@revibase/ctap2-js 0.1.0

package/lib/ctap2/getAssertion.js

@@ -0,0 +1,104 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.parseAuthenticatorGetAssertionResponse = exports.encodeAuthenticatorGetAssertionRequest = void 0;
+const cbor_x_1 = require("cbor-x");
+const apdu_1 = require("../apdu");
+const constants_1 = require("../constants");
+const errors_1 = require("../errors");
+const cborUtils_1 = require("./cborUtils");
+function buildRequestMap(req) {
+    const m = new Map();
+    m.set(1, req.rpId);
+    m.set(2, req.clientDataHash);
+    if (req.allowCredentials?.length) {
+        m.set(3, req.allowCredentials.map((c) => ({
+            id: c.id,
+            type: c.type ?? "public-key",
+        })));
+    }
+    if (req.extensions && Object.keys(req.extensions).length > 0) {
+        m.set(4, req.extensions);
+    }
+    if (req.options &&
+        (req.options.up !== undefined || req.options.uv !== undefined)) {
+        const opt = {};
+        if (req.options.up !== undefined) {
+            opt.up = req.options.up;
+        }
+        if (req.options.uv !== undefined) {
+            opt.uv = req.options.uv;
+        }
+        m.set(5, opt);
+    }
+    return m;
+}
+function decodeAssertionMap(decoded) {
+    const authData = (0, cborUtils_1.bytesView)((0, cborUtils_1.cborMapGet)(decoded, 2));
+    const signature = (0, cborUtils_1.bytesView)((0, cborUtils_1.cborMapGet)(decoded, 3));
+    if (!authData || !signature) {
+        throw new errors_1.ApduError("missing authData (2) or signature (3) in response");
+    }
+    const out = {
+        authData,
+        signature,
+    };
+    const credRaw = (0, cborUtils_1.cborMapGet)(decoded, 1);
+    if (credRaw !== null && typeof credRaw === "object") {
+        const o = credRaw;
+        const id = (0, cborUtils_1.bytesView)(o.id);
+        if (id) {
+            out.credential = {
+                id,
+                type: typeof o.type === "string" ? o.type : undefined,
+            };
+        }
+    }
+    const userRaw = (0, cborUtils_1.cborMapGet)(decoded, 4);
+    if (userRaw !== null && typeof userRaw === "object") {
+        const o = userRaw;
+        const id = (0, cborUtils_1.bytesView)(o.id);
+        if (id) {
+            out.user = {
+                id,
+                name: typeof o.name === "string" ? o.name : undefined,
+                displayName: typeof o.displayName === "string"
+                    ? o.displayName
+                    : undefined,
+                icon: typeof o.icon === "string" ? o.icon : undefined,
+            };
+        }
+    }
+    const nRaw = (0, cborUtils_1.cborMapGet)(decoded, 5);
+    let n;
+    if (typeof nRaw === "number" && Number.isFinite(nRaw)) {
+        n = Math.trunc(nRaw);
+    }
+    else if (typeof nRaw === "bigint") {
+        n = Number(nRaw);
+    }
+    if (n !== undefined) {
+        out.numberOfCredentials = n;
+    }
+    const lbk = (0, cborUtils_1.bytesView)((0, cborUtils_1.cborMapGet)(decoded, 7));
+    if (lbk) {
+        out.largeBlobKey = lbk;
+    }
+    return out;
+}
+function encodeAuthenticatorGetAssertionRequest(req) {
+    if (req.clientDataHash.length !== 32) {
+        throw new errors_1.ApduError("clientDataHash must be 32 bytes (SHA-256)");
+    }
+    const enc = (0, cborUtils_1.encodeCtapCbor)(buildRequestMap(req));
+    const frame = new Uint8Array(1 + enc.length);
+    frame[0] = constants_1.CTAP_CBOR_ASSERT;
+    frame.set(enc, 1);
+    return frame;
+}
+exports.encodeAuthenticatorGetAssertionRequest = encodeAuthenticatorGetAssertionRequest;
+function parseAuthenticatorGetAssertionResponse(apduResponseIncludingSw) {
+    const cborMapBytes = (0, apdu_1.unwrapCtaphidCborBody)((0, apdu_1.parseCtaphidCborFromApduResponse)(apduResponseIncludingSw));
+    const decoded = (0, cbor_x_1.decode)(cborMapBytes);
+    return decodeAssertionMap(decoded);
+}
+exports.parseAuthenticatorGetAssertionResponse = parseAuthenticatorGetAssertionResponse;

package/lib/ctap2/makeCredential.d.ts

@@ -0,0 +1,37 @@
+export interface AuthenticatorMakeCredentialRequest {
+    clientDataHash: Uint8Array;
+    rp: {
+        id: string;
+        name: string;
+    };
+    user: {
+        id: Uint8Array;
+        name: string;
+        displayName: string;
+        icon?: string;
+    };
+    pubKeyCredParams: Array<{
+        alg: number;
+        type: string;
+    }>;
+    excludeCredentials?: Array<{
+        id: Uint8Array;
+        type?: string;
+    }>;
+    extensions?: Record<string, unknown>;
+    options?: {
+        rk?: boolean;
+        uv?: boolean;
+    };
+}
+export interface AuthenticatorMakeCredentialResponse {
+    fmt: string;
+    authData: Uint8Array;
+    attStmt: Record<string, unknown>;
+    largeBlobKey?: Uint8Array;
+}
+export declare function encodeAuthenticatorMakeCredentialRequest(req: AuthenticatorMakeCredentialRequest): Uint8Array;
+export declare function parseAuthenticatorMakeCredentialResponse(apduResponseIncludingSw: Uint8Array): AuthenticatorMakeCredentialResponse;
+export declare function buildAttestationObjectBytes(fmt: string, authData: Uint8Array, attStmt: Record<string, unknown>): Uint8Array;
+export declare function extractCredentialIdFromAuthData(authData: Uint8Array): Uint8Array;
+//# sourceMappingURL=makeCredential.d.ts.map

package/lib/ctap2/makeCredential.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"makeCredential.d.ts","sourceRoot":"","sources":["../../src/ctap2/makeCredential.ts"],"names":[],"mappings":"AASA,MAAM,WAAW,kCAAkC;IAClD,cAAc,EAAE,UAAU,CAAC;IAC3B,EAAE,EAAE;QAAE,EAAE,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,MAAM,CAAA;KAAE,CAAC;IACjC,IAAI,EAAE;QACL,EAAE,EAAE,UAAU,CAAC;QACf,IAAI,EAAE,MAAM,CAAC;QACb,WAAW,EAAE,MAAM,CAAC;QACpB,IAAI,CAAC,EAAE,MAAM,CAAC;KACd,CAAC;IACF,gBAAgB,EAAE,KAAK,CAAC;QAAE,GAAG,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IACvD,kBAAkB,CAAC,EAAE,KAAK,CAAC;QAAE,EAAE,EAAE,UAAU,CAAC;QAAC,IAAI,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IAC9D,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACrC,OAAO,CAAC,EAAE;QAAE,EAAE,CAAC,EAAE,OAAO,CAAC;QAAC,EAAE,CAAC,EAAE,OAAO,CAAA;KAAE,CAAC;CACzC;AAED,MAAM,WAAW,mCAAmC;IACnD,GAAG,EAAE,MAAM,CAAC;IACZ,QAAQ,EAAE,UAAU,CAAC;IACrB,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACjC,YAAY,CAAC,EAAE,UAAU,CAAC;CAC1B;AAoDD,wBAAgB,wCAAwC,CACvD,GAAG,EAAE,kCAAkC,GACrC,UAAU,CAcZ;AAED,wBAAgB,wCAAwC,CACvD,uBAAuB,EAAE,UAAU,GACjC,mCAAmC,CAgCrC;AAED,wBAAgB,2BAA2B,CAC1C,GAAG,EAAE,MAAM,EACX,QAAQ,EAAE,UAAU,EACpB,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAC9B,UAAU,CAOZ;AAED,wBAAgB,+BAA+B,CAC9C,QAAQ,EAAE,UAAU,GAClB,UAAU,CAsBZ"}

package/lib/ctap2/makeCredential.js

@@ -0,0 +1,118 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.extractCredentialIdFromAuthData = exports.buildAttestationObjectBytes = exports.parseAuthenticatorMakeCredentialResponse = exports.encodeAuthenticatorMakeCredentialRequest = void 0;
+const cbor_x_1 = require("cbor-x");
+const apdu_1 = require("../apdu");
+const constants_1 = require("../constants");
+const errors_1 = require("../errors");
+const cborUtils_1 = require("./cborUtils");
+function buildMakeCredentialMap(req) {
+    const m = new Map();
+    m.set(1, req.clientDataHash);
+    m.set(2, { id: req.rp.id, name: req.rp.name });
+    const u = {
+        id: req.user.id,
+        name: req.user.name,
+        displayName: req.user.displayName,
+    };
+    if (req.user.icon !== undefined) {
+        u.icon = req.user.icon;
+    }
+    m.set(3, u);
+    m.set(4, req.pubKeyCredParams.map((p) => ({
+        alg: p.alg,
+        type: p.type ?? "public-key",
+    })));
+    if (req.excludeCredentials?.length) {
+        m.set(5, req.excludeCredentials.map((c) => ({
+            id: c.id,
+            type: c.type ?? "public-key",
+        })));
+    }
+    if (req.extensions && Object.keys(req.extensions).length > 0) {
+        m.set(6, req.extensions);
+    }
+    if (req.options &&
+        (req.options.rk !== undefined || req.options.uv !== undefined)) {
+        const opt = {};
+        if (req.options.rk !== undefined) {
+            opt.rk = req.options.rk;
+        }
+        if (req.options.uv !== undefined) {
+            opt.uv = req.options.uv;
+        }
+        m.set(7, opt);
+    }
+    return m;
+}
+function encodeAuthenticatorMakeCredentialRequest(req) {
+    if (req.clientDataHash.length !== 32) {
+        throw new errors_1.ApduError("clientDataHash must be 32 bytes (SHA-256)");
+    }
+    if (!req.pubKeyCredParams.length) {
+        throw new errors_1.ApduError("pubKeyCredParams must not be empty");
+    }
+    const enc = (0, cborUtils_1.encodeCtapCbor)(buildMakeCredentialMap(req));
+    const frame = new Uint8Array(1 + enc.length);
+    frame[0] = constants_1.CTAP_CBOR_MAKE_CRED;
+    frame.set(enc, 1);
+    return frame;
+}
+exports.encodeAuthenticatorMakeCredentialRequest = encodeAuthenticatorMakeCredentialRequest;
+function parseAuthenticatorMakeCredentialResponse(apduResponseIncludingSw) {
+    const cborMapBytes = (0, apdu_1.unwrapCtaphidCborBody)((0, apdu_1.parseCtaphidCborFromApduResponse)(apduResponseIncludingSw));
+    const decoded = (0, cbor_x_1.decode)(cborMapBytes);
+    const fmtRaw = (0, cborUtils_1.cborMapGet)(decoded, 1);
+    const fmt = typeof fmtRaw === "string" ? fmtRaw : undefined;
+    const authData = (0, cborUtils_1.bytesView)((0, cborUtils_1.cborMapGet)(decoded, 2));
+    const attStmtRaw = (0, cborUtils_1.cborMapGet)(decoded, 3);
+    if (attStmtRaw === null ||
+        typeof attStmtRaw !== "object" ||
+        Array.isArray(attStmtRaw)) {
+        throw new errors_1.ApduError("attStmt (key 3) must be a CBOR map");
+    }
+    const attStmt = attStmtRaw;
+    if (!fmt || !authData) {
+        throw new errors_1.ApduError("missing fmt (1) or authData (2) in makeCredential response");
+    }
+    const out = {
+        fmt,
+        authData,
+        attStmt,
+    };
+    const lbk = (0, cborUtils_1.bytesView)((0, cborUtils_1.cborMapGet)(decoded, 5));
+    if (lbk) {
+        out.largeBlobKey = lbk;
+    }
+    return out;
+}
+exports.parseAuthenticatorMakeCredentialResponse = parseAuthenticatorMakeCredentialResponse;
+function buildAttestationObjectBytes(fmt, authData, attStmt) {
+    // WebAuthn attestation object is CBOR; use CTAP2 canonical rules (CTAP §8) for interoperability.
+    return (0, cborUtils_1.encodeCtapCbor)({
+        fmt,
+        authData,
+        attStmt,
+    });
+}
+exports.buildAttestationObjectBytes = buildAttestationObjectBytes;
+function extractCredentialIdFromAuthData(authData) {
+    if (authData.length < 37) {
+        throw new errors_1.ApduError("authData too short");
+    }
+    const flags = authData[32];
+    if ((flags & 0x40) === 0) {
+        throw new errors_1.ApduError("authData missing AT flag (attested credential data)");
+    }
+    let off = 37 + 16;
+    if (off + 2 > authData.length) {
+        throw new errors_1.ApduError("authData truncated before credential id length");
+    }
+    const credIdLen = (authData[off] << 8) | authData[off + 1];
+    off += 2;
+    if (off + credIdLen > authData.length) {
+        throw new errors_1.ApduError("credential id length out of range");
+    }
+    return authData.slice(off, off + credIdLen);
+}
+exports.extractCredentialIdFromAuthData = extractCredentialIdFromAuthData;

package/lib/errors.d.ts

@@ -0,0 +1,7 @@
+export declare class ApduError extends Error {
+    readonly cause?: unknown;
+    constructor(message: string, options?: {
+        cause?: unknown;
+    });
+}
+//# sourceMappingURL=errors.d.ts.map

package/lib/errors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../src/errors.ts"],"names":[],"mappings":"AAAA,qBAAa,SAAU,SAAQ,KAAK;IAClC,SAAiB,KAAK,CAAC,EAAE,OAAO,CAAC;gBAErB,OAAO,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE;QAAE,KAAK,CAAC,EAAE,OAAO,CAAA;KAAE;CAO3D"}

package/lib/errors.js

@@ -0,0 +1,13 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ApduError = void 0;
+class ApduError extends Error {
+    constructor(message, options) {
+        super(message);
+        this.name = "ApduError";
+        if (options?.cause !== undefined) {
+            this.cause = options.cause;
+        }
+    }
+}
+exports.ApduError = ApduError;

package/lib/helpers/authDataExtensions.d.ts

@@ -0,0 +1,9 @@
+/**
+ * Parse the **extensions** CBOR map from WebAuthn authenticator data (ED flag).
+ * This is what browsers merge into `getClientExtensionResults()` for authenticator
+ * extension outputs; pure **client** extensions are not present here.
+ *
+ * @returns Plain object suitable for `clientExtensionResults`, or `{}` if ED is clear.
+ */
+export declare function parseAuthenticatorDataExtensions(authData: Uint8Array): Record<string, unknown>;
+//# sourceMappingURL=authDataExtensions.d.ts.map

package/lib/helpers/authDataExtensions.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"authDataExtensions.d.ts","sourceRoot":"","sources":["../../src/helpers/authDataExtensions.ts"],"names":[],"mappings":"AA0LA;;;;;;GAMG;AACH,wBAAgB,gCAAgC,CAC/C,QAAQ,EAAE,UAAU,GAClB,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAkBzB"}

package/lib/helpers/authDataExtensions.js

@@ -0,0 +1,192 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.parseAuthenticatorDataExtensions = void 0;
+const cbor_x_1 = require("cbor-x");
+/** WebAuthn authenticator data flags (byte index 32). */
+const FLAG_AT = 0x40;
+const FLAG_ED = 0x80;
+/**
+ * Skip one definite CBOR data item (RFC 8949). Used to skip the COSE public key
+ * in attested credential data. Indefinite-length items throw (not used in WebAuthn authData).
+ */
+function skipOneCborItem(buf, i) {
+    const first = buf[i];
+    const mt = first >> 5;
+    const ai = first & 0x1f;
+    let p = i + 1;
+    if (mt === 0 || mt === 1) {
+        if (ai < 24) {
+            return p;
+        }
+        if (ai === 24) {
+            return p + 1;
+        }
+        if (ai === 25) {
+            return p + 2;
+        }
+        if (ai === 26) {
+            return p + 4;
+        }
+        if (ai === 27) {
+            return p + 8;
+        }
+        throw new Error("CBOR: invalid integer encoding");
+    }
+    if (mt === 2 || mt === 3) {
+        const { len, next } = readLength(ai, buf, p);
+        return next + len;
+    }
+    if (mt === 4) {
+        if (ai === 31) {
+            throw new Error("CBOR: indefinite array not supported in authData");
+        }
+        const { len, next } = readLength(ai, buf, p);
+        let q = next;
+        for (let k = 0; k < len; k++) {
+            q = skipOneCborItem(buf, q);
+        }
+        return q;
+    }
+    if (mt === 5) {
+        if (ai === 31) {
+            throw new Error("CBOR: indefinite map not supported in authData");
+        }
+        const { len, next } = readLength(ai, buf, p);
+        let q = next;
+        for (let k = 0; k < len; k++) {
+            q = skipOneCborItem(buf, q);
+            q = skipOneCborItem(buf, q);
+        }
+        return q;
+    }
+    if (mt === 6) {
+        const { next } = readTagNumber(ai, buf, p);
+        return skipOneCborItem(buf, next);
+    }
+    if (mt === 7) {
+        if (ai < 24) {
+            return p;
+        }
+        if (ai === 24) {
+            return p + 1;
+        }
+        if (ai === 25) {
+            return p + 2;
+        }
+        if (ai === 26) {
+            return p + 5;
+        }
+        if (ai === 27) {
+            return p + 9;
+        }
+        throw new Error("CBOR: invalid simple/float encoding");
+    }
+    throw new Error("CBOR: unknown major type");
+}
+function readLength(ai, buf, p) {
+    if (ai < 24) {
+        return { len: ai, next: p };
+    }
+    if (ai === 24) {
+        return { len: buf[p], next: p + 1 };
+    }
+    if (ai === 25) {
+        return { len: (buf[p] << 8) | buf[p + 1], next: p + 2 };
+    }
+    if (ai === 26) {
+        const len = ((buf[p] << 24) |
+            (buf[p + 1] << 16) |
+            (buf[p + 2] << 8) |
+            buf[p + 3]) >>>
+            0;
+        return { len, next: p + 4 };
+    }
+    if (ai === 27) {
+        const hi = (buf[p] << 24) | (buf[p + 1] << 16) | (buf[p + 2] << 8) | buf[p + 3];
+        const lo = (buf[p + 4] << 24) |
+            (buf[p + 5] << 16) |
+            (buf[p + 6] << 8) |
+            buf[p + 7];
+        const n = (BigInt(hi >>> 0) << 32n) | BigInt(lo >>> 0);
+        if (n > BigInt(Number.MAX_SAFE_INTEGER)) {
+            throw new Error("CBOR: length too large");
+        }
+        return { len: Number(n), next: p + 8 };
+    }
+    throw new Error("CBOR: invalid length encoding");
+}
+function readTagNumber(ai, buf, p) {
+    if (ai < 24) {
+        return { next: p };
+    }
+    if (ai === 24) {
+        return { next: p + 1 };
+    }
+    if (ai === 25) {
+        return { next: p + 2 };
+    }
+    if (ai === 26) {
+        return { next: p + 4 };
+    }
+    if (ai === 27) {
+        return { next: p + 8 };
+    }
+    throw new Error("CBOR: invalid tag encoding");
+}
+/**
+ * Advance past attested credential data (starts at `start`, first byte of AAGUID).
+ */
+function skipAttestedCredentialData(authData, start) {
+    if (authData.length < start + 18) {
+        throw new Error("authData: truncated attested credential data header");
+    }
+    let off = start + 16;
+    const credIdLen = (authData[off] << 8) | authData[off + 1];
+    off += 2 + credIdLen;
+    if (off > authData.length) {
+        throw new Error("authData: credential id out of range");
+    }
+    return skipOneCborItem(authData, off);
+}
+function cborExtensionsToRecord(decoded) {
+    if (decoded instanceof Map) {
+        const o = {};
+        for (const [k, v] of decoded) {
+            if (typeof k === "string") {
+                o[k] = v;
+            }
+        }
+        return o;
+    }
+    if (decoded !== null && typeof decoded === "object" && !Array.isArray(decoded)) {
+        return { ...decoded };
+    }
+    return {};
+}
+/**
+ * Parse the **extensions** CBOR map from WebAuthn authenticator data (ED flag).
+ * This is what browsers merge into `getClientExtensionResults()` for authenticator
+ * extension outputs; pure **client** extensions are not present here.
+ *
+ * @returns Plain object suitable for `clientExtensionResults`, or `{}` if ED is clear.
+ */
+function parseAuthenticatorDataExtensions(authData) {
+    if (authData.length < 37) {
+        return {};
+    }
+    const flags = authData[32];
+    let offset = 37;
+    if (flags & FLAG_AT) {
+        offset = skipAttestedCredentialData(authData, offset);
+    }
+    if ((flags & FLAG_ED) === 0) {
+        return {};
+    }
+    if (offset >= authData.length) {
+        return {};
+    }
+    const extBytes = authData.subarray(offset);
+    const decoded = (0, cbor_x_1.decode)(extBytes);
+    return cborExtensionsToRecord(decoded);
+}
+exports.parseAuthenticatorDataExtensions = parseAuthenticatorDataExtensions;

package/lib/helpers/base64url.d.ts

@@ -0,0 +1,3 @@
+export declare function base64URLStringToBuffer(base64URLString: string): ArrayBuffer;
+export declare function bufferToBase64URLString(buffer: Uint8Array): string;
+//# sourceMappingURL=base64url.d.ts.map

package/lib/helpers/base64url.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"base64url.d.ts","sourceRoot":"","sources":["../../src/helpers/base64url.ts"],"names":[],"mappings":"AAAA,wBAAgB,uBAAuB,CAAC,eAAe,EAAE,MAAM,eAW9D;AACD,wBAAgB,uBAAuB,CAAC,MAAM,EAAE,UAAU,UAWzD"}

package/lib/helpers/base64url.js

@@ -0,0 +1,29 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.bufferToBase64URLString = exports.base64URLStringToBuffer = void 0;
+function base64URLStringToBuffer(base64URLString) {
+    const base64 = base64URLString.replace(/-/g, "+").replace(/_/g, "/");
+    const padLength = (4 - (base64.length % 4)) % 4;
+    const padded = base64.padEnd(base64.length + padLength, "=");
+    const binary = atob(padded);
+    const buffer = new ArrayBuffer(binary.length);
+    const bytes = new Uint8Array(buffer);
+    for (let i = 0; i < binary.length; i++) {
+        bytes[i] = binary.charCodeAt(i);
+    }
+    return buffer;
+}
+exports.base64URLStringToBuffer = base64URLStringToBuffer;
+function bufferToBase64URLString(buffer) {
+    const bytes = new Uint8Array(buffer);
+    let str = "";
+    for (const charCode of bytes) {
+        str += String.fromCharCode(charCode);
+    }
+    const base64String = btoa(str);
+    return base64String
+        .replace(/\+/g, "-")
+        .replace(/\//g, "_")
+        .replace(/=/g, "");
+}
+exports.bufferToBase64URLString = bufferToBase64URLString;

package/lib/helpers/clientData.d.ts

@@ -0,0 +1,9 @@
+interface CollectedClientDataInput {
+    challenge: string;
+    origin: string;
+    crossOrigin: boolean;
+    topOrigin?: string;
+}
+export declare function buildCollectedClientDataJSON(type: "webauthn.get" | "webauthn.create", input: CollectedClientDataInput): string;
+export {};
+//# sourceMappingURL=clientData.d.ts.map

package/lib/helpers/clientData.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"clientData.d.ts","sourceRoot":"","sources":["../../src/helpers/clientData.ts"],"names":[],"mappings":"AAAA,UAAU,wBAAwB;IAChC,SAAS,EAAE,MAAM,CAAC;IAClB,MAAM,EAAE,MAAM,CAAC;IACf,WAAW,EAAE,OAAO,CAAC;IACrB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,wBAAgB,4BAA4B,CAC1C,IAAI,EAAE,cAAc,GAAG,iBAAiB,EACxC,KAAK,EAAE,wBAAwB,GAC9B,MAAM,CAaR"}

package/lib/helpers/clientData.js

@@ -0,0 +1,18 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.buildCollectedClientDataJSON = void 0;
+function buildCollectedClientDataJSON(type, input) {
+    const o = {
+        type,
+        challenge: input.challenge,
+        origin: input.origin,
+    };
+    if (input.crossOrigin !== undefined) {
+        o.crossOrigin = input.crossOrigin;
+    }
+    if (input.topOrigin !== undefined) {
+        o.topOrigin = input.topOrigin;
+    }
+    return JSON.stringify(o);
+}
+exports.buildCollectedClientDataJSON = buildCollectedClientDataJSON;

package/lib/helpers/fromWebAuthnJson.d.ts

@@ -0,0 +1,6 @@
+import { type AuthenticatorGetAssertionRequest } from "../ctap2/getAssertion";
+import { type AuthenticatorMakeCredentialRequest } from "../ctap2/makeCredential";
+import { PublicKeyCredentialCreationOptionsJSONWithNfc, PublicKeyCredentialRequestOptionsJSONWithNfc } from "../types";
+export declare function authenticatorGetAssertionRequestFromPublicKeyCredentialRequestOptionsJSON(args: PublicKeyCredentialRequestOptionsJSONWithNfc): AuthenticatorGetAssertionRequest;
+export declare function authenticatorMakeCredentialRequestFromPublicKeyCredentialCreationOptionsJSON(args: PublicKeyCredentialCreationOptionsJSONWithNfc): AuthenticatorMakeCredentialRequest;
+//# sourceMappingURL=fromWebAuthnJson.d.ts.map

package/lib/helpers/fromWebAuthnJson.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"fromWebAuthnJson.d.ts","sourceRoot":"","sources":["../../src/helpers/fromWebAuthnJson.ts"],"names":[],"mappings":"AAIA,OAAO,EAAE,KAAK,gCAAgC,EAAE,MAAM,uBAAuB,CAAC;AAC9E,OAAO,EAAE,KAAK,kCAAkC,EAAE,MAAM,yBAAyB,CAAC;AAClF,OAAO,EACL,6CAA6C,EAC7C,4CAA4C,EAC7C,MAAM,UAAU,CAAC;AAgElB,wBAAgB,yEAAyE,CACvF,IAAI,EAAE,4CAA4C,GACjD,gCAAgC,CA0ClC;AAED,wBAAgB,4EAA4E,CAC1F,IAAI,EAAE,6CAA6C,GAClD,kCAAkC,CAqDpC"}