@vonosan/auth 0.2.1

package/dist/__tests__/passkey.test.d.ts

@@ -0,0 +1,11 @@
+/**
+ * ──────────────────────────────────────────────────────────────────
+ * 🏢 Company Name: Bonifade Technologies
+ * 👨‍💻 Developer: Bowofade Oyerinde
+ * 🐙 GitHub: oyenet1
+ * 📅 Created Date: 2026-04-05
+ * 🔄 Updated Date: 2026-04-05
+ * ──────────────────────────────────────────────────────────────────
+ */
+export {};
+//# sourceMappingURL=passkey.test.d.ts.map

package/dist/__tests__/passkey.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"passkey.test.d.ts","sourceRoot":"","sources":["../../src/__tests__/passkey.test.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG"}

package/dist/__tests__/passkey.test.js

@@ -0,0 +1,87 @@
+/**
+ * ──────────────────────────────────────────────────────────────────
+ * 🏢 Company Name: Bonifade Technologies
+ * 👨‍💻 Developer: Bowofade Oyerinde
+ * 🐙 GitHub: oyenet1
+ * 📅 Created Date: 2026-04-05
+ * 🔄 Updated Date: 2026-04-05
+ * ──────────────────────────────────────────────────────────────────
+ */
+import { describe, it, expect } from 'bun:test';
+import { generateChallenge, buildRegistrationOptions, buildAuthenticationOptions, bufferToBase64url, base64urlToBuffer, } from '../lib/passkey.js';
+describe('Passkey helpers', () => {
+    describe('generateChallenge', () => {
+        it('returns a base64url-encoded challenge and expiry', () => {
+            const { challenge, expiresAt } = generateChallenge();
+            expect(typeof challenge).toBe('string');
+            expect(challenge.length).toBeGreaterThan(0);
+            expect(expiresAt).toBeGreaterThan(Date.now());
+        });
+        it('generates unique challenges on each call', () => {
+            const a = generateChallenge();
+            const b = generateChallenge();
+            expect(a.challenge).not.toBe(b.challenge);
+        });
+        it('challenge decodes to 32 bytes', () => {
+            const { challenge } = generateChallenge();
+            const bytes = base64urlToBuffer(challenge);
+            expect(bytes.length).toBe(32);
+        });
+    });
+    describe('buildRegistrationOptions', () => {
+        it('returns correct rp, user, and pubKeyCredParams', () => {
+            const opts = buildRegistrationOptions({
+                rpId: 'example.com',
+                rpName: 'Example App',
+                userId: bufferToBase64url(new Uint8Array([1, 2, 3])),
+                userName: 'alice@example.com',
+                userDisplayName: 'Alice',
+                challenge: generateChallenge().challenge,
+            });
+            expect(opts.rp).toEqual({ id: 'example.com', name: 'Example App' });
+            expect(Array.isArray(opts.pubKeyCredParams)).toBe(true);
+            expect(opts.pubKeyCredParams.length).toBeGreaterThan(0);
+        });
+        it('includes ES256 and RS256 in pubKeyCredParams', () => {
+            const opts = buildRegistrationOptions({
+                rpId: 'example.com',
+                rpName: 'Example',
+                userId: 'dXNlcg',
+                userName: 'user',
+                userDisplayName: 'User',
+                challenge: 'abc123',
+            });
+            const algs = opts.pubKeyCredParams.map((p) => p.alg);
+            expect(algs).toContain(-7); // ES256
+            expect(algs).toContain(-257); // RS256
+        });
+    });
+    describe('buildAuthenticationOptions', () => {
+        it('returns rpId, challenge, and userVerification', () => {
+            const opts = buildAuthenticationOptions({
+                rpId: 'example.com',
+                challenge: generateChallenge().challenge,
+                userVerification: 'preferred',
+            });
+            expect(opts.rpId).toBe('example.com');
+            expect(opts.userVerification).toBe('preferred');
+            expect(typeof opts.challenge).toBe('string');
+        });
+    });
+    describe('base64url encoding round-trip', () => {
+        it('bufferToBase64url → base64urlToBuffer produces original bytes', () => {
+            const original = new Uint8Array([1, 2, 3, 4, 5, 255, 0, 128]);
+            const encoded = bufferToBase64url(original);
+            const decoded = base64urlToBuffer(encoded);
+            expect(decoded).toEqual(original);
+        });
+        it('does not contain +, /, or = characters', () => {
+            const bytes = crypto.getRandomValues(new Uint8Array(64));
+            const encoded = bufferToBase64url(bytes);
+            expect(encoded).not.toContain('+');
+            expect(encoded).not.toContain('/');
+            expect(encoded).not.toContain('=');
+        });
+    });
+});
+//# sourceMappingURL=passkey.test.js.map

package/dist/__tests__/passkey.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"passkey.test.js","sourceRoot":"","sources":["../../src/__tests__/passkey.test.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,MAAM,UAAU,CAAA;AAC/C,OAAO,EACL,iBAAiB,EACjB,wBAAwB,EACxB,0BAA0B,EAC1B,iBAAiB,EACjB,iBAAiB,GAClB,MAAM,mBAAmB,CAAA;AAE1B,QAAQ,CAAC,iBAAiB,EAAE,GAAG,EAAE;IAC/B,QAAQ,CAAC,mBAAmB,EAAE,GAAG,EAAE;QACjC,EAAE,CAAC,kDAAkD,EAAE,GAAG,EAAE;YAC1D,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,GAAG,iBAAiB,EAAE,CAAA;YACpD,MAAM,CAAC,OAAO,SAAS,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAA;YACvC,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAA;YAC3C,MAAM,CAAC,SAAS,CAAC,CAAC,eAAe,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC,CAAA;QAC/C,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,0CAA0C,EAAE,GAAG,EAAE;YAClD,MAAM,CAAC,GAAG,iBAAiB,EAAE,CAAA;YAC7B,MAAM,CAAC,GAAG,iBAAiB,EAAE,CAAA;YAC7B,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC,CAAA;QAC3C,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,+BAA+B,EAAE,GAAG,EAAE;YACvC,MAAM,EAAE,SAAS,EAAE,GAAG,iBAAiB,EAAE,CAAA;YACzC,MAAM,KAAK,GAAG,iBAAiB,CAAC,SAAS,CAAC,CAAA;YAC1C,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAA;QAC/B,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,QAAQ,CAAC,0BAA0B,EAAE,GAAG,EAAE;QACxC,EAAE,CAAC,gDAAgD,EAAE,GAAG,EAAE;YACxD,MAAM,IAAI,GAAG,wBAAwB,CAAC;gBACpC,IAAI,EAAE,aAAa;gBACnB,MAAM,EAAE,aAAa;gBACrB,MAAM,EAAE,iBAAiB,CAAC,IAAI,UAAU,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;gBACpD,QAAQ,EAAE,mBAAmB;gBAC7B,eAAe,EAAE,OAAO;gBACxB,SAAS,EAAE,iBAAiB,EAAE,CAAC,SAAS;aACzC,CAAC,CAAA;YAEF,MAAM,CAAE,IAAgC,CAAC,EAAE,CAAC,CAAC,OAAO,CAAC,EAAE,EAAE,EAAE,aAAa,EAAE,IAAI,EAAE,aAAa,EAAE,CAAC,CAAA;YAChG,MAAM,CAAC,KAAK,CAAC,OAAO,CAAE,IAAgC,CAAC,gBAAgB,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;YACpF,MAAM,CAAG,IAAgC,CAAC,gBAA8B,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAA;QACrG,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,8CAA8C,EAAE,GAAG,EAAE;YACtD,MAAM,IAAI,GAAG,wBAAwB,CAAC;gBACpC,IAAI,EAAE,aAAa;gBACnB,MAAM,EAAE,SAAS;gBACjB,MAAM,EAAE,QAAQ;gBAChB,QAAQ,EAAE,MAAM;gBAChB,eAAe,EAAE,MAAM;gBACvB,SAAS,EAAE,QAAQ;aACpB,CAAiD,CAAA;YAElD,MAAM,IAAI,GAAG,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,GAAG,CAAC,CAAA;YACpD,MAAM,CAAC,IAAI,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAA,CAAG,QAAQ;YACrC,MAAM,CAAC,IAAI,CAAC,CAAC,SAAS,CAAC,CAAC,GAAG,CAAC,CAAA,CAAC,QAAQ;QACvC,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,QAAQ,CAAC,4BAA4B,EAAE,GAAG,EAAE;QAC1C,EAAE,CAAC,+CAA+C,EAAE,GAAG,EAAE;YACvD,MAAM,IAAI,GAAG,0BAA0B,CAAC;gBACtC,IAAI,EAAE,aAAa;gBACnB,SAAS,EAAE,iBAAiB,EAAE,CAAC,SAAS;gBACxC,gBAAgB,EAAE,WAAW;aAC9B,CAA4B,CAAA;YAE7B,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAA;YACrC,MAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAA;YAC/C,MAAM,CAAC,OAAO,IAAI,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAA;QAC9C,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,QAAQ,CAAC,+BAA+B,EAAE,GAAG,EAAE;QAC7C,EAAE,CAAC,+DAA+D,EAAE,GAAG,EAAE;YACvE,MAAM,QAAQ,GAAG,IAAI,UAAU,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,GAAG,EAAE,CAAC,EAAE,GAAG,CAAC,CAAC,CAAA;YAC7D,MAAM,OAAO,GAAG,iBAAiB,CAAC,QAAQ,CAAC,CAAA;YAC3C,MAAM,OAAO,GAAG,iBAAiB,CAAC,OAAO,CAAC,CAAA;YAC1C,MAAM,CAAC,OAAO,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAA;QACnC,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,wCAAwC,EAAE,GAAG,EAAE;YAChD,MAAM,KAAK,GAAG,MAAM,CAAC,eAAe,CAAC,IAAI,UAAU,CAAC,EAAE,CAAC,CAAC,CAAA;YACxD,MAAM,OAAO,GAAG,iBAAiB,CAAC,KAAK,CAAC,CAAA;YACxC,MAAM,CAAC,OAAO,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAA;YAClC,MAAM,CAAC,OAAO,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAA;YAClC,MAAM,CAAC,OAAO,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAA;QACpC,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA"}

package/dist/composables/useAuth.d.ts

@@ -0,0 +1,43 @@
+/**
+ * ──────────────────────────────────────────────────────────────────
+ * 🏢 Company Name: Bonifade Technologies
+ * 👨‍💻 Developer: Bowofade Oyerinde
+ * 🐙 GitHub: oyenet1
+ * 📅 Created Date: 2026-04-05
+ * 🔄 Updated Date: 2026-04-05
+ * ──────────────────────────────────────────────────────────────────
+ */
+interface AuthUser {
+    id: string;
+    email: string;
+    username: string;
+    currentRole: string;
+}
+/**
+ * `useAuth()` — Vue composable for authentication state and actions.
+ *
+ * @example
+ * const { user, isAuthenticated, login, logout } = useAuth()
+ */
+export declare function useAuth(): {
+    user: import("vue").Ref<{
+        id: string;
+        email: string;
+        username: string;
+        currentRole: string;
+    } | null, AuthUser | {
+        id: string;
+        email: string;
+        username: string;
+        currentRole: string;
+    } | null>;
+    isAuthenticated: import("vue").ComputedRef<boolean>;
+    isLoading: import("vue").Ref<boolean, boolean>;
+    error: import("vue").Ref<string | null, string | null>;
+    accessToken: import("vue").Ref<string | null, string | null>;
+    login: (email: string, password: string) => Promise<void>;
+    register: (email: string, password: string, username?: string) => Promise<void>;
+    logout: () => Promise<void>;
+};
+export {};
+//# sourceMappingURL=useAuth.d.ts.map

package/dist/composables/useAuth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"useAuth.d.ts","sourceRoot":"","sources":["../../src/composables/useAuth.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAOH,UAAU,QAAQ;IAChB,EAAE,EAAE,MAAM,CAAA;IACV,KAAK,EAAE,MAAM,CAAA;IACb,QAAQ,EAAE,MAAM,CAAA;IAChB,WAAW,EAAE,MAAM,CAAA;CACpB;AA+BD;;;;;GAKG;AACH,wBAAgB,OAAO;;YAzCjB,MAAM;eACH,MAAM;kBACH,MAAM;qBACH,MAAM;;YAHf,MAAM;eACH,MAAM;kBACH,MAAM;qBACH,MAAM;;;;;;mBAkES,MAAM,YAAY,MAAM,KAAG,OAAO,CAAC,IAAI,CAAC;sBAoBrC,MAAM,YAAY,MAAM,aAAa,MAAM,KAAG,OAAO,CAAC,IAAI,CAAC;kBAmBjE,OAAO,CAAC,IAAI,CAAC;EA8BvC"}

package/dist/composables/useAuth.js

@@ -0,0 +1,133 @@
+/**
+ * ──────────────────────────────────────────────────────────────────
+ * 🏢 Company Name: Bonifade Technologies
+ * 👨‍💻 Developer: Bowofade Oyerinde
+ * 🐙 GitHub: oyenet1
+ * 📅 Created Date: 2026-04-05
+ * 🔄 Updated Date: 2026-04-05
+ * ──────────────────────────────────────────────────────────────────
+ */
+import { ref, computed } from 'vue';
+import { useRouter } from 'vue-router';
+// ─── Shared state (module-level singleton) ────────────────────────────────────
+const user = ref(null);
+const accessToken = ref(null);
+const sessionId = ref(null);
+// Restore from localStorage on module load (client-side only)
+if (typeof window !== 'undefined') {
+    const stored = localStorage.getItem('vono_auth');
+    if (stored) {
+        try {
+            const parsed = JSON.parse(stored);
+            user.value = parsed.user;
+            accessToken.value = parsed.accessToken;
+            sessionId.value = parsed.sessionId;
+        }
+        catch {
+            localStorage.removeItem('vono_auth');
+        }
+    }
+}
+// ─── useAuth composable ───────────────────────────────────────────────────────
+/**
+ * `useAuth()` — Vue composable for authentication state and actions.
+ *
+ * @example
+ * const { user, isAuthenticated, login, logout } = useAuth()
+ */
+export function useAuth() {
+    const router = useRouter();
+    const isLoading = ref(false);
+    const error = ref(null);
+    const isAuthenticated = computed(() => user.value !== null);
+    function _persist(tokens, accountData) {
+        user.value = accountData;
+        accessToken.value = tokens.accessToken;
+        sessionId.value = tokens.sessionId;
+        if (typeof window !== 'undefined') {
+            localStorage.setItem('vono_auth', JSON.stringify({ user: accountData, accessToken: tokens.accessToken, sessionId: tokens.sessionId }));
+        }
+    }
+    function _clear() {
+        user.value = null;
+        accessToken.value = null;
+        sessionId.value = null;
+        if (typeof window !== 'undefined') {
+            localStorage.removeItem('vono_auth');
+        }
+    }
+    async function login(email, password) {
+        isLoading.value = true;
+        error.value = null;
+        try {
+            const res = await fetch('/api/v1/auth/login', {
+                method: 'POST',
+                headers: { 'Content-Type': 'application/json' },
+                body: JSON.stringify({ email, password }),
+            });
+            const body = await res.json();
+            if (!body.success)
+                throw new Error(body.message);
+            _persist(body.data, body.data.user);
+            router.push('/');
+        }
+        catch (err) {
+            error.value = err.message ?? 'Login failed';
+        }
+        finally {
+            isLoading.value = false;
+        }
+    }
+    async function register(email, password, username) {
+        isLoading.value = true;
+        error.value = null;
+        try {
+            const res = await fetch('/api/v1/auth/register', {
+                method: 'POST',
+                headers: { 'Content-Type': 'application/json' },
+                body: JSON.stringify({ email, password, username }),
+            });
+            const body = await res.json();
+            if (!body.success)
+                throw new Error(body.message);
+            router.push('/login');
+        }
+        catch (err) {
+            error.value = err.message ?? 'Registration failed';
+        }
+        finally {
+            isLoading.value = false;
+        }
+    }
+    async function logout() {
+        isLoading.value = true;
+        try {
+            if (sessionId.value) {
+                await fetch('/api/v1/auth/logout', {
+                    method: 'POST',
+                    headers: {
+                        'Content-Type': 'application/json',
+                        ...(accessToken.value ? { Authorization: `Bearer ${accessToken.value}` } : {}),
+                    },
+                    body: JSON.stringify({ sessionId: sessionId.value }),
+                });
+            }
+        }
+        finally {
+            _clear();
+            isLoading.value = false;
+            router.push('/login');
+        }
+    }
+    return {
+        user,
+        isAuthenticated,
+        isLoading,
+        error,
+        accessToken,
+        login,
+        register,
+        logout,
+    };
+}
+//# sourceMappingURL=useAuth.js.map

package/dist/composables/useAuth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"useAuth.js","sourceRoot":"","sources":["../../src/composables/useAuth.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,EAAE,GAAG,EAAE,QAAQ,EAAE,MAAM,KAAK,CAAA;AACnC,OAAO,EAAE,SAAS,EAAE,MAAM,YAAY,CAAA;AAiBtC,iFAAiF;AAEjF,MAAM,IAAI,GAAG,GAAG,CAAkB,IAAI,CAAC,CAAA;AACvC,MAAM,WAAW,GAAG,GAAG,CAAgB,IAAI,CAAC,CAAA;AAC5C,MAAM,SAAS,GAAG,GAAG,CAAgB,IAAI,CAAC,CAAA;AAE1C,8DAA8D;AAC9D,IAAI,OAAO,MAAM,KAAK,WAAW,EAAE,CAAC;IAClC,MAAM,MAAM,GAAG,YAAY,CAAC,OAAO,CAAC,WAAW,CAAC,CAAA;IAChD,IAAI,MAAM,EAAE,CAAC;QACX,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAA+D,CAAA;YAC/F,IAAI,CAAC,KAAK,GAAG,MAAM,CAAC,IAAI,CAAA;YACxB,WAAW,CAAC,KAAK,GAAG,MAAM,CAAC,WAAW,CAAA;YACtC,SAAS,CAAC,KAAK,GAAG,MAAM,CAAC,SAAS,CAAA;QACpC,CAAC;QAAC,MAAM,CAAC;YACP,YAAY,CAAC,UAAU,CAAC,WAAW,CAAC,CAAA;QACtC,CAAC;IACH,CAAC;AACH,CAAC;AAED,iFAAiF;AAEjF;;;;;GAKG;AACH,MAAM,UAAU,OAAO;IACrB,MAAM,MAAM,GAAG,SAAS,EAAE,CAAA;IAC1B,MAAM,SAAS,GAAG,GAAG,CAAC,KAAK,CAAC,CAAA;IAC5B,MAAM,KAAK,GAAG,GAAG,CAAgB,IAAI,CAAC,CAAA;IAEtC,MAAM,eAAe,GAAG,QAAQ,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,KAAK,KAAK,IAAI,CAAC,CAAA;IAE3D,SAAS,QAAQ,CAAC,MAAkB,EAAE,WAAqB;QACzD,IAAI,CAAC,KAAK,GAAG,WAAW,CAAA;QACxB,WAAW,CAAC,KAAK,GAAG,MAAM,CAAC,WAAW,CAAA;QACtC,SAAS,CAAC,KAAK,GAAG,MAAM,CAAC,SAAS,CAAA;QAClC,IAAI,OAAO,MAAM,KAAK,WAAW,EAAE,CAAC;YAClC,YAAY,CAAC,OAAO,CAClB,WAAW,EACX,IAAI,CAAC,SAAS,CAAC,EAAE,IAAI,EAAE,WAAW,EAAE,WAAW,EAAE,MAAM,CAAC,WAAW,EAAE,SAAS,EAAE,MAAM,CAAC,SAAS,EAAE,CAAC,CACpG,CAAA;QACH,CAAC;IACH,CAAC;IAED,SAAS,MAAM;QACb,IAAI,CAAC,KAAK,GAAG,IAAI,CAAA;QACjB,WAAW,CAAC,KAAK,GAAG,IAAI,CAAA;QACxB,SAAS,CAAC,KAAK,GAAG,IAAI,CAAA;QACtB,IAAI,OAAO,MAAM,KAAK,WAAW,EAAE,CAAC;YAClC,YAAY,CAAC,UAAU,CAAC,WAAW,CAAC,CAAA;QACtC,CAAC;IACH,CAAC;IAED,KAAK,UAAU,KAAK,CAAC,KAAa,EAAE,QAAgB;QAClD,SAAS,CAAC,KAAK,GAAG,IAAI,CAAA;QACtB,KAAK,CAAC,KAAK,GAAG,IAAI,CAAA;QAClB,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,oBAAoB,EAAE;gBAC5C,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;gBAC/C,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC;aAC1C,CAAC,CAAA;YACF,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAkF,CAAA;YAC7G,IAAI,CAAC,IAAI,CAAC,OAAO;gBAAE,MAAM,IAAI,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,CAAA;YAChD,QAAQ,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;YACnC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAA;QAClB,CAAC;QAAC,OAAO,GAAY,EAAE,CAAC;YACtB,KAAK,CAAC,KAAK,GAAI,GAAa,CAAC,OAAO,IAAI,cAAc,CAAA;QACxD,CAAC;gBAAS,CAAC;YACT,SAAS,CAAC,KAAK,GAAG,KAAK,CAAA;QACzB,CAAC;IACH,CAAC;IAED,KAAK,UAAU,QAAQ,CAAC,KAAa,EAAE,QAAgB,EAAE,QAAiB;QACxE,SAAS,CAAC,KAAK,GAAG,IAAI,CAAA;QACtB,KAAK,CAAC,KAAK,GAAG,IAAI,CAAA;QAClB,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,uBAAuB,EAAE;gBAC/C,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;gBAC/C,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,QAAQ,EAAE,QAAQ,EAAE,CAAC;aACpD,CAAC,CAAA;YACF,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAA2C,CAAA;YACtE,IAAI,CAAC,IAAI,CAAC,OAAO;gBAAE,MAAM,IAAI,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,CAAA;YAChD,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAA;QACvB,CAAC;QAAC,OAAO,GAAY,EAAE,CAAC;YACtB,KAAK,CAAC,KAAK,GAAI,GAAa,CAAC,OAAO,IAAI,qBAAqB,CAAA;QAC/D,CAAC;gBAAS,CAAC;YACT,SAAS,CAAC,KAAK,GAAG,KAAK,CAAA;QACzB,CAAC;IACH,CAAC;IAED,KAAK,UAAU,MAAM;QACnB,SAAS,CAAC,KAAK,GAAG,IAAI,CAAA;QACtB,IAAI,CAAC;YACH,IAAI,SAAS,CAAC,KAAK,EAAE,CAAC;gBACpB,MAAM,KAAK,CAAC,qBAAqB,EAAE;oBACjC,MAAM,EAAE,MAAM;oBACd,OAAO,EAAE;wBACP,cAAc,EAAE,kBAAkB;wBAClC,GAAG,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,aAAa,EAAE,UAAU,WAAW,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;qBAC/E;oBACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,SAAS,EAAE,SAAS,CAAC,KAAK,EAAE,CAAC;iBACrD,CAAC,CAAA;YACJ,CAAC;QACH,CAAC;gBAAS,CAAC;YACT,MAAM,EAAE,CAAA;YACR,SAAS,CAAC,KAAK,GAAG,KAAK,CAAA;YACvB,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAA;QACvB,CAAC;IACH,CAAC;IAED,OAAO;QACL,IAAI;QACJ,eAAe;QACf,SAAS;QACT,KAAK;QACL,WAAW;QACX,KAAK;QACL,QAAQ;QACR,MAAM;KACP,CAAA;AACH,CAAC"}

package/dist/composables/usePasskey.d.ts

@@ -0,0 +1,72 @@
+/**
+ * ──────────────────────────────────────────────────────────────────
+ * 🏢 Company Name: Bonifade Technologies
+ * 👨‍💻 Developer: Bowofade Oyerinde
+ * 🐙 GitHub: oyenet1
+ * 📅 Created Date: 2026-04-05
+ * 🔄 Updated Date: 2026-04-05
+ * ──────────────────────────────────────────────────────────────────
+ */
+export interface PasskeyCredentialInfo {
+    id: string;
+    credential_id: string;
+    name: string | null;
+    device_type: string;
+    backed_up: boolean;
+    last_used_at: string | null;
+    created_at: string;
+}
+/**
+ * usePasskey — Vue composable for WebAuthn/Passkey authentication.
+ *
+ * Handles the full registration and authentication ceremony:
+ * 1. Fetches challenge from the server
+ * 2. Calls the browser's WebAuthn API
+ * 3. Sends the response back to the server
+ *
+ * Usage:
+ * ```ts
+ * const { registerPasskey, loginWithPasskey, credentials, loading, error } = usePasskey()
+ *
+ * // Register a new passkey (user must be logged in)
+ * await registerPasskey('My iPhone')
+ *
+ * // Login with a passkey (no username needed)
+ * const tokens = await loginWithPasskey()
+ * ```
+ */
+export declare function usePasskey(): {
+    loading: import("vue").Ref<boolean, boolean>;
+    error: import("vue").Ref<string | null, string | null>;
+    credentials: import("vue").Ref<{
+        id: string;
+        credential_id: string;
+        name: string | null;
+        device_type: string;
+        backed_up: boolean;
+        last_used_at: string | null;
+        created_at: string;
+    }[], PasskeyCredentialInfo[] | {
+        id: string;
+        credential_id: string;
+        name: string | null;
+        device_type: string;
+        backed_up: boolean;
+        last_used_at: string | null;
+        created_at: string;
+    }[]>;
+    registerPasskey: (name?: string) => Promise<{
+        credentialId: string;
+    } | null>;
+    loginWithPasskey: (accountId?: string) => Promise<{
+        accessToken: string;
+        refreshToken: string;
+    } | null>;
+    fetchCredentials: () => Promise<void>;
+    renameCredential: (credentialId: string, name: string) => Promise<boolean>;
+    deleteCredential: (credentialId: string) => Promise<boolean>;
+    isSupported: typeof isWebAuthnSupported;
+};
+declare function isWebAuthnSupported(): boolean;
+export {};
+//# sourceMappingURL=usePasskey.d.ts.map

package/dist/composables/usePasskey.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"usePasskey.d.ts","sourceRoot":"","sources":["../../src/composables/usePasskey.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAIH,MAAM,WAAW,qBAAqB;IACpC,EAAE,EAAE,MAAM,CAAA;IACV,aAAa,EAAE,MAAM,CAAA;IACrB,IAAI,EAAE,MAAM,GAAG,IAAI,CAAA;IACnB,WAAW,EAAE,MAAM,CAAA;IACnB,SAAS,EAAE,OAAO,CAAA;IAClB,YAAY,EAAE,MAAM,GAAG,IAAI,CAAA;IAC3B,UAAU,EAAE,MAAM,CAAA;CACnB;AAED;;;;;;;;;;;;;;;;;;GAkBG;AACH,wBAAgB,UAAU;;;;YA5BpB,MAAM;uBACK,MAAM;cACf,MAAM,GAAG,IAAI;qBACN,MAAM;mBACR,OAAO;sBACJ,MAAM,GAAG,IAAI;oBACf,MAAM;;YANd,MAAM;uBACK,MAAM;cACf,MAAM,GAAG,IAAI;qBACN,MAAM;mBACR,OAAO;sBACJ,MAAM,GAAG,IAAI;oBACf,MAAM;;6BAiCoB,MAAM,KAAG,OAAO,CAAC;QAAE,YAAY,EAAE,MAAM,CAAA;KAAE,GAAG,IAAI,CAAC;mCAyE3C,MAAM,KAAG,OAAO,CAAC;QAC3D,WAAW,EAAE,MAAM,CAAA;QACnB,YAAY,EAAE,MAAM,CAAA;KACrB,GAAG,IAAI,CAAC;4BA2D0B,OAAO,CAAC,IAAI,CAAC;qCAcF,MAAM,QAAQ,MAAM,KAAG,OAAO,CAAC,OAAO,CAAC;qCAiBvC,MAAM,KAAG,OAAO,CAAC,OAAO,CAAC;;EAwBxE;AAID,iBAAS,mBAAmB,IAAI,OAAO,CAMtC"}

package/dist/composables/usePasskey.js

@@ -0,0 +1,289 @@
+/**
+ * ──────────────────────────────────────────────────────────────────
+ * 🏢 Company Name: Bonifade Technologies
+ * 👨‍💻 Developer: Bowofade Oyerinde
+ * 🐙 GitHub: oyenet1
+ * 📅 Created Date: 2026-04-05
+ * 🔄 Updated Date: 2026-04-05
+ * ──────────────────────────────────────────────────────────────────
+ */
+import { ref } from 'vue';
+/**
+ * usePasskey — Vue composable for WebAuthn/Passkey authentication.
+ *
+ * Handles the full registration and authentication ceremony:
+ * 1. Fetches challenge from the server
+ * 2. Calls the browser's WebAuthn API
+ * 3. Sends the response back to the server
+ *
+ * Usage:
+ * ```ts
+ * const { registerPasskey, loginWithPasskey, credentials, loading, error } = usePasskey()
+ *
+ * // Register a new passkey (user must be logged in)
+ * await registerPasskey('My iPhone')
+ *
+ * // Login with a passkey (no username needed)
+ * const tokens = await loginWithPasskey()
+ * ```
+ */
+export function usePasskey() {
+    const loading = ref(false);
+    const error = ref(null);
+    const credentials = ref([]);
+    // ── Registration ──────────────────────────────────────────────────
+    /**
+     * Register a new passkey for the currently authenticated user.
+     * Requires the user to be logged in (JWT in Authorization header).
+     */
+    async function registerPasskey(name) {
+        if (!isWebAuthnSupported()) {
+            error.value = 'Passkeys are not supported in this browser';
+            return null;
+        }
+        loading.value = true;
+        error.value = null;
+        try {
+            // 1. Get challenge from server
+            const beginRes = await fetch('/api/v1/auth/passkey/register/begin', {
+                method: 'POST',
+                headers: {
+                    'Content-Type': 'application/json',
+                    Authorization: `Bearer ${getStoredToken()}`,
+                },
+            });
+            if (!beginRes.ok) {
+                throw new Error('Failed to begin passkey registration');
+            }
+            const { data: options } = await beginRes.json();
+            // 2. Call browser WebAuthn API
+            const credential = await navigator.credentials.create({
+                publicKey: deserializeCreationOptions(options),
+            });
+            if (!credential) {
+                throw new Error('Passkey creation was cancelled');
+            }
+            // 3. Send response to server
+            const finishRes = await fetch('/api/v1/auth/passkey/register/finish', {
+                method: 'POST',
+                headers: {
+                    'Content-Type': 'application/json',
+                    Authorization: `Bearer ${getStoredToken()}`,
+                },
+                body: JSON.stringify({
+                    response: serializeCredential(credential),
+                    name,
+                }),
+            });
+            if (!finishRes.ok) {
+                const body = await finishRes.json();
+                throw new Error(body.message || 'Failed to finish passkey registration');
+            }
+            const { data } = await finishRes.json();
+            // Refresh credentials list
+            await fetchCredentials();
+            return data;
+        }
+        catch (err) {
+            error.value = err instanceof Error ? err.message : 'Passkey registration failed';
+            return null;
+        }
+        finally {
+            loading.value = false;
+        }
+    }
+    // ── Authentication ────────────────────────────────────────────────
+    /**
+     * Authenticate with a passkey.
+     * Supports both usernameless (discoverable credential) and
+     * username-first flows.
+     */
+    async function loginWithPasskey(accountId) {
+        if (!isWebAuthnSupported()) {
+            error.value = 'Passkeys are not supported in this browser';
+            return null;
+        }
+        loading.value = true;
+        error.value = null;
+        try {
+            // 1. Get challenge from server
+            const beginRes = await fetch('/api/v1/auth/passkey/auth/begin', {
+                method: 'POST',
+                headers: { 'Content-Type': 'application/json' },
+                body: JSON.stringify({ accountId }),
+            });
+            if (!beginRes.ok) {
+                throw new Error('Failed to begin passkey authentication');
+            }
+            const { data: options } = await beginRes.json();
+            // 2. Call browser WebAuthn API
+            const assertion = await navigator.credentials.get({
+                publicKey: deserializeRequestOptions(options),
+            });
+            if (!assertion) {
+                throw new Error('Passkey authentication was cancelled');
+            }
+            // 3. Send response to server
+            const finishRes = await fetch('/api/v1/auth/passkey/auth/finish', {
+                method: 'POST',
+                headers: { 'Content-Type': 'application/json' },
+                body: JSON.stringify({ response: serializeAssertion(assertion) }),
+            });
+            if (!finishRes.ok) {
+                const body = await finishRes.json();
+                throw new Error(body.message || 'Passkey authentication failed');
+            }
+            const { data } = await finishRes.json();
+            return data;
+        }
+        catch (err) {
+            error.value = err instanceof Error ? err.message : 'Passkey authentication failed';
+            return null;
+        }
+        finally {
+            loading.value = false;
+        }
+    }
+    // ── Credential management ─────────────────────────────────────────
+    async function fetchCredentials() {
+        try {
+            const res = await fetch('/api/v1/auth/passkey/credentials', {
+                headers: { Authorization: `Bearer ${getStoredToken()}` },
+            });
+            if (res.ok) {
+                const { data } = await res.json();
+                credentials.value = data;
+            }
+        }
+        catch {
+            // silently fail
+        }
+    }
+    async function renameCredential(credentialId, name) {
+        try {
+            const res = await fetch(`/api/v1/auth/passkey/credentials/${credentialId}`, {
+                method: 'PATCH',
+                headers: {
+                    'Content-Type': 'application/json',
+                    Authorization: `Bearer ${getStoredToken()}`,
+                },
+                body: JSON.stringify({ name }),
+            });
+            if (res.ok)
+                await fetchCredentials();
+            return res.ok;
+        }
+        catch {
+            return false;
+        }
+    }
+    async function deleteCredential(credentialId) {
+        try {
+            const res = await fetch(`/api/v1/auth/passkey/credentials/${credentialId}`, {
+                method: 'DELETE',
+                headers: { Authorization: `Bearer ${getStoredToken()}` },
+            });
+            if (res.ok)
+                await fetchCredentials();
+            return res.ok;
+        }
+        catch {
+            return false;
+        }
+    }
+    return {
+        loading,
+        error,
+        credentials,
+        registerPasskey,
+        loginWithPasskey,
+        fetchCredentials,
+        renameCredential,
+        deleteCredential,
+        isSupported: isWebAuthnSupported,
+    };
+}
+// ─── Helpers ─────────────────────────────────────────────────────────────────
+function isWebAuthnSupported() {
+    return (typeof window !== 'undefined' &&
+        typeof window.PublicKeyCredential !== 'undefined' &&
+        typeof navigator.credentials !== 'undefined');
+}
+function getStoredToken() {
+    if (typeof localStorage === 'undefined')
+        return '';
+    return localStorage.getItem('access_token') ?? '';
+}
+/** Convert base64url strings from server to ArrayBuffers for the browser API */
+function deserializeCreationOptions(options) {
+    return {
+        ...options,
+        challenge: base64urlToBuffer(options.challenge),
+        user: {
+            ...options.user,
+            id: base64urlToBuffer(options.user.id),
+        },
+        excludeCredentials: (options.excludeCredentials ?? []).map((c) => ({
+            ...c,
+            id: base64urlToBuffer(c.id),
+        })),
+    };
+}
+function deserializeRequestOptions(options) {
+    return {
+        ...options,
+        challenge: base64urlToBuffer(options.challenge),
+        allowCredentials: (options.allowCredentials ?? []).map((c) => ({
+            ...c,
+            id: base64urlToBuffer(c.id),
+        })),
+    };
+}
+/** Serialize a PublicKeyCredential (registration) for sending to the server */
+function serializeCredential(credential) {
+    const response = credential.response;
+    return {
+        id: credential.id,
+        rawId: bufferToBase64url(new Uint8Array(credential.rawId)),
+        type: credential.type,
+        response: {
+            clientDataJSON: bufferToBase64url(new Uint8Array(response.clientDataJSON)),
+            attestationObject: bufferToBase64url(new Uint8Array(response.attestationObject)),
+        },
+    };
+}
+/** Serialize a PublicKeyCredential (authentication) for sending to the server */
+function serializeAssertion(credential) {
+    const response = credential.response;
+    return {
+        id: credential.id,
+        rawId: bufferToBase64url(new Uint8Array(credential.rawId)),
+        type: credential.type,
+        response: {
+            clientDataJSON: bufferToBase64url(new Uint8Array(response.clientDataJSON)),
+            authenticatorData: bufferToBase64url(new Uint8Array(response.authenticatorData)),
+            signature: bufferToBase64url(new Uint8Array(response.signature)),
+            userHandle: response.userHandle
+                ? bufferToBase64url(new Uint8Array(response.userHandle))
+                : undefined,
+        },
+    };
+}
+function bufferToBase64url(buffer) {
+    let binary = '';
+    for (let i = 0; i < buffer.length; i++)
+        binary += String.fromCharCode(buffer[i]);
+    return btoa(binary).replace(/\+/g, '-').replace(/\//g, '_').replace(/=/g, '');
+}
+function base64urlToBuffer(base64url) {
+    const base64 = base64url
+        .replace(/-/g, '+')
+        .replace(/_/g, '/')
+        .padEnd(base64url.length + ((4 - (base64url.length % 4)) % 4), '=');
+    const binary = atob(base64);
+    const bytes = new Uint8Array(binary.length);
+    for (let i = 0; i < binary.length; i++)
+        bytes[i] = binary.charCodeAt(i);
+    return bytes.buffer;
+}
+//# sourceMappingURL=usePasskey.js.map