npm - @strands.gg/accui - Versions diffs - 1.3.0 → 1.3.2 - Mend

@strands.gg/accui 1.3.0 → 1.3.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (38) hide show

package/dist/strands-auth-ui.es.js CHANGED Viewed

@@ -1,7 +1,7 @@
 import { defineComponent, computed, createElementBlock, openBlock, normalizeClass, createElementVNode, createCommentVNode, toDisplayString, renderSlot, createTextVNode, useSlots, ref, createBlock, resolveDynamicComponent, mergeProps, withCtx, onMounted, nextTick, toRefs, watch, Fragment, renderList, normalizeStyle, Teleport, withModifiers, createVNode, createSlots, onBeforeUnmount, withKeys, reactive, Transition, h, createStaticVNode } from "vue";
-import { u as useStrandsConfig, p as provideStrandsConfig } from "./useStrandsConfig-EVnsLNNn.js";
-import { s } from "./useStrandsConfig-EVnsLNNn.js";
-import { u as useStrandsAuth } from "./useStrandsAuth-DiT3EcHV.js";
+import { u as useStrandsConfig, p as provideStrandsConfig } from "./useStrandsConfig-V7XSMyQ5.js";
+import { s } from "./useStrandsConfig-V7XSMyQ5.js";
+import { u as useStrandsAuth } from "./useStrandsAuth-DQbwHB-6.js";
 const _sfc_main$r = /* @__PURE__ */ defineComponent({
   __name: "UiAlert",
   props: {
@@ -1247,6 +1247,7 @@ const _sfc_main$i = /* @__PURE__ */ defineComponent({
     const {
       verifyMfa,
       sendMfaEmailCode,
+      getMfaWebAuthnChallenge,
       mfaSessionId: authMfaSessionId,
       loading: authLoading,
       loadingMessage: authLoadingMessage,
@@ -1326,9 +1327,11 @@ const _sfc_main$i = /* @__PURE__ */ defineComponent({
     const onBackupCodeInput = (value) => {
       let cleaned = value.replace(/[^a-zA-Z0-9-]/g, "").toLowerCase();
       if (!/[-]/.test(cleaned) && cleaned.length > 4) {
-        cleaned = cleaned.match(/.{1,4}/g)?.join("-") || cleaned;
+        const part1 = cleaned.substring(0, 4);
+        const part2 = cleaned.substring(4, 8);
+        cleaned = part2 ? `${part1}-${part2}` : part1;
       }
-      if (cleaned.replace(/-/g, "").length <= 16) {
+      if (cleaned.replace(/-/g, "").length <= 8) {
         backupCode.value = cleaned;
       }
       backupCodeError.value = "";
@@ -1387,16 +1390,13 @@ const _sfc_main$i = /* @__PURE__ */ defineComponent({
         if (!window.navigator.credentials || !window.PublicKeyCredential) {
           throw new Error("Hardware keys are not supported in this browser");
         }
-        const challenge = new Uint8Array(32);
-        crypto.getRandomValues(challenge);
+        const challengeResponse = await getMfaWebAuthnChallenge(selectedMethod.value.id);
+        const challenge = challengeResponse.challenge;
+        console.log("Received WebAuthn challenge:", challenge);
         const isPasskey = selectedMethod.value.device_type === "passkey";
         const publicKeyCredentialRequestOptions = {
-          challenge,
-          timeout: isPasskey ? 3e5 : 6e4,
-          // Longer timeout for passkeys
-          rpId: window.location.hostname,
-          allowCredentials: [],
-          // Empty to allow any registered credential
+          ...challenge,
+          timeout: isPasskey ? 3e5 : challenge.timeout || 6e4,
           userVerification: isPasskey ? "required" : "discouraged"
         };
         const credential = await navigator.credentials.get({
@@ -1442,7 +1442,7 @@ const _sfc_main$i = /* @__PURE__ */ defineComponent({
         emit("error", error instanceof Error ? error.message : "Hardware key authentication failed");
       }
     };
-    const __returned__ = { props, emit, mfaLoading, getDeviceTypeIcon, getDeviceTypeName, verifyMfa, sendMfaEmailCode, authMfaSessionId, authLoading, authLoadingMessage, isSendingMfaEmail, isVerifyingMfa, loading: loading2, selectedMethod, verificationCode, verificationError, backupCode, backupCodeError, showBackupCodeInput, emailCodeSent, cooldownActive, cooldownSeconds, get cooldownInterval() {
+    const __returned__ = { props, emit, mfaLoading, getDeviceTypeIcon, getDeviceTypeName, verifyMfa, sendMfaEmailCode, getMfaWebAuthnChallenge, authMfaSessionId, authLoading, authLoadingMessage, isSendingMfaEmail, isVerifyingMfa, loading: loading2, selectedMethod, verificationCode, verificationError, backupCode, backupCodeError, showBackupCodeInput, emailCodeSent, cooldownActive, cooldownSeconds, get cooldownInterval() {
       return cooldownInterval;
     }, set cooldownInterval(v) {
       cooldownInterval = v;
@@ -1846,7 +1846,7 @@ function _sfc_render$i(_ctx, _cache, $props, $setup, $data, $options) {
                     modelValue: $setup.backupCode,
                     "onUpdate:modelValue": _cache[1] || (_cache[1] = ($event) => $setup.backupCode = $event),
                     label: "Backup Code",
-                    placeholder: "abcd-efgh-ijkl",
+                    placeholder: "abcd-1234",
                     error: $setup.backupCodeError,
                     disabled: $setup.loading,
                     onInput: $setup.onBackupCodeInput,
@@ -1973,7 +1973,7 @@ function _sfc_render$i(_ctx, _cache, $props, $setup, $data, $options) {
                     modelValue: $setup.backupCode,
                     "onUpdate:modelValue": _cache[4] || (_cache[4] = ($event) => $setup.backupCode = $event),
                     label: "Backup Code",
-                    placeholder: "abcd-efgh-ijkl",
+                    placeholder: "abcd-1234",
                     error: $setup.backupCodeError,
                     disabled: $setup.loading,
                     onInput: $setup.onBackupCodeInput,
@@ -7526,6 +7526,28 @@ const _sfc_main$b = /* @__PURE__ */ defineComponent({
     const closeModal = () => {
       emit("close");
     };
+    const getOptimalAuthenticatorSelection = (deviceType) => {
+      if (deviceType === "passkey") {
+        return {
+          authenticatorAttachment: void 0,
+          // Allow both platform and cross-platform for passkeys
+          requireResidentKey: true,
+          // Passkeys are resident credentials
+          residentKey: "required",
+          userVerification: "required"
+          // Passkeys should always verify user
+        };
+      } else {
+        return {
+          authenticatorAttachment: "cross-platform",
+          // Prefer external authenticators like YubiKey
+          requireResidentKey: false,
+          residentKey: "discouraged",
+          userVerification: "discouraged"
+          // YubiKeys work better with discouraged
+        };
+      }
+    };
     const createOptimizedWebAuthnChallenge = (challenge, deviceType) => {
       const safeBufferConvert = (data) => {
         try {
@@ -7735,7 +7757,7 @@ const _sfc_main$b = /* @__PURE__ */ defineComponent({
     const finish = () => {
       emit("success");
     };
-    const __returned__ = { props, emit, mfaLoading, registerHardwareKey, completeHardwareKeyRegistration, currentSession, internalLoading, loading: loading2, step, deviceName, deviceNameError, registrationMessage, errorMessage, backupCodes, closeModal, createOptimizedWebAuthnChallenge, startSetup, handleRegisterHardwareKey, copyBackupCodes, finish, get StrandsUiButton() {
+    const __returned__ = { props, emit, mfaLoading, registerHardwareKey, completeHardwareKeyRegistration, currentSession, internalLoading, loading: loading2, step, deviceName, deviceNameError, registrationMessage, errorMessage, backupCodes, closeModal, getOptimalAuthenticatorSelection, createOptimizedWebAuthnChallenge, startSetup, handleRegisterHardwareKey, copyBackupCodes, finish, get StrandsUiButton() {
       return StrandsUiButton;
     }, get StrandsUiInput() {
       return StrandsUiInput;