@things-factory/auth-base 7.0.1-rc.9 → 7.0.6

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@things-factory/auth-base",
-  "version": "7.0.1-rc.9",
+  "version": "7.0.6",
   "main": "dist-server/index.js",
   "browser": "dist-client/index.js",
   "things-factory": true,
@@ -32,10 +32,10 @@
   "dependencies": {
     "@simplewebauthn/browser": "^10.0.0",
     "@simplewebauthn/server": "^10.0.0",
-    "@things-factory/email-base": "^7.0.1-rc.8",
-    "@things-factory/env": "^7.0.1-rc.8",
-    "@things-factory/shell": "^7.0.1-rc.8",
-    "@things-factory/utils": "^7.0.1-rc.7",
+    "@things-factory/email-base": "^7.0.6",
+    "@things-factory/env": "^7.0.0",
+    "@things-factory/shell": "^7.0.6",
+    "@things-factory/utils": "^7.0.0",
     "@types/webappsec-credential-management": "^0.6.8",
     "jsonwebtoken": "^9.0.0",
     "koa-passport": "^6.0.0",
@@ -46,5 +46,5 @@
     "passport-jwt": "^4.0.0",
     "passport-local": "^1.0.0"
   },
-  "gitHead": "70c4b8737f2ccb632699f31a92173401624ee9f7"
+  "gitHead": "9fbd670e3b446fe51c264d7f43c61daf3b75d5cc"
 }

package/server/middlewares/webauthn-middleware.ts

@@ -53,48 +53,52 @@ passport.use(
 passport.use(
   'webauthn-login',
   new CustomStrategy(async (context, done) => {
-    const { body, session, origin, hostname } = context as any
-
-    const challenge = session.challenge
-
-    const assertionResponse = body as {
-      id: string
-      response: AuthenticatorAssertionResponse
-    }
-
-    const credential = await getRepository(WebAuthCredential).findOne({
-      where: {
-        credentialId: assertionResponse.id
-      },
-      relations: ['user']
-    })
-
-    if (!credential) {
-      return done(null, false)
-    }
-
-    const verification = await verifyAuthenticationResponse({
-      response: body,
-      expectedChallenge: challenge,
-      expectedOrigin: origin,
-      expectedRPID: hostname,
-      requireUserVerification: false,
-      authenticator: {
-        credentialID: credential.credentialId,
-        credentialPublicKey: new Uint8Array(Buffer.from(credential.publicKey, 'base64')),
-        counter: credential.counter
+    try {
+      const { body, session, origin, hostname } = context as any
+
+      const challenge = session.challenge
+  
+      const assertionResponse = body as {
+        id: string
+        response: AuthenticatorAssertionResponse
       }
-    })
-
-    if (verification.verified) {
-      const { authenticationInfo } = verification
-      credential.counter = authenticationInfo.newCounter
-      await getRepository(WebAuthCredential).save(credential)
-
-      const user = credential.user
-      return done(null, user)
-    } else {
-      return done(verification, false)
+  
+      const credential = await getRepository(WebAuthCredential).findOne({
+        where: {
+          credentialId: assertionResponse.id
+        },
+        relations: ['user']
+      })
+  
+      if (!credential) {
+        return done(null, false)
+      }
+  
+      const verification = await verifyAuthenticationResponse({
+        response: body,
+        expectedChallenge: challenge,
+        expectedOrigin: origin,
+        expectedRPID: hostname,
+        requireUserVerification: false,
+        authenticator: {
+          credentialID: credential.credentialId,
+          credentialPublicKey: new Uint8Array(Buffer.from(credential.publicKey, 'base64')),
+          counter: credential.counter
+        }
+      })
+  
+      if (verification.verified) {
+        const { authenticationInfo } = verification
+        credential.counter = authenticationInfo.newCounter
+        await getRepository(WebAuthCredential).save(credential)
+  
+        const user = credential.user
+        return done(null, user)
+      } else {
+        return done(verification, false)
+      }
+    } catch(error) {
+      return done(error, false)
     }
   })
 )