@strands.gg/accui 1.3.1 → 1.3.3

package/dist/strands-auth-ui.es.js

@@ -1,7 +1,7 @@
 import { defineComponent, computed, createElementBlock, openBlock, normalizeClass, createElementVNode, createCommentVNode, toDisplayString, renderSlot, createTextVNode, useSlots, ref, createBlock, resolveDynamicComponent, mergeProps, withCtx, onMounted, nextTick, toRefs, watch, Fragment, renderList, normalizeStyle, Teleport, withModifiers, createVNode, createSlots, onBeforeUnmount, withKeys, reactive, Transition, h, createStaticVNode } from "vue";
-import { u as useStrandsConfig, p as provideStrandsConfig } from "./useStrandsConfig-gjVpu8j8.js";
-import { s } from "./useStrandsConfig-gjVpu8j8.js";
-import { u as useStrandsAuth } from "./useStrandsAuth-DCKbUhTa.js";
+import { u as useStrandsConfig, p as provideStrandsConfig } from "./useStrandsConfig-V7XSMyQ5.js";
+import { s } from "./useStrandsConfig-V7XSMyQ5.js";
+import { u as useStrandsAuth } from "./useStrandsAuth-DQbwHB-6.js";
 const _sfc_main$r = /* @__PURE__ */ defineComponent({
   __name: "UiAlert",
   props: {
@@ -369,7 +369,7 @@ const _sfc_main$o = /* @__PURE__ */ defineComponent({
     placeholder: { type: String, required: false },
     disabled: { type: Boolean, required: false },
     required: { type: Boolean, required: false },
-    error: { type: String, required: false },
+    error: { type: Object, required: false },
     helpText: { type: String, required: false },
     autocomplete: { type: String, required: false },
     size: { type: String, required: false, default: "md" }
@@ -538,7 +538,7 @@ function _sfc_render$o(_ctx, _cache, $props, $setup, $data, $options) {
     $props.error ? (openBlock(), createElementBlock(
       "p",
       _hoisted_9$b,
-      toDisplayString($props.error),
+      toDisplayString($props.error.message),
       1
       /* TEXT */
     )) : $props.helpText ? (openBlock(), createElementBlock(
@@ -1247,6 +1247,7 @@ const _sfc_main$i = /* @__PURE__ */ defineComponent({
     const {
       verifyMfa,
       sendMfaEmailCode,
+      getMfaWebAuthnChallenge,
       mfaSessionId: authMfaSessionId,
       loading: authLoading,
       loadingMessage: authLoadingMessage,
@@ -1389,18 +1390,34 @@ const _sfc_main$i = /* @__PURE__ */ defineComponent({
         if (!window.navigator.credentials || !window.PublicKeyCredential) {
           throw new Error("Hardware keys are not supported in this browser");
         }
-        const challenge = new Uint8Array(32);
-        crypto.getRandomValues(challenge);
+        const challengeResponse = await getMfaWebAuthnChallenge(selectedMethod.value.id);
+        const challengeData = challengeResponse.challenge.publicKey || challengeResponse.challenge;
+        const base64ToUint8Array = (base64) => {
+          if (!base64 || typeof base64 !== "string") {
+            return new Uint8Array(0);
+          }
+          const padding = "=".repeat((4 - base64.length % 4) % 4);
+          const b64 = (base64 + padding).replace(/-/g, "+").replace(/_/g, "/");
+          const rawData = window.atob(b64);
+          const outputArray = new Uint8Array(rawData.length);
+          for (let i = 0; i < rawData.length; ++i) {
+            outputArray[i] = rawData.charCodeAt(i);
+          }
+          return outputArray;
+        };
         const isPasskey = selectedMethod.value.device_type === "passkey";
         const publicKeyCredentialRequestOptions = {
-          challenge,
-          timeout: isPasskey ? 3e5 : 6e4,
-          // Longer timeout for passkeys
-          rpId: window.location.hostname,
-          allowCredentials: [],
-          // Empty to allow any registered credential
+          ...challengeData,
+          challenge: challengeData.challenge ? base64ToUint8Array(challengeData.challenge) : new Uint8Array(32),
+          timeout: isPasskey ? 3e5 : challengeData.timeout || 6e4,
           userVerification: isPasskey ? "required" : "discouraged"
         };
+        if (challengeData.allowCredentials && Array.isArray(challengeData.allowCredentials)) {
+          publicKeyCredentialRequestOptions.allowCredentials = challengeData.allowCredentials.map((cred) => ({
+            ...cred,
+            id: base64ToUint8Array(cred.id)
+          }));
+        }
         const credential = await navigator.credentials.get({
           publicKey: publicKeyCredentialRequestOptions
         });
@@ -1441,10 +1458,11 @@ const _sfc_main$i = /* @__PURE__ */ defineComponent({
         await verifyMfa(selectedMethod.value.id, JSON.stringify(credentialData));
         emit("success");
       } catch (error) {
+        console.error("Hardware key authentication error:", error);
         emit("error", error instanceof Error ? error.message : "Hardware key authentication failed");
       }
     };
-    const __returned__ = { props, emit, mfaLoading, getDeviceTypeIcon, getDeviceTypeName, verifyMfa, sendMfaEmailCode, authMfaSessionId, authLoading, authLoadingMessage, isSendingMfaEmail, isVerifyingMfa, loading: loading2, selectedMethod, verificationCode, verificationError, backupCode, backupCodeError, showBackupCodeInput, emailCodeSent, cooldownActive, cooldownSeconds, get cooldownInterval() {
+    const __returned__ = { props, emit, mfaLoading, getDeviceTypeIcon, getDeviceTypeName, verifyMfa, sendMfaEmailCode, getMfaWebAuthnChallenge, authMfaSessionId, authLoading, authLoadingMessage, isSendingMfaEmail, isVerifyingMfa, loading: loading2, selectedMethod, verificationCode, verificationError, backupCode, backupCodeError, showBackupCodeInput, emailCodeSent, cooldownActive, cooldownSeconds, get cooldownInterval() {
       return cooldownInterval;
     }, set cooldownInterval(v) {
       cooldownInterval = v;