npm - @volr/react - Versions diffs - 0.1.130 → 0.1.131 - Mend

@volr/react 0.1.130 → 0.1.131

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/dist/index.js CHANGED Viewed

@@ -9750,10 +9750,41 @@ function useSessionSync({
 }
 // src/config/webauthn.ts
+function isWindows() {
+  if (typeof navigator === "undefined") return false;
+  const platform = navigator.platform || "";
+  return /Win/.test(platform);
+}
+function isLinux() {
+  if (typeof navigator === "undefined") return false;
+  const platform = navigator.platform || "";
+  const ua = navigator.userAgent;
+  return /Linux/.test(platform) && !/CrOS/.test(ua) && !/Android/.test(ua);
+}
+function shouldForceCrossDevice() {
+  return isWindows() || isLinux();
+}
 var AUTHENTICATOR_SELECTION = {
   userVerification: "required",
   residentKey: "required"
 };
+var AUTHENTICATOR_SELECTION_CROSS_DEVICE = {
+  userVerification: "required",
+  residentKey: "required",
+  authenticatorAttachment: "cross-platform"
+};
+function getAuthenticatorSelection() {
+  if (shouldForceCrossDevice()) {
+    return AUTHENTICATOR_SELECTION_CROSS_DEVICE;
+  }
+  return AUTHENTICATOR_SELECTION;
+}
+function getWebAuthnHints() {
+  if (shouldForceCrossDevice()) {
+    return ["hybrid"];
+  }
+  return void 0;
+}
 var CREDENTIAL_MEDIATION = "required";
 var USER_VERIFICATION = "required";
 var WEBAUTHN_TIMEOUT = 6e4;
@@ -9958,10 +9989,11 @@ function createPasskeyAdapter(options = {}) {
           type: "public-key"
         }
       ];
+      const hints = getWebAuthnHints();
       return withWebAuthnLock(async () => {
         let credential = null;
         try {
-          credential = await navigator.credentials.get({
+          const requestOptions = {
             publicKey: {
               challenge: crypto.getRandomValues(new Uint8Array(32)),
               rpId,
@@ -9974,11 +10006,15 @@ function createPasskeyAdapter(options = {}) {
                     first: prfInput.salt.buffer
                   }
                 }
-              }
+              },
+              // Chrome 128+ supports hints to prioritize certain authenticator types
+              // On Windows/Linux, this prioritizes QR code over USB security key prompt
+              ...hints && { hints }
             },
             mediation: CREDENTIAL_MEDIATION
             // Use shared constant
-          });
+          };
+          credential = await navigator.credentials.get(requestOptions);
         } catch (error) {
           console.error("[PasskeyAdapter] WebAuthn get() failed:", error);
           console.error("[PasskeyAdapter] Error name:", error?.name);
@@ -19652,6 +19688,8 @@ async function enrollPasskey(params) {
   };
   const prfSalt = deriveWrapKey(tempPrfInput);
   const displayName = buildDisplayName(userEmail, userEvmAddress, userId);
+  const authenticatorSelection = getAuthenticatorSelection();
+  const hints = getWebAuthnHints();
   const publicKeyCredentialCreationOptions = {
     challenge: challenge2,
     rp: {
@@ -19664,7 +19702,7 @@ async function enrollPasskey(params) {
       displayName
     },
     pubKeyCredParams: PUBKEY_CRED_PARAMS,
-    authenticatorSelection: AUTHENTICATOR_SELECTION,
+    authenticatorSelection,
     timeout: WEBAUTHN_TIMEOUT,
     attestation: ATTESTATION,
     extensions: {
@@ -19673,7 +19711,10 @@ async function enrollPasskey(params) {
           first: prfSalt.buffer
         }
       }
-    }
+    },
+    // Chrome 128+ supports hints to prioritize certain authenticator types
+    // On Windows/Linux, this prioritizes QR code over USB security key prompt
+    ...hints && { hints }
   };
   const credential = await navigator.credentials.create({
     publicKey: publicKeyCredentialCreationOptions
@@ -20867,7 +20908,12 @@ function getPlatformHint(platform) {
     case "Windows":
       return {
         hintKey: "passkey.hint.windows",
-        noteKey: "passkey.hint.note"
+        noteKey: "passkey.hint.windowsNote"
+      };
+    case "Linux":
+      return {
+        hintKey: "passkey.hint.linux",
+        noteKey: "passkey.hint.windowsNote"
       };
     default:
       return {
@@ -21061,6 +21107,8 @@ async function completeMigration(params) {
     credentialId: tempCredentialId
   };
   const prfSalt = deriveWrapKey(tempPrfInput);
+  const authenticatorSelection = getAuthenticatorSelection();
+  const hints = getWebAuthnHints();
   const publicKeyCredentialCreationOptions = {
     challenge: challenge2,
     rp: {
@@ -21073,7 +21121,7 @@ async function completeMigration(params) {
       displayName
     },
     pubKeyCredParams: PUBKEY_CRED_PARAMS,
-    authenticatorSelection: AUTHENTICATOR_SELECTION,
+    authenticatorSelection,
     timeout: WEBAUTHN_TIMEOUT,
     attestation: ATTESTATION,
     extensions: {
@@ -21082,7 +21130,10 @@ async function completeMigration(params) {
           first: prfSalt.buffer
         }
       }
-    }
+    },
+    // Chrome 128+ supports hints to prioritize certain authenticator types
+    // On Windows/Linux, this prioritizes QR code over USB security key prompt
+    ...hints && { hints }
   };
   const credential = await navigator.credentials.create({
     publicKey: publicKeyCredentialCreationOptions