobile_instant_step_1.default.NAME, 'mobile/instant'],
|
|
85
86
|
[mobile_instantlink_step_1.default.NAME, 'mobile/instantlink'],
|
|
86
87
|
[mobile_otp_step_1.default.NAME, 'mobile/otp'],
|
|
@@ -1,8 +1,10 @@
|
|
|
1
|
+
import DarwiniumResult from '../darwinium-result';
|
|
1
2
|
export default class Settings {
|
|
2
3
|
static readonly KEY_PREFIX = "ProveAuth";
|
|
3
4
|
static readonly DEVICE_ID_KEY = "DeviceId";
|
|
4
5
|
static readonly NAMESPACE_KEY = "namespace";
|
|
5
6
|
static readonly FIDO_PASSKEY_REGISTERED_KEY = "fidoPasskeyRegistered";
|
|
7
|
+
static readonly DARWINIUM_RESULT_KEY = "DarwiniumResult";
|
|
6
8
|
private readonly log;
|
|
7
9
|
private storage;
|
|
8
10
|
upkEnabled: boolean;
|
|
@@ -14,6 +16,8 @@ export default class Settings {
|
|
|
14
16
|
set fidoPasskeyRegistered(val: boolean);
|
|
15
17
|
get namespace(): string | null;
|
|
16
18
|
set namespace(val: string | null);
|
|
19
|
+
get darwiniumResult(): DarwiniumResult | undefined;
|
|
20
|
+
set darwiniumResult(result: DarwiniumResult | undefined);
|
|
17
21
|
private getKey;
|
|
18
22
|
private setOrRemove;
|
|
19
23
|
}
|
|
@@ -1,6 +1,10 @@
|
|
|
1
1
|
"use strict";
|
|
2
|
+
var __importDefault = (this && this.__importDefault) || function (mod) {
|
|
3
|
+
return (mod && mod.__esModule) ? mod : { "default": mod };
|
|
4
|
+
};
|
|
2
5
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
6
|
const logger_1 = require("../common/logger");
|
|
7
|
+
const darwinium_result_1 = __importDefault(require("../darwinium-result"));
|
|
4
8
|
class Settings {
|
|
5
9
|
constructor(storage) {
|
|
6
10
|
this.log = logger_1.LoggerFactory.getLogger('settings');
|
|
@@ -32,6 +36,16 @@ class Settings {
|
|
|
32
36
|
this.log.trace('namespace set to ' + val);
|
|
33
37
|
this.setOrRemove(Settings.NAMESPACE_KEY, val);
|
|
34
38
|
}
|
|
39
|
+
get darwiniumResult() {
|
|
40
|
+
let resultJson = this.storage.getItem(this.getKey(Settings.DARWINIUM_RESULT_KEY));
|
|
41
|
+
if (resultJson) {
|
|
42
|
+
const parsed = JSON.parse(resultJson);
|
|
43
|
+
return Object.assign(new darwinium_result_1.default(), parsed);
|
|
44
|
+
}
|
|
45
|
+
}
|
|
46
|
+
set darwiniumResult(result) {
|
|
47
|
+
this.setOrRemove(Settings.DARWINIUM_RESULT_KEY, JSON.stringify(result));
|
|
48
|
+
}
|
|
35
49
|
getKey(key) {
|
|
36
50
|
return `${Settings.KEY_PREFIX}.${key}`;
|
|
37
51
|
}
|
|
@@ -48,4 +62,5 @@ Settings.KEY_PREFIX = 'ProveAuth';
|
|
|
48
62
|
Settings.DEVICE_ID_KEY = 'DeviceId';
|
|
49
63
|
Settings.NAMESPACE_KEY = 'namespace';
|
|
50
64
|
Settings.FIDO_PASSKEY_REGISTERED_KEY = 'fidoPasskeyRegistered';
|
|
65
|
+
Settings.DARWINIUM_RESULT_KEY = 'DarwiniumResult';
|
|
51
66
|
exports.default = Settings;
|
|
@@ -4,6 +4,7 @@ export declare class WebDeviceRegistration implements DeviceRegistration {
|
|
|
4
4
|
private keys?;
|
|
5
5
|
deviceId: string | null;
|
|
6
6
|
fingerprint?: Signal;
|
|
7
|
+
darwinium?: Signal;
|
|
7
8
|
readonly namespace: string;
|
|
8
9
|
readonly keyId: string;
|
|
9
10
|
readonly algorithm: string;
|
|
@@ -14,7 +15,8 @@ export declare class WebDeviceRegistration implements DeviceRegistration {
|
|
|
14
15
|
sign(data: string): Promise<string>;
|
|
15
16
|
getPublicKey(): Promise<string>;
|
|
16
17
|
getAuthRegistration(challenge: string): Promise<AuthRegistration>;
|
|
17
|
-
getSignals(): Signals
|
|
18
|
+
getSignals(): Signals;
|
|
19
|
+
setDarwiniumSignal(dwnSignal: Signal): void;
|
|
18
20
|
private initialize;
|
|
19
21
|
private p1363ToDer;
|
|
20
22
|
private lenVal;
|
|
@@ -84,7 +84,13 @@ class WebDeviceRegistration {
|
|
|
84
84
|
});
|
|
85
85
|
}
|
|
86
86
|
getSignals() {
|
|
87
|
-
return
|
|
87
|
+
return {
|
|
88
|
+
fingerprint: this.fingerprint,
|
|
89
|
+
darwinium: this.darwinium,
|
|
90
|
+
};
|
|
91
|
+
}
|
|
92
|
+
setDarwiniumSignal(dwnSignal) {
|
|
93
|
+
this.darwinium = dwnSignal;
|
|
88
94
|
}
|
|
89
95
|
initialize() {
|
|
90
96
|
return new Promise((resolve, reject) => {
|
|
@@ -149,11 +155,15 @@ class WebDeviceAuth {
|
|
|
149
155
|
reject('Failed to open registration database: ' + e);
|
|
150
156
|
};
|
|
151
157
|
openReq.onsuccess = (e) => {
|
|
152
|
-
const db =
|
|
158
|
+
const db = e.target.result;
|
|
153
159
|
const tx = db.transaction([WebDeviceAuth.DB_STORE], 'readonly');
|
|
154
160
|
tx.oncomplete = () => db.close();
|
|
155
161
|
const store = tx.objectStore(WebDeviceAuth.DB_STORE);
|
|
156
162
|
const getReq = store.get(namespace);
|
|
163
|
+
getReq.onerror = (e) => {
|
|
164
|
+
this.log.error(e);
|
|
165
|
+
reject(new Error('Failed to access registration'));
|
|
166
|
+
};
|
|
157
167
|
getReq.onsuccess = () => {
|
|
158
168
|
if (getReq.result) {
|
|
159
169
|
resolve(new WebDeviceRegistration(getReq.result));
|
|
@@ -162,9 +172,6 @@ class WebDeviceAuth {
|
|
|
162
172
|
resolve(null);
|
|
163
173
|
}
|
|
164
174
|
};
|
|
165
|
-
getReq.onerror = (e) => {
|
|
166
|
-
reject(new Error('Failed to access registration'));
|
|
167
|
-
};
|
|
168
175
|
};
|
|
169
176
|
});
|
|
170
177
|
}
|
|
@@ -175,7 +182,7 @@ class WebDeviceAuth {
|
|
|
175
182
|
reject('Failed to open registration database: ' + e);
|
|
176
183
|
};
|
|
177
184
|
openReq.onsuccess = (e) => {
|
|
178
|
-
const db =
|
|
185
|
+
const db = e.target.result;
|
|
179
186
|
const tx = db.transaction([WebDeviceAuth.DB_STORE], 'readwrite');
|
|
180
187
|
tx.oncomplete = () => db.close();
|
|
181
188
|
const store = tx.objectStore(WebDeviceAuth.DB_STORE);
|
|
@@ -183,11 +190,12 @@ class WebDeviceAuth {
|
|
|
183
190
|
const addReq = store.put(registration);
|
|
184
191
|
addReq.onsuccess = () => {
|
|
185
192
|
this.log.trace('Registration saved');
|
|
193
|
+
resolve();
|
|
186
194
|
};
|
|
187
195
|
addReq.onerror = (e) => {
|
|
196
|
+
this.log.error(e);
|
|
188
197
|
reject(new auth_error_1.default('Failed to store registration'));
|
|
189
198
|
};
|
|
190
|
-
resolve();
|
|
191
199
|
};
|
|
192
200
|
});
|
|
193
201
|
}
|
|
@@ -198,7 +206,7 @@ class WebDeviceAuth {
|
|
|
198
206
|
reject('Failed to open registration database: ' + e);
|
|
199
207
|
};
|
|
200
208
|
openReq.onsuccess = (e) => {
|
|
201
|
-
var db =
|
|
209
|
+
var db = e.target.result;
|
|
202
210
|
var tx = db.transaction([WebDeviceAuth.DB_STORE], 'readwrite');
|
|
203
211
|
tx.oncomplete = () => db.close();
|
|
204
212
|
if (!db.objectStoreNames.contains(WebDeviceAuth.DB_STORE)) {
|
|
@@ -212,6 +220,7 @@ class WebDeviceAuth {
|
|
|
212
220
|
resolve();
|
|
213
221
|
};
|
|
214
222
|
delReq.onerror = (e) => {
|
|
223
|
+
this.log.error(e);
|
|
215
224
|
reject(new Error('Failed to delete registration'));
|
|
216
225
|
};
|
|
217
226
|
};
|
|
@@ -224,7 +233,8 @@ class WebDeviceAuth {
|
|
|
224
233
|
resolve();
|
|
225
234
|
};
|
|
226
235
|
delReq.onerror = (e) => {
|
|
227
|
-
this.log.warn('Failed to delete registration database
|
|
236
|
+
this.log.warn('Failed to delete registration database');
|
|
237
|
+
this.log.warn(e);
|
|
228
238
|
resolve();
|
|
229
239
|
};
|
|
230
240
|
});
|
|
@@ -232,12 +242,18 @@ class WebDeviceAuth {
|
|
|
232
242
|
openDatabase() {
|
|
233
243
|
const openReq = this.dbFactory.open(WebDeviceAuth.DB_NAME, WebDeviceAuth.DB_VERSION);
|
|
234
244
|
openReq.onupgradeneeded = (e) => {
|
|
235
|
-
|
|
236
|
-
|
|
237
|
-
|
|
238
|
-
|
|
239
|
-
|
|
240
|
-
|
|
245
|
+
var _a;
|
|
246
|
+
const db = (_a = e.target) === null || _a === void 0 ? void 0 : _a.result;
|
|
247
|
+
if (db) {
|
|
248
|
+
this.log.debug('Registration not found, database is missing, initializing');
|
|
249
|
+
const store = db.createObjectStore(WebDeviceAuth.DB_STORE, { keyPath: 'namespace' });
|
|
250
|
+
store.transaction.oncomplete = (e) => {
|
|
251
|
+
this.log.trace('Store initialization completed');
|
|
252
|
+
};
|
|
253
|
+
}
|
|
254
|
+
else {
|
|
255
|
+
this.log.error('Failed to initialize registration database: database is null');
|
|
256
|
+
}
|
|
241
257
|
};
|
|
242
258
|
return openReq;
|
|
243
259
|
}
|
|
@@ -1,8 +1,8 @@
|
|
|
1
|
-
/// <reference types="webappsec-credential-management" />
|
|
2
1
|
import { AuthenticatorBuilder } from '@prove-identity/mobile-auth';
|
|
3
2
|
import Platform, { AuthSessionIntegration, MessageChannel, RequestSigner } from './platform';
|
|
4
3
|
import WebDeviceAuth from './web-device-auth';
|
|
5
4
|
import { Agent } from '@fingerprintjs/fingerprintjs-pro';
|
|
5
|
+
import DarwiniumResult from '../darwinium-result';
|
|
6
6
|
export declare class WebSocketMessageChannel implements MessageChannel {
|
|
7
7
|
private readonly webSocket;
|
|
8
8
|
constructor(endpointUrl: string);
|
|
@@ -33,4 +33,5 @@ export declare class WebPlatform implements Platform {
|
|
|
33
33
|
getFpPromise(): Promise<Agent> | undefined;
|
|
34
34
|
setFpPromise(fpPromise: Promise<Agent>): void;
|
|
35
35
|
getOrigin(): string;
|
|
36
|
+
collectDarwiniumData(iFrameEnabled: boolean, iFrameSrc?: string): Promise<DarwiniumResult>;
|
|
36
37
|
}
|
|
@@ -8,6 +8,8 @@ const mobile_auth_1 = require("@prove-identity/mobile-auth");
|
|
|
8
8
|
const platform_1 = require("./platform");
|
|
9
9
|
const request_signer_v3_1 = __importDefault(require("./request-signer-v3"));
|
|
10
10
|
const web_device_auth_1 = __importDefault(require("./web-device-auth"));
|
|
11
|
+
const darwinium_result_1 = __importDefault(require("../darwinium-result"));
|
|
12
|
+
const darwinium_wrapper_1 = require("../darwinium-wrapper");
|
|
11
13
|
class WebSocketMessageChannel {
|
|
12
14
|
constructor(endpointUrl) {
|
|
13
15
|
this.webSocket = new WebSocket(endpointUrl);
|
|
@@ -168,5 +170,22 @@ class WebPlatform {
|
|
|
168
170
|
getOrigin() {
|
|
169
171
|
return window.location.origin;
|
|
170
172
|
}
|
|
173
|
+
collectDarwiniumData(iFrameEnabled, iFrameSrc) {
|
|
174
|
+
return new Promise((resolve) => {
|
|
175
|
+
if (iFrameEnabled) {
|
|
176
|
+
if (iFrameSrc) {
|
|
177
|
+
return darwinium_wrapper_1.DarwiniumWrapper.collectDataInIFrame(iFrameSrc).then((result) => resolve(result));
|
|
178
|
+
}
|
|
179
|
+
else {
|
|
180
|
+
const result = new darwinium_result_1.default();
|
|
181
|
+
result.setErr('iFrame is enabled for Darwinium data collection but iFrame src endpoint is unavailable');
|
|
182
|
+
resolve(result);
|
|
183
|
+
}
|
|
184
|
+
}
|
|
185
|
+
else {
|
|
186
|
+
return darwinium_wrapper_1.DarwiniumWrapper.collectData().then((result) => resolve(result));
|
|
187
|
+
}
|
|
188
|
+
});
|
|
189
|
+
}
|
|
171
190
|
}
|
|
172
191
|
exports.WebPlatform = WebPlatform;
|
|
@@ -1,3 +1,3 @@
|
|
|
1
|
-
export declare const VERSION = "2.
|
|
2
|
-
export declare const API_CONTRACT_VERSION = "2.
|
|
1
|
+
export declare const VERSION = "2.8.2";
|
|
2
|
+
export declare const API_CONTRACT_VERSION = "2.9.0";
|
|
3
3
|
export declare const USER_AGENT_VERSIONS: string;
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
"use strict";
|
|
2
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
3
|
exports.USER_AGENT_VERSIONS = exports.API_CONTRACT_VERSION = exports.VERSION = void 0;
|
|
4
|
-
exports.VERSION = '2.
|
|
5
|
-
exports.API_CONTRACT_VERSION = '2.
|
|
4
|
+
exports.VERSION = '2.8.2';
|
|
5
|
+
exports.API_CONTRACT_VERSION = '2.9.0';
|
|
6
6
|
exports.USER_AGENT_VERSIONS = `ProveAuth/${exports.VERSION} Contract/${exports.API_CONTRACT_VERSION} WEB/1`;
|