electron-webauthn 0.0.10 → 0.0.12

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 iamEvan
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -1,15 +1,256 @@
-# electron-webauthn-test
+# electron-webauthn
 
-To install dependencies:
+Add native WebAuthn/FIDO2 support to Electron using macOS AuthenticationServices framework.
+
+## Overview
+
+`electron-webauthn` is a TypeScript library that bridges Electron with the native macOS AuthenticationServices framework, enabling WebAuthn/FIDO2 authentication directly through native platform authenticators (Touch ID, Face ID, hardware security keys, etc.).
+
+This package provides JavaScript bindings to Apple's AuthenticationServices framework, allowing you to perform WebAuthn assertions (authentication/signing with existing credentials) in your Electron applications.
+
+## Features
+
+- 🔐 Native WebAuthn support for Electron on macOS
+- 🎯 Support for platform authenticators (Touch ID, Face ID)
+- 🔑 Support for cross-platform authenticators (external security keys)
+- 📦 TypeScript first with complete type definitions
+- 🎨 Seamless integration with Electron's native window system
+
+## Installation
 
 ```bash
-bun install
+npm install electron-webauthn
+# or
+bun add electron-webauthn
+# or
+yarn add electron-webauthn
 ```
 
-To run:
+### Requirements
+
+- Electron 28+
+- macOS 12.0+
+- TypeScript 5+ (peer dependency)
+
+## Quick Start
+
+```typescript
+import { getCredential } from "electron-webauthn";
+import { getPointer } from "objc-js";
+
+// In your Electron main process or preload script
+async function authenticate() {
+  // Get the native window handle from your BrowserWindow
+  const nativeWindowHandle = getPointer(
+    yourElectronWindow.getNativeWindowHandle()
+  );
+
+  // Call getCredential to prompt the user for authentication
+  const result = await getCredential(
+    "example.com", // Relying Party ID
+    Buffer.from("your-challenge"), // Challenge from server
+    nativeWindowHandle, // Native window for UI presentation
+    [] // Optional: allowed credential IDs
+  );
+
+  console.log(result);
+  // Result contains:
+  // - id: Credential ID (Buffer)
+  // - authenticatorAttachment: 'platform' | 'cross-platform'
+  // - clientDataJSON: Raw client data (Buffer)
+  // - authenticatorData: Authenticator data (Buffer)
+  // - signature: Assertion signature (Buffer)
+  // - userHandle: User handle (Buffer)
+}
+```
+
+## API Reference
+
+### `getCredential(rpid, challenge, nativeWindowHandle, allowedCredentialIds)`
+
+Performs a WebAuthn assertion (authentication) using available platform and cross-platform authenticators.
+
+#### Parameters
+
+- **`rpid: string`** - The Relying Party ID (typically your domain)
+- **`challenge: Buffer`** - The challenge from your server (32+ bytes recommended)
+- **`nativeWindowHandle: Buffer`** - The native window handle from Electron
+- **`allowedCredentialIds: Buffer[]`** - Optional array of credential IDs the user can use (empty = all registered credentials)
+
+#### Returns
+
+`Promise<GetCredentialResult>` - Resolves with the assertion result
+
+#### Result Type
+
+```typescript
+interface GetCredentialResult {
+  id: Buffer; // Credential ID
+  authenticatorAttachment: "platform" | "cross-platform"; // Type of authenticator used
+  clientDataJSON: Buffer; // Raw client data JSON (encoded as UTF-8 bytes)
+  authenticatorData: Buffer; // Authenticator data from the device
+  signature: Buffer; // Digital signature from the authenticator
+  userHandle: Buffer; // User handle from the credential
+}
+```
+
+## Architecture
+
+### Package Structure
+
+```
+src/
+├── index.ts                           # Main export - getCredential function
+├── helpers.ts                         # Utility functions
+├── objc/
+│   ├── authentication-services/       # AuthenticationServices framework bindings
+│   │   ├── as-authorization-*.ts      # Authorization request/response objects
+│   │   ├── enums/                     # Enumeration values
+│   │   └── index.ts                   # Exports
+│   └── foundation/                    # Foundation framework bindings
+│       ├── nsdata.ts                  # NSData (binary data) bindings
+│       ├── nsstring.ts                # NSString bindings
+│       ├── nsarray.ts                 # NSArray bindings
+│       ├── nserror.ts                 # NSError bindings
+│       ├── nsview.ts                  # NSView bindings
+│       ├── nswindow.ts                # NSWindow bindings
+│       └── index.ts                   # Exports
+└── test/                              # Test utilities
+    ├── index.ts                       # Test script
+    ├── window.ts                      # Test window helpers
+    └── example.ts                     # Example usage
+```
+
+### Dependencies
+
+- **objc-js** - Native Objective-C bindings for JavaScript
+- **TypeScript** - For type checking and compilation
+
+## How It Works
+
+1. **Request Creation**: The library creates a `ASAuthorizationPlatformPublicKeyCredentialProvider` with your RP ID
+2. **Request Configuration**: Sets up the challenge and optional allowed credentials list
+3. **Controller Setup**: Creates an `ASAuthorizationController` to manage the authentication flow
+4. **Delegation**: Registers delegates to handle success/error responses from the system
+5. **Presentation**: Shows the native authentication UI in your window
+6. **Result Processing**: Converts Objective-C objects to JavaScript Buffers and returns the assertion data
+
+## Usage Examples
+
+### Basic Authentication
+
+```typescript
+import { getCredential } from "electron-webauthn";
+import { getPointer } from "objc-js";
+import { app, BrowserWindow } from "electron";
+
+let mainWindow: BrowserWindow;
+
+app.on("ready", () => {
+  mainWindow = new BrowserWindow({
+    webPreferences: { preload: "./preload.js" },
+  });
+});
+
+// In your preload script or main process
+export async function authenticateUser(challenge: Buffer) {
+  const nativeHandle = getPointer(mainWindow.getNativeWindowHandle());
+  return getCredential("myapp.com", challenge, nativeHandle, []);
+}
+```
+
+### Restricting to Specific Credentials
+
+```typescript
+// Only allow specific registered credentials
+const result = await getCredential(
+  "myapp.com",
+  challenge,
+  nativeWindowHandle,
+  [credentialId1, credentialId2] // User can only use these credentials
+);
+```
+
+### Server-Side Verification
+
+After getting the assertion result, verify it on your server:
+
+```typescript
+// Server-side (Node.js, Python, etc.)
+// 1. Verify the signature using the public key from the credential registration
+// 2. Check that the challenge matches what you sent
+// 3. Verify the authenticator data flags
+// 4. Check the user handle matches the authenticated user
+```
+
+## Error Handling
+
+The `getCredential` promise will reject if:
+
+- The user cancels the authentication prompt
+- No valid credentials are available
+- The authenticator fails
+- The native window is invalid
+
+```typescript
+try {
+  const result = await getCredential(
+    "example.com",
+    challenge,
+    nativeWindowHandle,
+    []
+  );
+} catch (error) {
+  console.error("Authentication failed:", error.message);
+  // Handle error appropriately
+}
+```
+
+## Platform Support
+
+| Platform  | Support          |
+| --------- | ---------------- |
+| macOS 12+ | ✅ Full support  |
+| Windows   | ❌ Not supported |
+| Linux     | ❌ Not supported |
+| iOS       | ❌ Not supported |
+
+## WebAuthn Spec Compliance
+
+This library implements the WebAuthn Level 2 specification for the assertion (authentication) operation:
+
+- ✅ Public Key Credential (assertions)
+- ✅ Platform authenticators (built-in)
+- ✅ Cross-platform authenticators (external)
+- ❌ Credential registration (create)
+- ℹ️ See [WebAuthn Specification](https://www.w3.org/TR/webauthn-2/)
+
+## Development
+
+### Building
 
 ```bash
-bun run index.ts
+bun run build
 ```
 
-This project was created using `bun init` in bun v1.3.5. [Bun](https://bun.com) is a fast all-in-one JavaScript runtime.
+This compiles TypeScript to JavaScript in the `dist/` directory.
+
+## Contributing
+
+Contributions are welcome! Please ensure:
+
+1. Code is properly typed with TypeScript
+2. New features include appropriate documentation
+3. Tests pass with `bun run test`
+4. Code builds successfully with `bun run build`
+
+## License
+
+See [LICENSE](./LICENSE) file for details.
+
+## Related Resources
+
+- [WebAuthn Specification](https://www.w3.org/TR/webauthn-2/)
+- [Apple AuthenticationServices Documentation](https://developer.apple.com/documentation/authenticationservices)
+- [Electron Documentation](https://www.electronjs.org/docs)
+- [objc-js Library](https://github.com/iamEvanYT/objc-js)

package/dist/get-authorization-controller.d.ts

@@ -0,0 +1,5 @@
+import { NobjcObject } from "objc-js";
+export declare function setClientDataHash(self: NobjcObject, clientDataHash: Buffer): void;
+export declare function removeClientDataHash(self: NobjcObject): void;
+export declare const WebauthnGetController: NobjcObject;
+//# sourceMappingURL=get-authorization-controller.d.ts.map

package/dist/get-authorization-controller.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"get-authorization-controller.d.ts","sourceRoot":"","sources":["../src/get-authorization-controller.ts"],"names":[],"mappings":"AAAA,OAAO,EAAc,WAAW,EAAc,MAAM,SAAS,CAAC;AAS9D,wBAAgB,iBAAiB,CAAC,IAAI,EAAE,WAAW,EAAE,cAAc,EAAE,MAAM,QAG1E;AAED,wBAAgB,oBAAoB,CAAC,IAAI,EAAE,WAAW,QAGrD;AAED,eAAO,MAAM,qBAAqB,aAiChC,CAAC"}

package/dist/get-authorization-controller.js

@@ -0,0 +1,37 @@
+import { NobjcClass, NobjcObject, getPointer } from "objc-js";
+import { NSDataFromBuffer } from "./objc/foundation/nsdata.js";
+const getControllerState = new Map();
+function getObjectPointerString(self) {
+    return getPointer(self).toBase64();
+}
+export function setClientDataHash(self, clientDataHash) {
+    const selfPointer = getObjectPointerString(self);
+    getControllerState.set(selfPointer, clientDataHash);
+}
+export function removeClientDataHash(self) {
+    const selfPointer = getObjectPointerString(self);
+    getControllerState.delete(selfPointer);
+}
+export const WebauthnGetController = NobjcClass.define({
+    name: "WebauthnGetController",
+    superclass: "ASAuthorizationController",
+    methods: {
+        // This overrides the default implementation of _requestContextWithRequests$error$ to allow us to set the clientDataHash on the assertion options
+        _requestContextWithRequests$error$: {
+            types: "@@:@^@",
+            implementation: (self, requests, outError) => {
+                const context = NobjcClass.super(self, "_requestContextWithRequests$error$", requests, outError);
+                // Grab the assertion options, set the client data hash, and set a copy of the assertion options back on the context
+                const selfPointer = getObjectPointerString(self);
+                if (getControllerState.has(selfPointer)) {
+                    const assertionOptions = context.platformKeyCredentialAssertionOptions();
+                    const clientDataHash = getControllerState.get(selfPointer);
+                    assertionOptions.setClientDataHash$(NSDataFromBuffer(clientDataHash));
+                    context.setPlatformKeyCredentialAssertionOptions$(assertionOptions.copyWithZone$(null));
+                }
+                return context;
+            },
+        },
+    },
+});
+//# sourceMappingURL=get-authorization-controller.js.map

package/dist/get-authorization-controller.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"get-authorization-controller.js","sourceRoot":"","sources":["../src/get-authorization-controller.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AAC9D,OAAO,EAAE,gBAAgB,EAAgB,MAAM,6BAA6B,CAAC;AAE7E,MAAM,kBAAkB,GAAG,IAAI,GAAG,EAAkB,CAAC;AAErD,SAAS,sBAAsB,CAAC,IAAiB;IAC/C,OAAO,UAAU,CAAC,IAAI,CAAC,CAAC,QAAQ,EAAE,CAAC;AACrC,CAAC;AAED,MAAM,UAAU,iBAAiB,CAAC,IAAiB,EAAE,cAAsB;IACzE,MAAM,WAAW,GAAG,sBAAsB,CAAC,IAAI,CAAC,CAAC;IACjD,kBAAkB,CAAC,GAAG,CAAC,WAAW,EAAE,cAAc,CAAC,CAAC;AACtD,CAAC;AAED,MAAM,UAAU,oBAAoB,CAAC,IAAiB;IACpD,MAAM,WAAW,GAAG,sBAAsB,CAAC,IAAI,CAAC,CAAC;IACjD,kBAAkB,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;AACzC,CAAC;AAED,MAAM,CAAC,MAAM,qBAAqB,GAAG,UAAU,CAAC,MAAM,CAAC;IACrD,IAAI,EAAE,uBAAuB;IAC7B,UAAU,EAAE,2BAA2B;IACvC,OAAO,EAAE;QACP,iJAAiJ;QACjJ,kCAAkC,EAAE;YAClC,KAAK,EAAE,QAAQ;YACf,cAAc,EAAE,CAAC,IAAS,EAAE,QAAa,EAAE,QAAa,EAAE,EAAE;gBAC1D,MAAM,OAAO,GAAG,UAAU,CAAC,KAAK,CAC9B,IAAI,EACJ,oCAAoC,EACpC,QAAQ,EACR,QAAQ,CACT,CAAC;gBAEF,oHAAoH;gBACpH,MAAM,WAAW,GAAG,sBAAsB,CAAC,IAAI,CAAC,CAAC;gBACjD,IAAI,kBAAkB,CAAC,GAAG,CAAC,WAAW,CAAC,EAAE,CAAC;oBACxC,MAAM,gBAAgB,GACpB,OAAO,CAAC,qCAAqC,EAAE,CAAC;oBAElD,MAAM,cAAc,GAAG,kBAAkB,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;oBAC3D,gBAAgB,CAAC,kBAAkB,CAAC,gBAAgB,CAAC,cAAc,CAAC,CAAC,CAAC;oBAEtE,OAAO,CAAC,yCAAyC,CAC/C,gBAAgB,CAAC,aAAa,CAAC,IAAI,CAAC,CACrC,CAAC;gBACJ,CAAC;gBAED,OAAO,OAAO,CAAC;YACjB,CAAC;SACF;KACF;CACF,CAAC,CAAC"}

package/dist/helpers.d.ts

@@ -17,4 +17,30 @@ export declare function PromiseWithResolvers<T = void>(): {
     resolve: (value: T | PromiseLike<T>) => void;
     reject: (reason?: unknown) => void;
 };
+/**
+ * WebAuthn: clientDataHash = SHA-256(clientDataJSON_bytes)
+ *
+ * - Input must be the exact bytes of CollectedClientData JSON (UTF-8).
+ * - Output is 32-byte SHA-256 digest.
+ */
+export declare function clientDataJsonBufferToHash(clientDataJSON: Buffer): Buffer;
+/**
+ * Serializes an origin according to the HTML specification.
+ * Based on https://html.spec.whatwg.org/multipage/browsers.html#ascii-serialisation-of-an-origin
+ *
+ * @param origin - The origin string to serialize (e.g., "https://example.com:8080")
+ * @returns The serialized origin string, or "null" for opaque origins
+ *
+ * @example
+ * ```ts
+ * serializeOrigin("https://example.com:443"); // "https://example.com:443"
+ * serializeOrigin("http://localhost:8080");   // "http://localhost:8080"
+ * serializeOrigin("null");                    // "null"
+ * ```
+ */
+export declare function serializeOrigin(origin: string): string | null;
+/**
+ * Convert an ArrayBuffer to a base64url string.
+ */
+export declare function bufferToBase64Url(buffer: Buffer): string;
 //# sourceMappingURL=helpers.d.ts.map

package/dist/helpers.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"helpers.d.ts","sourceRoot":"","sources":["../src/helpers.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AACH,wBAAgB,oBAAoB,CAAC,CAAC,GAAG,IAAI,KAAK;IAChD,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC;IACpB,OAAO,EAAE,CAAC,KAAK,EAAE,CAAC,GAAG,WAAW,CAAC,CAAC,CAAC,KAAK,IAAI,CAAC;IAC7C,MAAM,EAAE,CAAC,MAAM,CAAC,EAAE,OAAO,KAAK,IAAI,CAAC;CACpC,CAQA"}
+{"version":3,"file":"helpers.d.ts","sourceRoot":"","sources":["../src/helpers.ts"],"names":[],"mappings":"AAEA;;;;;;;;;;;;;GAaG;AACH,wBAAgB,oBAAoB,CAAC,CAAC,GAAG,IAAI,KAAK;IAChD,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC;IACpB,OAAO,EAAE,CAAC,KAAK,EAAE,CAAC,GAAG,WAAW,CAAC,CAAC,CAAC,KAAK,IAAI,CAAC;IAC7C,MAAM,EAAE,CAAC,MAAM,CAAC,EAAE,OAAO,KAAK,IAAI,CAAC;CACpC,CAQA;AAED;;;;;GAKG;AACH,wBAAgB,0BAA0B,CAAC,cAAc,EAAE,MAAM,GAAG,MAAM,CAWzE;AAED;;;;;;;;;;;;;GAaG;AACH,wBAAgB,eAAe,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI,CA+B7D;AAED;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,CAWxD"}

package/dist/helpers.js

@@ -1,3 +1,4 @@
+import { createHash } from "crypto";
 /**
  * Creates a Promise along with its resolve and reject callbacks.
  * This is a polyfill for the native Promise.withResolvers() method.
@@ -21,4 +22,74 @@ export function PromiseWithResolvers() {
     });
     return { promise, resolve: resolve, reject: reject };
 }
+/**
+ * WebAuthn: clientDataHash = SHA-256(clientDataJSON_bytes)
+ *
+ * - Input must be the exact bytes of CollectedClientData JSON (UTF-8).
+ * - Output is 32-byte SHA-256 digest.
+ */
+export function clientDataJsonBufferToHash(clientDataJSON) {
+    if (!Buffer.isBuffer(clientDataJSON)) {
+        throw new TypeError("clientDataJsonBufferToHash: clientDataJSON must be a Buffer");
+    }
+    if (clientDataJSON.length === 0) {
+        throw new RangeError("clientDataJsonBufferToHash: clientDataJSON is empty");
+    }
+    return createHash("sha256").update(clientDataJSON).digest();
+}
+/**
+ * Serializes an origin according to the HTML specification.
+ * Based on https://html.spec.whatwg.org/multipage/browsers.html#ascii-serialisation-of-an-origin
+ *
+ * @param origin - The origin string to serialize (e.g., "https://example.com:8080")
+ * @returns The serialized origin string, or "null" for opaque origins
+ *
+ * @example
+ * ```ts
+ * serializeOrigin("https://example.com:443"); // "https://example.com:443"
+ * serializeOrigin("http://localhost:8080");   // "http://localhost:8080"
+ * serializeOrigin("null");                    // "null"
+ * ```
+ */
+export function serializeOrigin(origin) {
+    // If origin is an opaque origin (represented as "null"), return "null"
+    if (origin === "null" || !origin) {
+        return null;
+    }
+    try {
+        // Parse the origin using URL constructor
+        const url = new URL(origin);
+        // Build the serialized origin
+        let result = url.protocol; // Already includes "://"
+        // If protocol doesn't end with "://", ensure it's added
+        if (!result.endsWith("://")) {
+            result = result.replace(/:$/, "") + "://";
+        }
+        // Append the host (already serialized by URL)
+        result += url.hostname;
+        // If port is non-null and non-default, append it
+        if (url.port) {
+            result += ":" + url.port;
+        }
+        return result;
+    }
+    catch (error) {
+        // If URL parsing fails, treat as opaque origin
+        return null;
+    }
+}
+/**
+ * Convert an ArrayBuffer to a base64url string.
+ */
+export function bufferToBase64Url(buffer) {
+    const bytes = new Uint8Array(buffer);
+    let binary = "";
+    for (let i = 0; i < bytes.length; i++) {
+        binary += String.fromCharCode(bytes[i]);
+    }
+    return btoa(binary)
+        .replace(/\+/g, "-")
+        .replace(/\//g, "_")
+        .replace(/=+$/, "");
+}
 //# sourceMappingURL=helpers.js.map

package/dist/helpers.js.map

@@ -1 +1 @@
-{"version":3,"file":"helpers.js","sourceRoot":"","sources":["../src/helpers.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AACH,MAAM,UAAU,oBAAoB;IAKlC,IAAI,OAA4C,CAAC;IACjD,IAAI,MAAkC,CAAC;IACvC,MAAM,OAAO,GAAG,IAAI,OAAO,CAAI,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;QAC1C,OAAO,GAAG,GAAG,CAAC;QACd,MAAM,GAAG,GAAG,CAAC;IACf,CAAC,CAAC,CAAC;IACH,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,OAAQ,EAAE,MAAM,EAAE,MAAO,EAAE,CAAC;AACzD,CAAC"}
+{"version":3,"file":"helpers.js","sourceRoot":"","sources":["../src/helpers.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,QAAQ,CAAC;AAEpC;;;;;;;;;;;;;GAaG;AACH,MAAM,UAAU,oBAAoB;IAKlC,IAAI,OAA4C,CAAC;IACjD,IAAI,MAAkC,CAAC;IACvC,MAAM,OAAO,GAAG,IAAI,OAAO,CAAI,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;QAC1C,OAAO,GAAG,GAAG,CAAC;QACd,MAAM,GAAG,GAAG,CAAC;IACf,CAAC,CAAC,CAAC;IACH,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,OAAQ,EAAE,MAAM,EAAE,MAAO,EAAE,CAAC;AACzD,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,0BAA0B,CAAC,cAAsB;IAC/D,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,cAAc,CAAC,EAAE,CAAC;QACrC,MAAM,IAAI,SAAS,CACjB,6DAA6D,CAC9D,CAAC;IACJ,CAAC;IACD,IAAI,cAAc,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAChC,MAAM,IAAI,UAAU,CAAC,qDAAqD,CAAC,CAAC;IAC9E,CAAC;IAED,OAAO,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC,MAAM,EAAE,CAAC;AAC9D,CAAC;AAED;;;;;;;;;;;;;GAaG;AACH,MAAM,UAAU,eAAe,CAAC,MAAc;IAC5C,uEAAuE;IACvE,IAAI,MAAM,KAAK,MAAM,IAAI,CAAC,MAAM,EAAE,CAAC;QACjC,OAAO,IAAI,CAAC;IACd,CAAC;IAED,IAAI,CAAC;QACH,yCAAyC;QACzC,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,MAAM,CAAC,CAAC;QAE5B,8BAA8B;QAC9B,IAAI,MAAM,GAAG,GAAG,CAAC,QAAQ,CAAC,CAAC,yBAAyB;QAEpD,wDAAwD;QACxD,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;YAC5B,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC,GAAG,KAAK,CAAC;QAC5C,CAAC;QAED,8CAA8C;QAC9C,MAAM,IAAI,GAAG,CAAC,QAAQ,CAAC;QAEvB,iDAAiD;QACjD,IAAI,GAAG,CAAC,IAAI,EAAE,CAAC;YACb,MAAM,IAAI,GAAG,GAAG,GAAG,CAAC,IAAI,CAAC;QAC3B,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,+CAA+C;QAC/C,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,iBAAiB,CAAC,MAAc;IAC9C,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,MAAM,CAAC,CAAC;IACrC,IAAI,MAAM,GAAG,EAAE,CAAC;IAChB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,MAAM,IAAI,MAAM,CAAC,YAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;IAC1C,CAAC;IAED,OAAO,IAAI,CAAC,MAAM,CAAC;SAChB,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC;SACnB,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC;SACnB,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;AACxB,CAAC"}

package/dist/index.d.ts

@@ -1,4 +1,5 @@
 type AuthenticatorAttachment = "platform" | "cross-platform";
+export type UserVerificationPreference = "preferred" | "required" | "discouraged";
 export interface GetCredentialResult {
     id: Buffer;
     authenticatorAttachment: AuthenticatorAttachment;
@@ -6,7 +7,9 @@ export interface GetCredentialResult {
     authenticatorData: Buffer;
     signature: Buffer;
     userHandle: Buffer;
+    prf: [Buffer | null, Buffer | null];
+    largeBlob: Buffer | null;
 }
-declare function getCredential(rpid: string, challenge: Buffer, nativeWindowHandle: Buffer, allowedCredentialIds: Buffer[]): Promise<GetCredentialResult>;
+declare function getCredential(rpid: string, challenge: Buffer, nativeWindowHandle: Buffer, origin: string, allowedCredentialIds: Buffer[], userVerificationPreference?: UserVerificationPreference): Promise<GetCredentialResult>;
 export { getCredential };
 //# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAoBA,KAAK,uBAAuB,GAAG,UAAU,GAAG,gBAAgB,CAAC;AAE7D,MAAM,WAAW,mBAAmB;IAClC,EAAE,EAAE,MAAM,CAAC;IACX,uBAAuB,EAAE,uBAAuB,CAAC;IACjD,cAAc,EAAE,MAAM,CAAC;IACvB,iBAAiB,EAAE,MAAM,CAAC;IAC1B,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,iBAAS,aAAa,CACpB,IAAI,EAAE,MAAM,EACZ,SAAS,EAAE,MAAM,EACjB,kBAAkB,EAAE,MAAM,EAC1B,oBAAoB,EAAE,MAAM,EAAE,GAC7B,OAAO,CAAC,mBAAmB,CAAC,CAwF9B;AAED,OAAO,EAAE,aAAa,EAAE,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AA8BA,KAAK,uBAAuB,GAAG,UAAU,GAAG,gBAAgB,CAAC;AAC7D,MAAM,MAAM,0BAA0B,GAClC,WAAW,GACX,UAAU,GACV,aAAa,CAAC;AAElB,MAAM,WAAW,mBAAmB;IAClC,EAAE,EAAE,MAAM,CAAC;IACX,uBAAuB,EAAE,uBAAuB,CAAC;IACjD,cAAc,EAAE,MAAM,CAAC;IACvB,iBAAiB,EAAE,MAAM,CAAC;IAC1B,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;IACnB,GAAG,EAAE,CAAC,MAAM,GAAG,IAAI,EAAE,MAAM,GAAG,IAAI,CAAC,CAAC;IACpC,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;CAC1B;AAED,iBAAS,aAAa,CACpB,IAAI,EAAE,MAAM,EACZ,SAAS,EAAE,MAAM,EACjB,kBAAkB,EAAE,MAAM,EAC1B,MAAM,EAAE,MAAM,EACd,oBAAoB,EAAE,MAAM,EAAE,EAC9B,0BAA0B,CAAC,EAAE,0BAA0B,GACtD,OAAO,CAAC,mBAAmB,CAAC,CA+I9B;AAED,OAAO,EAAE,aAAa,EAAE,CAAC"}

package/dist/index.js

@@ -1,15 +1,16 @@
 import { fromPointer } from "objc-js";
 import { createAuthorizationControllerDelegate } from "./objc/authentication-services/as-authorization-controller-delegate.js";
-import { createAuthorizationController } from "./objc/authentication-services/as-authorization-controller.js";
+import { ASAuthorizationController } from "./objc/authentication-services/as-authorization-controller.js";
 import { createPresentationContextProvider } from "./objc/authentication-services/as-authorization-controller-presentation-context-providing.js";
 import { createPlatformPublicKeyCredentialProvider } from "./objc/authentication-services/as-authorization-platform-public-key-credential-provider.js";
 import { createPlatformPublicKeyCredentialDescriptor } from "./objc/authentication-services/as-authorization-platform-public-key-credential-descriptor.js";
 import { NSArray, NSArrayFromObjects } from "./objc/foundation/nsarray.js";
 import { bufferFromNSDataDirect, NSDataFromBuffer, } from "./objc/foundation/nsdata.js";
 import { NSStringFromString } from "./objc/foundation/nsstring.js";
-import { PromiseWithResolvers } from "./helpers.js";
+import { bufferToBase64Url, clientDataJsonBufferToHash, PromiseWithResolvers, serializeOrigin, } from "./helpers.js";
 import { ASAuthorizationPublicKeyCredentialAttachment } from "./objc/authentication-services/enums/as-authorization-public-key-credential-attachment.js";
-function getCredential(rpid, challenge, nativeWindowHandle, allowedCredentialIds) {
+import { removeClientDataHash, setClientDataHash, WebauthnGetController, } from "./get-authorization-controller.js";
+function getCredential(rpid, challenge, nativeWindowHandle, origin, allowedCredentialIds, userVerificationPreference) {
     const { promise, resolve, reject } = PromiseWithResolvers();
     // Create NS objects
     const NS_rpID = NSStringFromString(rpid);
@@ -19,9 +20,36 @@ function getCredential(rpid, challenge, nativeWindowHandle, allowedCredentialIds
     const platformProvider = createPlatformPublicKeyCredentialProvider(NS_rpID);
     // let platformKeyRequest = platformProvider.createCredentialAssertionRequest(challenge: challenge)
     const platformKeyRequest = platformProvider.createCredentialAssertionRequestWithChallenge$(NS_challenge);
+    // platformKeyRequest.userVerificationPreference = ???
+    if (userVerificationPreference === "preferred") {
+        platformKeyRequest.setUserVerificationPreference$(NSStringFromString("preferred"));
+    }
+    else if (userVerificationPreference === "required") {
+        platformKeyRequest.setUserVerificationPreference$(NSStringFromString("required"));
+    }
+    else if (userVerificationPreference === "discouraged") {
+        platformKeyRequest.setUserVerificationPreference$(NSStringFromString("discouraged"));
+    }
     // let authController = ASAuthorizationController(authorizationRequests: [platformKeyRequest])
     const requestsArray = NSArray.arrayWithObject$(platformKeyRequest);
-    const authController = createAuthorizationController(requestsArray);
+    const authController = WebauthnGetController.alloc().initWithAuthorizationRequests$(requestsArray);
+    // OLD: const authController = createAuthorizationController(requestsArray);
+    // Generate the client data
+    const serializedOrigin = serializeOrigin(origin);
+    const clientData = {
+        type: "webauthn.get",
+        challenge: bufferToBase64Url(challenge),
+        origin: serializedOrigin,
+        crossOrigin: false,
+    };
+    const clientDataJSON = JSON.stringify(clientData);
+    const clientDataBuffer = Buffer.from(clientDataJSON, "utf-8");
+    const clientDataHash = clientDataJsonBufferToHash(clientDataBuffer);
+    console.log("clientDataJSON", clientDataJSON);
+    setClientDataHash(authController, clientDataHash);
+    const finished = (_success) => {
+        removeClientDataHash(authController);
+    };
     // Set allowed credentials if provided
     if (allowedCredentialIds.length > 0) {
         const allowedCredentials = NSArrayFromObjects(allowedCredentialIds.map((id) => createPlatformPublicKeyCredentialDescriptor(NSDataFromBuffer(id))));
@@ -40,14 +68,26 @@ function getCredential(rpid, challenge, nativeWindowHandle, allowedCredentialIds
                 ASAuthorizationPublicKeyCredentialAttachment.ASAuthorizationPublicKeyCredentialAttachmentCrossPlatform) {
                 authenticatorAttachment = "cross-platform";
             }
+            const prf = credential.prf();
+            const prfFirst = prf?.first ? prf.first() : null;
+            const prfSecond = prf?.second ? prf.second() : null;
+            console.log("rawAuthenticatorData", credential.rawAuthenticatorData());
             resolve({
                 id,
                 authenticatorAttachment,
-                clientDataJSON: bufferFromNSDataDirect(credential.rawClientDataJSON()),
+                clientDataJSON: clientDataBuffer, //bufferFromNSDataDirect(credential.rawClientDataJSON()),
                 authenticatorData: bufferFromNSDataDirect(credential.rawAuthenticatorData()),
                 signature: bufferFromNSDataDirect(credential.signature()),
                 userHandle: bufferFromNSDataDirect(credential.userID()),
+                prf: [
+                    prfFirst ? bufferFromNSDataDirect(prfFirst) : null,
+                    prfSecond ? bufferFromNSDataDirect(prfSecond) : null,
+                ],
+                largeBlob: credential.largeBlob()
+                    ? bufferFromNSDataDirect(credential.largeBlob().readData())
+                    : null,
             });
+            finished(true);
         },
         didCompleteWithError: (_, error) => {
             // Parse the NSError into a readable format
@@ -55,6 +95,7 @@ function getCredential(rpid, challenge, nativeWindowHandle, allowedCredentialIds
             const errorMessage = parsedError.localizedDescription().UTF8String();
             console.error("Authorization failed:", errorMessage);
             reject(new Error(errorMessage));
+            finished(false);
         },
     });
     authController.setDelegate$(delegate);
@@ -69,6 +110,7 @@ function getCredential(rpid, challenge, nativeWindowHandle, allowedCredentialIds
     });
     authController.setPresentationContextProvider$(presentationContextProvider);
     // authController.performRequests()
+    console.log("performing requests");
     authController.performRequests();
     return promise;
 }

package/dist/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC;AACtC,OAAO,EAAE,qCAAqC,EAAE,MAAM,wEAAwE,CAAC;AAC/H,OAAO,EAAE,6BAA6B,EAAE,MAAM,+DAA+D,CAAC;AAC9G,OAAO,EAAE,iCAAiC,EAAE,MAAM,8FAA8F,CAAC;AACjJ,OAAO,EAAE,yCAAyC,EAAE,MAAM,4FAA4F,CAAC;AACvJ,OAAO,EAAE,2CAA2C,EAAE,MAAM,8FAA8F,CAAC;AAG3J,OAAO,EAAE,OAAO,EAAE,kBAAkB,EAAE,MAAM,8BAA8B,CAAC;AAC3E,OAAO,EAEL,sBAAsB,EACtB,gBAAgB,GACjB,MAAM,6BAA6B,CAAC;AACrC,OAAO,EAAE,kBAAkB,EAAE,MAAM,+BAA+B,CAAC;AAGnE,OAAO,EAAE,oBAAoB,EAAE,MAAM,cAAc,CAAC;AACpD,OAAO,EAAE,4CAA4C,EAAE,MAAM,2FAA2F,CAAC;AAazJ,SAAS,aAAa,CACpB,IAAY,EACZ,SAAiB,EACjB,kBAA0B,EAC1B,oBAA8B;IAE9B,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,GAChC,oBAAoB,EAAuB,CAAC;IAE9C,oBAAoB;IACpB,MAAM,OAAO,GAAG,kBAAkB,CAAC,IAAI,CAAC,CAAC;IAEzC,sDAAsD;IACtD,MAAM,YAAY,GAAG,gBAAgB,CAAC,SAAS,CAAC,CAAC;IAEjD,mHAAmH;IACnH,MAAM,gBAAgB,GAAG,yCAAyC,CAAC,OAAO,CAAC,CAAC;IAE5E,mGAAmG;IACnG,MAAM,kBAAkB,GACtB,gBAAgB,CAAC,8CAA8C,CAC7D,YAAY,CACb,CAAC;IAEJ,8FAA8F;IAC9F,MAAM,aAAa,GAAG,OAAO,CAAC,gBAAgB,CAAC,kBAAkB,CAAC,CAAC;IACnE,MAAM,cAAc,GAAG,6BAA6B,CAAC,aAAa,CAAC,CAAC;IAEpE,sCAAsC;IACtC,IAAI,oBAAoB,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACpC,MAAM,kBAAkB,GAAG,kBAAkB,CAC3C,oBAAoB,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,CAC9B,2CAA2C,CAAC,gBAAgB,CAAC,EAAE,CAAC,CAAC,CAClE,CACF,CAAC;QACF,kBAAkB,CAAC,sBAAsB,CAAC,kBAAkB,CAAC,CAAC;IAChE,CAAC;IAED,iCAAiC;IACjC,MAAM,QAAQ,GAAG,qCAAqC,CAAC;QACrD,4BAA4B,EAAE,CAAC,CAAC,EAAE,aAAa,EAAE,EAAE;YACjD,mDAAmD;YACnD,MAAM,UAAU,GACd,aAAa,CAAC,UAAU,EAAqE,CAAC;YAChG,OAAO,CAAC,GAAG,CAAC,0BAA0B,EAAE,UAAU,CAAC,CAAC;YAEpD,MAAM,OAAO,GAAG,UAAU,CAAC,YAAY,EAAE,CAAC;YAC1C,MAAM,EAAE,GAAG,sBAAsB,CAAC,OAAO,CAAC,CAAC;YAE3C,IAAI,uBAAuB,GAA4B,UAAU,CAAC;YAClE,IACE,UAAU,CAAC,UAAU,EAAE;gBACvB,4CAA4C,CAAC,yDAAyD,EACtG,CAAC;gBACD,uBAAuB,GAAG,gBAAgB,CAAC;YAC7C,CAAC;YAED,OAAO,CAAC;gBACN,EAAE;gBACF,uBAAuB;gBACvB,cAAc,EAAE,sBAAsB,CAAC,UAAU,CAAC,iBAAiB,EAAE,CAAC;gBACtE,iBAAiB,EAAE,sBAAsB,CACvC,UAAU,CAAC,oBAAoB,EAAE,CAClC;gBACD,SAAS,EAAE,sBAAsB,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;gBACzD,UAAU,EAAE,sBAAsB,CAAC,UAAU,CAAC,MAAM,EAAE,CAAC;aACxD,CAAC,CAAC;QACL,CAAC;QACD,oBAAoB,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,EAAE;YACjC,2CAA2C;YAC3C,MAAM,WAAW,GAAG,KAA6C,CAAC;YAClE,MAAM,YAAY,GAAG,WAAW,CAAC,oBAAoB,EAAE,CAAC,UAAU,EAAE,CAAC;YACrE,OAAO,CAAC,KAAK,CAAC,uBAAuB,EAAE,YAAY,CAAC,CAAC;YACrD,MAAM,CAAC,IAAI,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC;QAClC,CAAC;KACF,CAAC,CAAC;IACH,cAAc,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC;IAEtC,oDAAoD;IACpD,MAAM,2BAA2B,GAAG,iCAAiC,CAAC;QACpE,4CAA4C,EAAE,GAAG,EAAE;YACjD,yDAAyD;YACzD,MAAM,MAAM,GAAG,WAAW,CAAC,kBAAkB,CAAuB,CAAC;YACrE,MAAM,QAAQ,GAAG,MAAM,CAAC,MAAM,EAAE,CAAC;YACjC,OAAO,QAAQ,CAAC;QAClB,CAAC;KACF,CAAC,CAAC;IACH,cAAc,CAAC,+BAA+B,CAAC,2BAA2B,CAAC,CAAC;IAE5E,mCAAmC;IACnC,cAAc,CAAC,eAAe,EAAE,CAAC;IAEjC,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,OAAO,EAAE,aAAa,EAAE,CAAC"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC;AACtC,OAAO,EAAE,qCAAqC,EAAE,MAAM,wEAAwE,CAAC;AAC/H,OAAO,EAAE,yBAAyB,EAAE,MAAM,+DAA+D,CAAC;AAC1G,OAAO,EAAE,iCAAiC,EAAE,MAAM,8FAA8F,CAAC;AACjJ,OAAO,EAAE,yCAAyC,EAAE,MAAM,4FAA4F,CAAC;AACvJ,OAAO,EAAE,2CAA2C,EAAE,MAAM,8FAA8F,CAAC;AAG3J,OAAO,EAAE,OAAO,EAAE,kBAAkB,EAAE,MAAM,8BAA8B,CAAC;AAC3E,OAAO,EAEL,sBAAsB,EACtB,gBAAgB,GACjB,MAAM,6BAA6B,CAAC;AACrC,OAAO,EAAE,kBAAkB,EAAE,MAAM,+BAA+B,CAAC;AAGnE,OAAO,EACL,iBAAiB,EACjB,0BAA0B,EAC1B,oBAAoB,EACpB,eAAe,GAChB,MAAM,cAAc,CAAC;AACtB,OAAO,EAAE,4CAA4C,EAAE,MAAM,2FAA2F,CAAC;AACzJ,OAAO,EACL,oBAAoB,EACpB,iBAAiB,EACjB,qBAAqB,GACtB,MAAM,mCAAmC,CAAC;AAmB3C,SAAS,aAAa,CACpB,IAAY,EACZ,SAAiB,EACjB,kBAA0B,EAC1B,MAAc,EACd,oBAA8B,EAC9B,0BAAuD;IAEvD,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,GAChC,oBAAoB,EAAuB,CAAC;IAE9C,oBAAoB;IACpB,MAAM,OAAO,GAAG,kBAAkB,CAAC,IAAI,CAAC,CAAC;IAEzC,sDAAsD;IACtD,MAAM,YAAY,GAAG,gBAAgB,CAAC,SAAS,CAAC,CAAC;IAEjD,mHAAmH;IACnH,MAAM,gBAAgB,GAAG,yCAAyC,CAAC,OAAO,CAAC,CAAC;IAE5E,mGAAmG;IACnG,MAAM,kBAAkB,GACtB,gBAAgB,CAAC,8CAA8C,CAC7D,YAAY,CACb,CAAC;IAEJ,sDAAsD;IACtD,IAAI,0BAA0B,KAAK,WAAW,EAAE,CAAC;QAC/C,kBAAkB,CAAC,8BAA8B,CAC/C,kBAAkB,CAAC,WAAW,CAAC,CAChC,CAAC;IACJ,CAAC;SAAM,IAAI,0BAA0B,KAAK,UAAU,EAAE,CAAC;QACrD,kBAAkB,CAAC,8BAA8B,CAC/C,kBAAkB,CAAC,UAAU,CAAC,CAC/B,CAAC;IACJ,CAAC;SAAM,IAAI,0BAA0B,KAAK,aAAa,EAAE,CAAC;QACxD,kBAAkB,CAAC,8BAA8B,CAC/C,kBAAkB,CAAC,aAAa,CAAC,CAClC,CAAC;IACJ,CAAC;IAED,8FAA8F;IAC9F,MAAM,aAAa,GAAG,OAAO,CAAC,gBAAgB,CAAC,kBAAkB,CAAC,CAAC;IACnE,MAAM,cAAc,GAClB,qBAAqB,CAAC,KAAK,EAAE,CAAC,8BAA8B,CAAC,aAAa,CAAC,CAAC;IAC9E,4EAA4E;IAE5E,2BAA2B;IAC3B,MAAM,gBAAgB,GAAG,eAAe,CAAC,MAAM,CAAC,CAAC;IACjD,MAAM,UAAU,GAAG;QACjB,IAAI,EAAE,cAAc;QACpB,SAAS,EAAE,iBAAiB,CAAC,SAAS,CAAC;QACvC,MAAM,EAAE,gBAAgB;QACxB,WAAW,EAAE,KAAK;KACnB,CAAC;IAEF,MAAM,cAAc,GAAG,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;IAClD,MAAM,gBAAgB,GAAG,MAAM,CAAC,IAAI,CAAC,cAAc,EAAE,OAAO,CAAC,CAAC;IAC9D,MAAM,cAAc,GAAG,0BAA0B,CAAC,gBAAgB,CAAC,CAAC;IACpE,OAAO,CAAC,GAAG,CAAC,gBAAgB,EAAE,cAAc,CAAC,CAAC;IAE9C,iBAAiB,CAAC,cAAc,EAAE,cAAc,CAAC,CAAC;IAElD,MAAM,QAAQ,GAAG,CAAC,QAAiB,EAAE,EAAE;QACrC,oBAAoB,CAAC,cAAc,CAAC,CAAC;IACvC,CAAC,CAAC;IAEF,sCAAsC;IACtC,IAAI,oBAAoB,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACpC,MAAM,kBAAkB,GAAG,kBAAkB,CAC3C,oBAAoB,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,CAC9B,2CAA2C,CAAC,gBAAgB,CAAC,EAAE,CAAC,CAAC,CAClE,CACF,CAAC;QACF,kBAAkB,CAAC,sBAAsB,CAAC,kBAAkB,CAAC,CAAC;IAChE,CAAC;IAED,iCAAiC;IACjC,MAAM,QAAQ,GAAG,qCAAqC,CAAC;QACrD,4BAA4B,EAAE,CAAC,CAAC,EAAE,aAAa,EAAE,EAAE;YACjD,mDAAmD;YACnD,MAAM,UAAU,GACd,aAAa,CAAC,UAAU,EAAqE,CAAC;YAChG,OAAO,CAAC,GAAG,CAAC,0BAA0B,EAAE,UAAU,CAAC,CAAC;YAEpD,MAAM,OAAO,GAAG,UAAU,CAAC,YAAY,EAAE,CAAC;YAC1C,MAAM,EAAE,GAAG,sBAAsB,CAAC,OAAO,CAAC,CAAC;YAE3C,IAAI,uBAAuB,GAA4B,UAAU,CAAC;YAClE,IACE,UAAU,CAAC,UAAU,EAAE;gBACvB,4CAA4C,CAAC,yDAAyD,EACtG,CAAC;gBACD,uBAAuB,GAAG,gBAAgB,CAAC;YAC7C,CAAC;YAED,MAAM,GAAG,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC;YAC7B,MAAM,QAAQ,GAAG,GAAG,EAAE,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC;YACjD,MAAM,SAAS,GAAG,GAAG,EAAE,MAAM,CAAC,CAAC,CAAC,GAAG,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC;YAEpD,OAAO,CAAC,GAAG,CAAC,sBAAsB,EAAE,UAAU,CAAC,oBAAoB,EAAE,CAAC,CAAC;YAEvE,OAAO,CAAC;gBACN,EAAE;gBACF,uBAAuB;gBACvB,cAAc,EAAE,gBAAgB,EAAE,yDAAyD;gBAC3F,iBAAiB,EAAE,sBAAsB,CACvC,UAAU,CAAC,oBAAoB,EAAE,CAClC;gBACD,SAAS,EAAE,sBAAsB,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;gBACzD,UAAU,EAAE,sBAAsB,CAAC,UAAU,CAAC,MAAM,EAAE,CAAC;gBACvD,GAAG,EAAE;oBACH,QAAQ,CAAC,CAAC,CAAC,sBAAsB,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,IAAI;oBAClD,SAAS,CAAC,CAAC,CAAC,sBAAsB,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,IAAI;iBACrD;gBACD,SAAS,EAAE,UAAU,CAAC,SAAS,EAAE;oBAC/B,CAAC,CAAC,sBAAsB,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC,QAAQ,EAAE,CAAC;oBAC3D,CAAC,CAAC,IAAI;aACT,CAAC,CAAC;YAEH,QAAQ,CAAC,IAAI,CAAC,CAAC;QACjB,CAAC;QACD,oBAAoB,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,EAAE;YACjC,2CAA2C;YAC3C,MAAM,WAAW,GAAG,KAA6C,CAAC;YAClE,MAAM,YAAY,GAAG,WAAW,CAAC,oBAAoB,EAAE,CAAC,UAAU,EAAE,CAAC;YACrE,OAAO,CAAC,KAAK,CAAC,uBAAuB,EAAE,YAAY,CAAC,CAAC;YACrD,MAAM,CAAC,IAAI,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC;YAEhC,QAAQ,CAAC,KAAK,CAAC,CAAC;QAClB,CAAC;KACF,CAAC,CAAC;IACH,cAAc,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC;IAEtC,oDAAoD;IACpD,MAAM,2BAA2B,GAAG,iCAAiC,CAAC;QACpE,4CAA4C,EAAE,GAAG,EAAE;YACjD,yDAAyD;YACzD,MAAM,MAAM,GAAG,WAAW,CAAC,kBAAkB,CAAuB,CAAC;YACrE,MAAM,QAAQ,GAAG,MAAM,CAAC,MAAM,EAAE,CAAC;YACjC,OAAO,QAAQ,CAAC;QAClB,CAAC;KACF,CAAC,CAAC;IACH,cAAc,CAAC,+BAA+B,CAAC,2BAA2B,CAAC,CAAC;IAE5E,mCAAmC;IACnC,OAAO,CAAC,GAAG,CAAC,qBAAqB,CAAC,CAAC;IACnC,cAAc,CAAC,eAAe,EAAE,CAAC;IAEjC,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,OAAO,EAAE,aAAa,EAAE,CAAC"}

package/dist/test/example.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=example.d.ts.map

package/dist/test/example.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"example.d.ts","sourceRoot":"","sources":["../../src/test/example.ts"],"names":[],"mappings":""}

package/dist/test/example.js

@@ -0,0 +1,24 @@
+import { NSData } from "../objc/foundation/nsdata.js";
+import { NSString } from "../objc/foundation/nsstring.js";
+import { NSArray } from "../objc/foundation/nsarray.js";
+const myString = NSString.stringWithUTF8String$("Hello from Objective-C!");
+console.log("Created NSString:", myString);
+const buf = Buffer.from("Hello from Objective-C!");
+const myData = NSData.dataWithBytes$length$(buf, buf.length);
+console.log("Created NSData:", myData);
+// Test NSArray
+const str1 = NSString.stringWithUTF8String$("First");
+const str2 = NSString.stringWithUTF8String$("Second");
+const str3 = NSString.stringWithUTF8String$("Third");
+// Create array with one object, then add more
+let myArray = NSArray.arrayWithObject$(str1);
+myArray = myArray.arrayByAddingObject$(str2);
+myArray = myArray.arrayByAddingObject$(str3);
+console.log("Created NSArray with count:", myArray.count());
+// Access elements
+for (let i = 0; i < myArray.count(); i++) {
+    const obj = myArray.objectAtIndex$(i);
+    const nsString = obj;
+    console.log(`Array[${i}]:`, nsString.UTF8String());
+}
+//# sourceMappingURL=example.js.map

package/dist/test/example.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"example.js","sourceRoot":"","sources":["../../src/test/example.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,8BAA8B,CAAC;AACtD,OAAO,EAAE,QAAQ,EAAE,MAAM,gCAAgC,CAAC;AAC1D,OAAO,EAAE,OAAO,EAAE,MAAM,+BAA+B,CAAC;AAExD,MAAM,QAAQ,GAAG,QAAQ,CAAC,qBAAqB,CAAC,yBAAyB,CAAC,CAAC;AAC3E,OAAO,CAAC,GAAG,CAAC,mBAAmB,EAAE,QAAQ,CAAC,CAAC;AAE3C,MAAM,GAAG,GAAG,MAAM,CAAC,IAAI,CAAC,yBAAyB,CAAC,CAAC;AACnD,MAAM,MAAM,GAAG,MAAM,CAAC,qBAAqB,CAAC,GAAG,EAAE,GAAG,CAAC,MAAM,CAAC,CAAC;AAC7D,OAAO,CAAC,GAAG,CAAC,iBAAiB,EAAE,MAAM,CAAC,CAAC;AAEvC,eAAe;AACf,MAAM,IAAI,GAAG,QAAQ,CAAC,qBAAqB,CAAC,OAAO,CAAC,CAAC;AACrD,MAAM,IAAI,GAAG,QAAQ,CAAC,qBAAqB,CAAC,QAAQ,CAAC,CAAC;AACtD,MAAM,IAAI,GAAG,QAAQ,CAAC,qBAAqB,CAAC,OAAO,CAAC,CAAC;AAErD,8CAA8C;AAC9C,IAAI,OAAO,GAAG,OAAO,CAAC,gBAAgB,CAAC,IAAI,CAAC,CAAC;AAC7C,OAAO,GAAG,OAAO,CAAC,oBAAoB,CAAC,IAAI,CAAC,CAAC;AAC7C,OAAO,GAAG,OAAO,CAAC,oBAAoB,CAAC,IAAI,CAAC,CAAC;AAE7C,OAAO,CAAC,GAAG,CAAC,6BAA6B,EAAE,OAAO,CAAC,KAAK,EAAE,CAAC,CAAC;AAE5D,kBAAkB;AAClB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,EAAE,EAAE,CAAC;IACzC,MAAM,GAAG,GAAG,OAAO,CAAC,cAAc,CAAC,CAAC,CAAQ,CAAC;IAC7C,MAAM,QAAQ,GAAG,GAAkB,CAAC;IACpC,OAAO,CAAC,GAAG,CAAC,SAAS,CAAC,IAAI,EAAE,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC;AACrD,CAAC"}

package/dist/test/index.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=index.d.ts.map

package/dist/test/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/test/index.ts"],"names":[],"mappings":""}

package/dist/test/index.js

@@ -0,0 +1,9 @@
+import { getPointer } from "objc-js";
+import { createEmptyWindow, getNativeWindowHandle } from "./window.js";
+import { getCredential } from "../index.js";
+const window = createEmptyWindow();
+const nsView = getNativeWindowHandle(window);
+const nsViewPointer = getPointer(nsView);
+const result = getCredential("example.com", Buffer.from("challenge"), nsViewPointer, "https://example.com", []);
+console.log("Result:", result);
+//# sourceMappingURL=index.js.map

package/dist/test/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/test/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AACrC,OAAO,EAAE,iBAAiB,EAAE,qBAAqB,EAAE,MAAM,aAAa,CAAC;AACvE,OAAO,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AAE5C,MAAM,MAAM,GAAG,iBAAiB,EAAE,CAAC;AACnC,MAAM,MAAM,GAAG,qBAAqB,CAAC,MAAM,CAAC,CAAC;AAC7C,MAAM,aAAa,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC;AAEzC,MAAM,MAAM,GAAG,aAAa,CAC1B,aAAa,EACb,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,EACxB,aAAa,EACb,qBAAqB,EACrB,EAAE,CACH,CAAC;AACF,OAAO,CAAC,GAAG,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC"}

package/dist/test/window.d.ts

@@ -0,0 +1,5 @@
+import { type NobjcObject } from "objc-js";
+declare function createEmptyWindow(): NobjcObject;
+declare function getNativeWindowHandle(window: NobjcObject): NobjcObject;
+export { createEmptyWindow, getNativeWindowHandle };
+//# sourceMappingURL=window.d.ts.map

package/dist/test/window.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"window.d.ts","sourceRoot":"","sources":["../../src/test/window.ts"],"names":[],"mappings":"AAAA,OAAO,EAA+B,KAAK,WAAW,EAAE,MAAM,SAAS,CAAC;AAWxE,iBAAS,iBAAiB,IAAI,WAAW,CAmDxC;AAED,iBAAS,qBAAqB,CAAC,MAAM,EAAE,WAAW,GAAG,WAAW,CAG/D;AAED,OAAO,EAAE,iBAAiB,EAAE,qBAAqB,EAAE,CAAC"}

package/dist/test/window.js

@@ -0,0 +1,58 @@
+import { NobjcLibrary, NobjcProtocol } from "objc-js";
+import { allocInitPlain } from "../objc/helpers.js";
+import { NSStringFromString } from "../objc/foundation/nsstring.js";
+const AppKit = new NobjcLibrary("/System/Library/Frameworks/AppKit.framework/AppKit");
+const Foundation = new NobjcLibrary("/System/Library/Frameworks/Foundation.framework/Foundation");
+function createEmptyWindow() {
+    const NSApp = AppKit.NSApplication.sharedApplication();
+    const window = allocInitPlain(AppKit.NSWindow);
+    const styleMask = (1 << 0) | (1 << 1) | (1 << 2) | (1 << 3); // titled, closable, miniaturizable, resizable
+    // Make the app active and show the window.
+    window.setStyleMask$(styleMask);
+    window.setFrameFromString$(NSStringFromString("{{100, 100}, {800, 600}}"));
+    NSApp.setActivationPolicy$(0);
+    NSApp.finishLaunching();
+    NSApp.activateIgnoringOtherApps$(true);
+    window.setIsVisible$(true);
+    window.makeKeyWindow();
+    window.orderFrontRegardless();
+    const delegate = NobjcProtocol.implement("NSWindowDelegate", {
+        windowShouldClose$: () => {
+            NSApp.terminate$(NSApp);
+            return true;
+        },
+        windowWillClose$: () => {
+            NSApp.terminate$(NSApp);
+        },
+    });
+    window.setDelegate$(delegate);
+    const shutdown = () => {
+        try {
+            window.close();
+        }
+        finally {
+            NSApp.stop$(NSApp);
+            NSApp.terminate$(NSApp);
+        }
+    };
+    const handleSignal = () => shutdown();
+    process.once("exit", shutdown);
+    process.once("SIGINT", handleSignal);
+    process.once("SIGTERM", handleSignal);
+    process.once("SIGQUIT", handleSignal);
+    // Pump the AppKit run loop for a short tick to keep JS responsive.
+    const runLoop = Foundation.NSRunLoop.currentRunLoop();
+    const pump = () => {
+        const untilDate = Foundation.NSDate.dateWithTimeIntervalSinceNow$(0.01);
+        runLoop.runUntilDate$(untilDate);
+    };
+    const pumpId = setInterval(pump, 10);
+    process.once("exit", () => clearInterval(pumpId));
+    return window;
+}
+function getNativeWindowHandle(window) {
+    // Electron expects an NSView* on macOS; contentView returns that NSView.
+    return window.contentView();
+}
+export { createEmptyWindow, getNativeWindowHandle };
+//# sourceMappingURL=window.js.map

package/dist/test/window.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"window.js","sourceRoot":"","sources":["../../src/test/window.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,aAAa,EAAoB,MAAM,SAAS,CAAC;AACxE,OAAO,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAC;AACpD,OAAO,EAAE,kBAAkB,EAAE,MAAM,gCAAgC,CAAC;AAEpE,MAAM,MAAM,GAAG,IAAI,YAAY,CAC7B,oDAAoD,CACrD,CAAC;AACF,MAAM,UAAU,GAAG,IAAI,YAAY,CACjC,4DAA4D,CAC7D,CAAC;AAEF,SAAS,iBAAiB;IACxB,MAAM,KAAK,GAAG,MAAM,CAAC,aAAc,CAAC,iBAAiB,EAAG,CAAC;IACzD,MAAM,MAAM,GAAG,cAAc,CAAC,MAAM,CAAC,QAAS,CAAC,CAAC;IAChD,MAAM,SAAS,GAAG,CAAC,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,8CAA8C;IAE3G,2CAA2C;IAC3C,MAAM,CAAC,aAAa,CAAC,SAAS,CAAC,CAAC;IAChC,MAAM,CAAC,mBAAmB,CAAC,kBAAkB,CAAC,0BAA0B,CAAC,CAAC,CAAC;IAC3E,KAAK,CAAC,oBAAoB,CAAC,CAAC,CAAC,CAAC;IAC9B,KAAK,CAAC,eAAe,EAAE,CAAC;IACxB,KAAK,CAAC,0BAA0B,CAAC,IAAI,CAAC,CAAC;IACvC,MAAM,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC;IAC3B,MAAM,CAAC,aAAa,EAAE,CAAC;IACvB,MAAM,CAAC,oBAAoB,EAAE,CAAC;IAE9B,MAAM,QAAQ,GAAG,aAAa,CAAC,SAAS,CAAC,kBAAkB,EAAE;QAC3D,kBAAkB,EAAE,GAAG,EAAE;YACvB,KAAK,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;YACxB,OAAO,IAAI,CAAC;QACd,CAAC;QACD,gBAAgB,EAAE,GAAG,EAAE;YACrB,KAAK,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;QAC1B,CAAC;KACF,CAAC,CAAC;IACH,MAAM,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC;IAE9B,MAAM,QAAQ,GAAG,GAAG,EAAE;QACpB,IAAI,CAAC;YACH,MAAM,CAAC,KAAK,EAAE,CAAC;QACjB,CAAC;gBAAS,CAAC;YACT,KAAK,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;YACnB,KAAK,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;QAC1B,CAAC;IACH,CAAC,CAAC;IAEF,MAAM,YAAY,GAAG,GAAG,EAAE,CAAC,QAAQ,EAAE,CAAC;IACtC,OAAO,CAAC,IAAI,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;IAC/B,OAAO,CAAC,IAAI,CAAC,QAAQ,EAAE,YAAY,CAAC,CAAC;IACrC,OAAO,CAAC,IAAI,CAAC,SAAS,EAAE,YAAY,CAAC,CAAC;IACtC,OAAO,CAAC,IAAI,CAAC,SAAS,EAAE,YAAY,CAAC,CAAC;IAEtC,mEAAmE;IACnE,MAAM,OAAO,GAAG,UAAU,CAAC,SAAU,CAAC,cAAc,EAAG,CAAC;IACxD,MAAM,IAAI,GAAG,GAAG,EAAE;QAChB,MAAM,SAAS,GAAG,UAAU,CAAC,MAAO,CAAC,6BAA6B,CAAC,IAAI,CAAE,CAAC;QAC1E,OAAO,CAAC,aAAa,CAAC,SAAS,CAAC,CAAC;IACnC,CAAC,CAAC;IACF,MAAM,MAAM,GAAG,WAAW,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;IACrC,OAAO,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,EAAE,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC;IAElD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,SAAS,qBAAqB,CAAC,MAAmB;IAChD,yEAAyE;IACzE,OAAO,MAAM,CAAC,WAAW,EAAiB,CAAC;AAC7C,CAAC;AAED,OAAO,EAAE,iBAAiB,EAAE,qBAAqB,EAAE,CAAC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "electron-webauthn",
-  "version": "0.0.10",
+  "version": "0.0.12",
   "repository": "https://github.com/iamEvanYT/electron-webauthn",
   "description": "Add support for WebAuthn for Electron.",
   "main": "dist/index.js",
@@ -28,7 +28,7 @@
     "typescript": "^5"
   },
   "dependencies": {
-    "objc-js": "^0.0.13"
+    "objc-js": "^0.0.14"
   },
   "trustedDependencies": [
     "objc-js"