npm - @simplewebauthn/server - Versions diffs - 8.0.0 → 8.1.0 - Mend

@simplewebauthn/server 8.0.0 → 8.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (11) hide show

package/esm/authentication/verifyAuthenticationResponse.d.ts CHANGED Viewed

@@ -2,7 +2,7 @@ import type { AuthenticationResponseJSON, AuthenticatorDevice, CredentialDeviceT
 import { AuthenticationExtensionsAuthenticatorOutputs } from '../helpers/decodeAuthenticatorExtensions.js';
 export type VerifyAuthenticationResponseOpts = {
     response: AuthenticationResponseJSON;
-    expectedChallenge: string | ((challenge: string) => boolean);
+    expectedChallenge: string | ((challenge: string) => boolean | Promise<boolean>);
     expectedOrigin: string | string[];
     expectedRPID: string | string[];
     authenticator: AuthenticatorDevice;

package/esm/authentication/verifyAuthenticationResponse.js CHANGED Viewed

@@ -53,7 +53,7 @@ export async function verifyAuthenticationResponse(options) {
     }
     // Ensure the device provided the challenge we gave it
     if (typeof expectedChallenge === 'function') {
-        if (!expectedChallenge(challenge)) {
+        if (!(await expectedChallenge(challenge))) {
             throw new Error(`Custom challenge verifier returned false for registration response challenge "${challenge}"`);
         }
     }

package/esm/helpers/iso/isoCrypto/getWebCrypto.js CHANGED Viewed

@@ -13,7 +13,7 @@ export async function getWebCrypto() {
          */
         // @ts-ignore: We'll handle any errors...
         // dnt-shim-ignore
-        const _crypto = await require('node:crypto');
+        const _crypto = await import('crypto');
         webCrypto = _crypto.webcrypto;
     }
     catch (_err) {

package/esm/registration/verifyRegistrationResponse.d.ts CHANGED Viewed

@@ -3,7 +3,7 @@ import { AttestationFormat, AttestationStatement } from '../helpers/decodeAttest
 import { AuthenticationExtensionsAuthenticatorOutputs } from '../helpers/decodeAuthenticatorExtensions.js';
 export type VerifyRegistrationResponseOpts = {
     response: RegistrationResponseJSON;
-    expectedChallenge: string | ((challenge: string) => boolean);
+    expectedChallenge: string | ((challenge: string) => boolean | Promise<boolean>);
     expectedOrigin: string | string[];
     expectedRPID?: string | string[];
     requireUserVerification?: boolean;

package/esm/registration/verifyRegistrationResponse.js CHANGED Viewed

@@ -54,7 +54,7 @@ export async function verifyRegistrationResponse(options) {
     }
     // Ensure the device provided the challenge we gave it
     if (typeof expectedChallenge === 'function') {
-        if (!expectedChallenge(challenge)) {
+        if (!(await expectedChallenge(challenge))) {
             throw new Error(`Custom challenge verifier returned false for registration response challenge "${challenge}"`);
         }
     }

package/package.json CHANGED Viewed

@@ -2,7 +2,7 @@
   "module": "./esm/index.js",
   "main": "./script/index.js",
   "name": "@simplewebauthn/server",
-  "version": "8.0.0",
+  "version": "8.1.0",
   "description": "SimpleWebAuthn for Servers",
   "license": "MIT",
   "author": "Matthew Miller <matthew@millerti.me>",
@@ -60,5 +60,13 @@
     "cbor-x": "^1.5.2",
     "cross-fetch": "^4.0.0",
     "debug": "^4.3.4"
+  },
+  "devDependencies": {
+    "@types/node": "^18.11.9",
+    "picocolors": "^1.0.0",
+    "@deno/shim-deno-test": "~0.4.0"
+  },
+  "scripts": {
+    "test": "node test_runner.js"
   }
 }

package/script/authentication/verifyAuthenticationResponse.d.ts CHANGED Viewed

@@ -2,7 +2,7 @@ import type { AuthenticationResponseJSON, AuthenticatorDevice, CredentialDeviceT
 import { AuthenticationExtensionsAuthenticatorOutputs } from '../helpers/decodeAuthenticatorExtensions.js';
 export type VerifyAuthenticationResponseOpts = {
     response: AuthenticationResponseJSON;
-    expectedChallenge: string | ((challenge: string) => boolean);
+    expectedChallenge: string | ((challenge: string) => boolean | Promise<boolean>);
     expectedOrigin: string | string[];
     expectedRPID: string | string[];
     authenticator: AuthenticatorDevice;

package/script/authentication/verifyAuthenticationResponse.js CHANGED Viewed

@@ -56,7 +56,7 @@ async function verifyAuthenticationResponse(options) {
     }
     // Ensure the device provided the challenge we gave it
     if (typeof expectedChallenge === 'function') {
-        if (!expectedChallenge(challenge)) {
+        if (!(await expectedChallenge(challenge))) {
             throw new Error(`Custom challenge verifier returned false for registration response challenge "${challenge}"`);
         }
     }

package/script/helpers/iso/isoCrypto/getWebCrypto.js CHANGED Viewed

@@ -1,4 +1,27 @@
 "use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || function (mod) {
+    if (mod && mod.__esModule) return mod;
+    var result = {};
+    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
+    __setModuleDefault(result, mod);
+    return result;
+};
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.getWebCrypto = void 0;
 let webCrypto = undefined;
@@ -16,7 +39,7 @@ async function getWebCrypto() {
          */
         // @ts-ignore: We'll handle any errors...
         // dnt-shim-ignore
-        const _crypto = await require('node:crypto');
+        const _crypto = await Promise.resolve().then(() => __importStar(require('crypto')));
         webCrypto = _crypto.webcrypto;
     }
     catch (_err) {

package/script/registration/verifyRegistrationResponse.d.ts CHANGED Viewed

@@ -3,7 +3,7 @@ import { AttestationFormat, AttestationStatement } from '../helpers/decodeAttest
 import { AuthenticationExtensionsAuthenticatorOutputs } from '../helpers/decodeAuthenticatorExtensions.js';
 export type VerifyRegistrationResponseOpts = {
     response: RegistrationResponseJSON;
-    expectedChallenge: string | ((challenge: string) => boolean);
+    expectedChallenge: string | ((challenge: string) => boolean | Promise<boolean>);
     expectedOrigin: string | string[];
     expectedRPID?: string | string[];
     requireUserVerification?: boolean;

package/script/registration/verifyRegistrationResponse.js CHANGED Viewed

@@ -57,7 +57,7 @@ async function verifyRegistrationResponse(options) {
     }
     // Ensure the device provided the challenge we gave it
     if (typeof expectedChallenge === 'function') {
-        if (!expectedChallenge(challenge)) {
+        if (!(await expectedChallenge(challenge))) {
             throw new Error(`Custom challenge verifier returned false for registration response challenge "${challenge}"`);
         }
     }