electron-webauthn 0.0.11 → 0.0.13

package/README.md

@@ -15,6 +15,9 @@ This package provides JavaScript bindings to Apple's AuthenticationServices fram
 - 🔑 Support for cross-platform authenticators (external security keys)
 - 📦 TypeScript first with complete type definitions
 - 🎨 Seamless integration with Electron's native window system
+- 🔐 PRF (Pseudo-Random Function) support for credential assertions
+- 💾 Large Blob support for storing credential-specific data
+- ⚙️ User verification preference configuration (preferred, required, discouraged)
 
 ## Installation
 
@@ -49,8 +52,9 @@ async function authenticate() {
   const result = await getCredential(
     "example.com", // Relying Party ID
     Buffer.from("your-challenge"), // Challenge from server
-    nativeWindowHandle, // Native window for UI presentation
-    [] // Optional: allowed credential IDs
+    "https://example.com", // Origin
+    [], // Optional: allowed credential IDs
+    "preferred" // Optional: user verification preference
   );
 
   console.log(result);
@@ -61,12 +65,14 @@ async function authenticate() {
   // - authenticatorData: Authenticator data (Buffer)
   // - signature: Assertion signature (Buffer)
   // - userHandle: User handle (Buffer)
+  // - prf: [Buffer | null, Buffer | null] - PRF output (if supported)
+  // - largeBlob: Buffer | null - Large blob data (if supported)
 }
 ```
 
 ## API Reference
 
-### `getCredential(rpid, challenge, nativeWindowHandle, allowedCredentialIds)`
+### `getCredential(rpid, challenge, origin, allowedCredentialIds, userVerificationPreference)`
 
 Performs a WebAuthn assertion (authentication) using available platform and cross-platform authenticators.
 
@@ -74,8 +80,12 @@ Performs a WebAuthn assertion (authentication) using available platform and cros
 
 - **`rpid: string`** - The Relying Party ID (typically your domain)
 - **`challenge: Buffer`** - The challenge from your server (32+ bytes recommended)
-- **`nativeWindowHandle: Buffer`** - The native window handle from Electron
+- **`origin: string`** - The origin where the credential assertion will be used (e.g., "https://example.com")
 - **`allowedCredentialIds: Buffer[]`** - Optional array of credential IDs the user can use (empty = all registered credentials)
+- **`userVerificationPreference?: UserVerificationPreference`** - Optional preference for user verification. Can be:
+  - `"preferred"` - User verification is preferred but not required (default)
+  - `"required"` - User verification is required
+  - `"discouraged"` - User verification should be discouraged
 
 #### Returns
 
@@ -91,49 +101,20 @@ interface GetCredentialResult {
   authenticatorData: Buffer; // Authenticator data from the device
   signature: Buffer; // Digital signature from the authenticator
   userHandle: Buffer; // User handle from the credential
+  prf: [Buffer | null, Buffer | null]; // PRF output (if supported by authenticator)
+  largeBlob: Buffer | null; // Large blob data (if supported by authenticator)
 }
 ```
 
-## Architecture
-
-### Package Structure
+#### User Verification Preference Type
 
+```typescript
+type UserVerificationPreference = "preferred" | "required" | "discouraged";
 ```
-src/
-├── index.ts                           # Main export - getCredential function
-├── helpers.ts                         # Utility functions
-├── objc/
-│   ├── authentication-services/       # AuthenticationServices framework bindings
-│   │   ├── as-authorization-*.ts      # Authorization request/response objects
-│   │   ├── enums/                     # Enumeration values
-│   │   └── index.ts                   # Exports
-│   └── foundation/                    # Foundation framework bindings
-│       ├── nsdata.ts                  # NSData (binary data) bindings
-│       ├── nsstring.ts                # NSString bindings
-│       ├── nsarray.ts                 # NSArray bindings
-│       ├── nserror.ts                 # NSError bindings
-│       ├── nsview.ts                  # NSView bindings
-│       ├── nswindow.ts                # NSWindow bindings
-│       └── index.ts                   # Exports
-└── test/                              # Test utilities
-    ├── index.ts                       # Test script
-    ├── window.ts                      # Test window helpers
-    └── example.ts                     # Example usage
-```
-
-### Dependencies
 
-- **objc-js** - Native Objective-C bindings for JavaScript
-- **TypeScript** - For type checking and compilation
-
-## How It Works
+## Architecture
 
-1. **Request Creation**: The library creates a `ASAuthorizationPlatformPublicKeyCredentialProvider` with your RP ID
-2. **Request Configuration**: Sets up the challenge and optional allowed credentials list
-3. **Controller Setup**: Creates an `ASAuthorizationController` to manage the authentication flow
-4. **Delegation**: Registers delegates to handle success/error responses from the system
-5. **Presentation**: Shows the native authentication UI in your window
-6. **Result Processing**: Converts Objective-C objects to JavaScript Buffers and returns the assertion data
+This library implements the WebAuthn standard using native APIs. Under the hood it handles all the complexity of macOS's authentication system, so you just call `getCredential()` with your challenge and get back the signed assertion.
 
 ## Usage Examples
 
@@ -155,7 +136,7 @@ app.on("ready", () => {
 // In your preload script or main process
 export async function authenticateUser(challenge: Buffer) {
   const nativeHandle = getPointer(mainWindow.getNativeWindowHandle());
-  return getCredential("myapp.com", challenge, nativeHandle, []);
+  return getCredential("myapp.com", challenge, "https://myapp.com", []);
 }
 ```
 
@@ -166,11 +147,43 @@ export async function authenticateUser(challenge: Buffer) {
 const result = await getCredential(
   "myapp.com",
   challenge,
-  nativeWindowHandle,
+  "https://myapp.com",
   [credentialId1, credentialId2] // User can only use these credentials
 );
 ```
 
+### With User Verification Requirement
+
+```typescript
+// Require user verification (e.g., for sensitive operations)
+const result = await getCredential(
+  "myapp.com",
+  challenge,
+  "https://myapp.com",
+  [], // No credential restrictions
+  "required" // Require user verification (biometric or PIN)
+);
+```
+
+### Using PRF Output
+
+```typescript
+// Get credential with PRF support
+const result = await getCredential(
+  "myapp.com",
+  challenge,
+  "https://myapp.com",
+  []
+);
+
+// PRF output is available in the result
+const [prfFirst, prfSecond] = result.prf;
+if (prfFirst) {
+  // Use PRF output for additional cryptographic operations
+  console.log("PRF first output:", prfFirst);
+}
+```
+
 ### Server-Side Verification
 
 After getting the assertion result, verify it on your server:
@@ -197,7 +210,7 @@ try {
   const result = await getCredential(
     "example.com",
     challenge,
-    nativeWindowHandle,
+    "https://example.com",
     []
   );
 } catch (error) {
@@ -206,51 +219,25 @@ try {
 }
 ```
 
-## Platform Support
-
-| Platform  | Support          |
-| --------- | ---------------- |
-| macOS 12+ | ✅ Full support  |
-| Windows   | ❌ Not supported |
-| Linux     | ❌ Not supported |
-| iOS       | ❌ Not supported |
-
-## WebAuthn Spec Compliance
-
-This library implements the WebAuthn Level 2 specification for the assertion (authentication) operation:
-
-- ✅ Public Key Credential (assertions)
-- ✅ Platform authenticators (built-in)
-- ✅ Cross-platform authenticators (external)
-- ❌ Credential registration (create)
-- ℹ️ See [WebAuthn Specification](https://www.w3.org/TR/webauthn-2/)
-
-## Development
-
-### Building
-
-```bash
-bun run build
-```
-
-This compiles TypeScript to JavaScript in the `dist/` directory.
+**Supported:**
 
-## Contributing
+- ✅ WebAuthn assertions (authentication with existing credentials)
+- ✅ Platform authenticators (Touch ID, Face ID)
+- ✅ PRF (Pseudo-Random Function) output
+- ✅ Large Blob support
 
-Contributions are welcome! Please ensure:
+**Not Supported:**
 
-1. Code is properly typed with TypeScript
-2. New features include appropriate documentation
-3. Tests pass with `bun run test`
-4. Code builds successfully with `bun run build`
+- ❌ Cross-platform authenticators (external security keys)
+- ❌ Credential registration (attestation)
+- ❌ Discoverable credentials
 
 ## License
 
 See [LICENSE](./LICENSE) file for details.
 
-## Related Resources
+## Resources
 
 - [WebAuthn Specification](https://www.w3.org/TR/webauthn-2/)
-- [Apple AuthenticationServices Documentation](https://developer.apple.com/documentation/authenticationservices)
 - [Electron Documentation](https://www.electronjs.org/docs)
 - [objc-js Library](https://github.com/iamEvanYT/objc-js)

package/dist/get-authorization-controller.d.ts

@@ -0,0 +1,5 @@
+import { NobjcObject } from "objc-js";
+export declare function setClientDataHash(self: NobjcObject, clientDataHash: Buffer): void;
+export declare function removeClientDataHash(self: NobjcObject): void;
+export declare const WebauthnGetController: NobjcObject;
+//# sourceMappingURL=get-authorization-controller.d.ts.map

package/dist/get-authorization-controller.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"get-authorization-controller.d.ts","sourceRoot":"","sources":["../src/get-authorization-controller.ts"],"names":[],"mappings":"AAAA,OAAO,EAAc,WAAW,EAAc,MAAM,SAAS,CAAC;AAS9D,wBAAgB,iBAAiB,CAAC,IAAI,EAAE,WAAW,EAAE,cAAc,EAAE,MAAM,QAG1E;AAED,wBAAgB,oBAAoB,CAAC,IAAI,EAAE,WAAW,QAGrD;AAED,eAAO,MAAM,qBAAqB,aAiChC,CAAC"}

package/dist/get-authorization-controller.js

@@ -0,0 +1,37 @@
+import { NobjcClass, NobjcObject, getPointer } from "objc-js";
+import { NSDataFromBuffer } from "./objc/foundation/nsdata.js";
+const getControllerState = new Map();
+function getObjectPointerString(self) {
+    return getPointer(self).toBase64();
+}
+export function setClientDataHash(self, clientDataHash) {
+    const selfPointer = getObjectPointerString(self);
+    getControllerState.set(selfPointer, clientDataHash);
+}
+export function removeClientDataHash(self) {
+    const selfPointer = getObjectPointerString(self);
+    getControllerState.delete(selfPointer);
+}
+export const WebauthnGetController = NobjcClass.define({
+    name: "WebauthnGetController",
+    superclass: "ASAuthorizationController",
+    methods: {
+        // This overrides the default implementation of _requestContextWithRequests$error$ to allow us to set the clientDataHash on the assertion options
+        _requestContextWithRequests$error$: {
+            types: "@@:@^@",
+            implementation: (self, requests, outError) => {
+                const context = NobjcClass.super(self, "_requestContextWithRequests$error$", requests, outError);
+                // Grab the assertion options, set the client data hash, and set a copy of the assertion options back on the context
+                const selfPointer = getObjectPointerString(self);
+                if (getControllerState.has(selfPointer)) {
+                    const assertionOptions = context.platformKeyCredentialAssertionOptions();
+                    const clientDataHash = getControllerState.get(selfPointer);
+                    assertionOptions.setClientDataHash$(NSDataFromBuffer(clientDataHash));
+                    context.setPlatformKeyCredentialAssertionOptions$(assertionOptions.copyWithZone$(null));
+                }
+                return context;
+            },
+        },
+    },
+});
+//# sourceMappingURL=get-authorization-controller.js.map

package/dist/get-authorization-controller.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"get-authorization-controller.js","sourceRoot":"","sources":["../src/get-authorization-controller.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AAC9D,OAAO,EAAE,gBAAgB,EAAgB,MAAM,6BAA6B,CAAC;AAE7E,MAAM,kBAAkB,GAAG,IAAI,GAAG,EAAkB,CAAC;AAErD,SAAS,sBAAsB,CAAC,IAAiB;IAC/C,OAAO,UAAU,CAAC,IAAI,CAAC,CAAC,QAAQ,EAAE,CAAC;AACrC,CAAC;AAED,MAAM,UAAU,iBAAiB,CAAC,IAAiB,EAAE,cAAsB;IACzE,MAAM,WAAW,GAAG,sBAAsB,CAAC,IAAI,CAAC,CAAC;IACjD,kBAAkB,CAAC,GAAG,CAAC,WAAW,EAAE,cAAc,CAAC,CAAC;AACtD,CAAC;AAED,MAAM,UAAU,oBAAoB,CAAC,IAAiB;IACpD,MAAM,WAAW,GAAG,sBAAsB,CAAC,IAAI,CAAC,CAAC;IACjD,kBAAkB,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;AACzC,CAAC;AAED,MAAM,CAAC,MAAM,qBAAqB,GAAG,UAAU,CAAC,MAAM,CAAC;IACrD,IAAI,EAAE,uBAAuB;IAC7B,UAAU,EAAE,2BAA2B;IACvC,OAAO,EAAE;QACP,iJAAiJ;QACjJ,kCAAkC,EAAE;YAClC,KAAK,EAAE,QAAQ;YACf,cAAc,EAAE,CAAC,IAAS,EAAE,QAAa,EAAE,QAAa,EAAE,EAAE;gBAC1D,MAAM,OAAO,GAAG,UAAU,CAAC,KAAK,CAC9B,IAAI,EACJ,oCAAoC,EACpC,QAAQ,EACR,QAAQ,CACT,CAAC;gBAEF,oHAAoH;gBACpH,MAAM,WAAW,GAAG,sBAAsB,CAAC,IAAI,CAAC,CAAC;gBACjD,IAAI,kBAAkB,CAAC,GAAG,CAAC,WAAW,CAAC,EAAE,CAAC;oBACxC,MAAM,gBAAgB,GACpB,OAAO,CAAC,qCAAqC,EAAE,CAAC;oBAElD,MAAM,cAAc,GAAG,kBAAkB,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;oBAC3D,gBAAgB,CAAC,kBAAkB,CAAC,gBAAgB,CAAC,cAAc,CAAC,CAAC,CAAC;oBAEtE,OAAO,CAAC,yCAAyC,CAC/C,gBAAgB,CAAC,aAAa,CAAC,IAAI,CAAC,CACrC,CAAC;gBACJ,CAAC;gBAED,OAAO,OAAO,CAAC;YACjB,CAAC;SACF;KACF;CACF,CAAC,CAAC"}

package/dist/helpers.d.ts

@@ -17,4 +17,30 @@ export declare function PromiseWithResolvers<T = void>(): {
     resolve: (value: T | PromiseLike<T>) => void;
     reject: (reason?: unknown) => void;
 };
+/**
+ * WebAuthn: clientDataHash = SHA-256(clientDataJSON_bytes)
+ *
+ * - Input must be the exact bytes of CollectedClientData JSON (UTF-8).
+ * - Output is 32-byte SHA-256 digest.
+ */
+export declare function clientDataJsonBufferToHash(clientDataJSON: Buffer): Buffer;
+/**
+ * Serializes an origin according to the HTML specification.
+ * Based on https://html.spec.whatwg.org/multipage/browsers.html#ascii-serialisation-of-an-origin
+ *
+ * @param origin - The origin string to serialize (e.g., "https://example.com:8080")
+ * @returns The serialized origin string, or "null" for opaque origins
+ *
+ * @example
+ * ```ts
+ * serializeOrigin("https://example.com:443"); // "https://example.com:443"
+ * serializeOrigin("http://localhost:8080");   // "http://localhost:8080"
+ * serializeOrigin("null");                    // "null"
+ * ```
+ */
+export declare function serializeOrigin(origin: string): string | null;
+/**
+ * Convert an ArrayBuffer to a base64url string.
+ */
+export declare function bufferToBase64Url(buffer: Buffer): string;
 //# sourceMappingURL=helpers.d.ts.map

package/dist/helpers.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"helpers.d.ts","sourceRoot":"","sources":["../src/helpers.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AACH,wBAAgB,oBAAoB,CAAC,CAAC,GAAG,IAAI,KAAK;IAChD,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC;IACpB,OAAO,EAAE,CAAC,KAAK,EAAE,CAAC,GAAG,WAAW,CAAC,CAAC,CAAC,KAAK,IAAI,CAAC;IAC7C,MAAM,EAAE,CAAC,MAAM,CAAC,EAAE,OAAO,KAAK,IAAI,CAAC;CACpC,CAQA"}
+{"version":3,"file":"helpers.d.ts","sourceRoot":"","sources":["../src/helpers.ts"],"names":[],"mappings":"AAEA;;;;;;;;;;;;;GAaG;AACH,wBAAgB,oBAAoB,CAAC,CAAC,GAAG,IAAI,KAAK;IAChD,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC;IACpB,OAAO,EAAE,CAAC,KAAK,EAAE,CAAC,GAAG,WAAW,CAAC,CAAC,CAAC,KAAK,IAAI,CAAC;IAC7C,MAAM,EAAE,CAAC,MAAM,CAAC,EAAE,OAAO,KAAK,IAAI,CAAC;CACpC,CAQA;AAED;;;;;GAKG;AACH,wBAAgB,0BAA0B,CAAC,cAAc,EAAE,MAAM,GAAG,MAAM,CAWzE;AAED;;;;;;;;;;;;;GAaG;AACH,wBAAgB,eAAe,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI,CA+B7D;AAED;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,CAWxD"}

package/dist/helpers.js

@@ -1,3 +1,4 @@
+import { createHash } from "crypto";
 /**
  * Creates a Promise along with its resolve and reject callbacks.
  * This is a polyfill for the native Promise.withResolvers() method.
@@ -21,4 +22,74 @@ export function PromiseWithResolvers() {
     });
     return { promise, resolve: resolve, reject: reject };
 }
+/**
+ * WebAuthn: clientDataHash = SHA-256(clientDataJSON_bytes)
+ *
+ * - Input must be the exact bytes of CollectedClientData JSON (UTF-8).
+ * - Output is 32-byte SHA-256 digest.
+ */
+export function clientDataJsonBufferToHash(clientDataJSON) {
+    if (!Buffer.isBuffer(clientDataJSON)) {
+        throw new TypeError("clientDataJsonBufferToHash: clientDataJSON must be a Buffer");
+    }
+    if (clientDataJSON.length === 0) {
+        throw new RangeError("clientDataJsonBufferToHash: clientDataJSON is empty");
+    }
+    return createHash("sha256").update(clientDataJSON).digest();
+}
+/**
+ * Serializes an origin according to the HTML specification.
+ * Based on https://html.spec.whatwg.org/multipage/browsers.html#ascii-serialisation-of-an-origin
+ *
+ * @param origin - The origin string to serialize (e.g., "https://example.com:8080")
+ * @returns The serialized origin string, or "null" for opaque origins
+ *
+ * @example
+ * ```ts
+ * serializeOrigin("https://example.com:443"); // "https://example.com:443"
+ * serializeOrigin("http://localhost:8080");   // "http://localhost:8080"
+ * serializeOrigin("null");                    // "null"
+ * ```
+ */
+export function serializeOrigin(origin) {
+    // If origin is an opaque origin (represented as "null"), return "null"
+    if (origin === "null" || !origin) {
+        return null;
+    }
+    try {
+        // Parse the origin using URL constructor
+        const url = new URL(origin);
+        // Build the serialized origin
+        let result = url.protocol; // Already includes "://"
+        // If protocol doesn't end with "://", ensure it's added
+        if (!result.endsWith("://")) {
+            result = result.replace(/:$/, "") + "://";
+        }
+        // Append the host (already serialized by URL)
+        result += url.hostname;
+        // If port is non-null and non-default, append it
+        if (url.port) {
+            result += ":" + url.port;
+        }
+        return result;
+    }
+    catch (error) {
+        // If URL parsing fails, treat as opaque origin
+        return null;
+    }
+}
+/**
+ * Convert an ArrayBuffer to a base64url string.
+ */
+export function bufferToBase64Url(buffer) {
+    const bytes = new Uint8Array(buffer);
+    let binary = "";
+    for (let i = 0; i < bytes.length; i++) {
+        binary += String.fromCharCode(bytes[i]);
+    }
+    return btoa(binary)
+        .replace(/\+/g, "-")
+        .replace(/\//g, "_")
+        .replace(/=+$/, "");
+}
 //# sourceMappingURL=helpers.js.map

package/dist/helpers.js.map

@@ -1 +1 @@
-{"version":3,"file":"helpers.js","sourceRoot":"","sources":["../src/helpers.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AACH,MAAM,UAAU,oBAAoB;IAKlC,IAAI,OAA4C,CAAC;IACjD,IAAI,MAAkC,CAAC;IACvC,MAAM,OAAO,GAAG,IAAI,OAAO,CAAI,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;QAC1C,OAAO,GAAG,GAAG,CAAC;QACd,MAAM,GAAG,GAAG,CAAC;IACf,CAAC,CAAC,CAAC;IACH,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,OAAQ,EAAE,MAAM,EAAE,MAAO,EAAE,CAAC;AACzD,CAAC"}
+{"version":3,"file":"helpers.js","sourceRoot":"","sources":["../src/helpers.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,QAAQ,CAAC;AAEpC;;;;;;;;;;;;;GAaG;AACH,MAAM,UAAU,oBAAoB;IAKlC,IAAI,OAA4C,CAAC;IACjD,IAAI,MAAkC,CAAC;IACvC,MAAM,OAAO,GAAG,IAAI,OAAO,CAAI,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;QAC1C,OAAO,GAAG,GAAG,CAAC;QACd,MAAM,GAAG,GAAG,CAAC;IACf,CAAC,CAAC,CAAC;IACH,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,OAAQ,EAAE,MAAM,EAAE,MAAO,EAAE,CAAC;AACzD,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,0BAA0B,CAAC,cAAsB;IAC/D,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,cAAc,CAAC,EAAE,CAAC;QACrC,MAAM,IAAI,SAAS,CACjB,6DAA6D,CAC9D,CAAC;IACJ,CAAC;IACD,IAAI,cAAc,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAChC,MAAM,IAAI,UAAU,CAAC,qDAAqD,CAAC,CAAC;IAC9E,CAAC;IAED,OAAO,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC,MAAM,EAAE,CAAC;AAC9D,CAAC;AAED;;;;;;;;;;;;;GAaG;AACH,MAAM,UAAU,eAAe,CAAC,MAAc;IAC5C,uEAAuE;IACvE,IAAI,MAAM,KAAK,MAAM,IAAI,CAAC,MAAM,EAAE,CAAC;QACjC,OAAO,IAAI,CAAC;IACd,CAAC;IAED,IAAI,CAAC;QACH,yCAAyC;QACzC,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,MAAM,CAAC,CAAC;QAE5B,8BAA8B;QAC9B,IAAI,MAAM,GAAG,GAAG,CAAC,QAAQ,CAAC,CAAC,yBAAyB;QAEpD,wDAAwD;QACxD,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;YAC5B,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC,GAAG,KAAK,CAAC;QAC5C,CAAC;QAED,8CAA8C;QAC9C,MAAM,IAAI,GAAG,CAAC,QAAQ,CAAC;QAEvB,iDAAiD;QACjD,IAAI,GAAG,CAAC,IAAI,EAAE,CAAC;YACb,MAAM,IAAI,GAAG,GAAG,GAAG,CAAC,IAAI,CAAC;QAC3B,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,+CAA+C;QAC/C,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,iBAAiB,CAAC,MAAc;IAC9C,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,MAAM,CAAC,CAAC;IACrC,IAAI,MAAM,GAAG,EAAE,CAAC;IAChB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,MAAM,IAAI,MAAM,CAAC,YAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;IAC1C,CAAC;IAED,OAAO,IAAI,CAAC,MAAM,CAAC;SAChB,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC;SACnB,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC;SACnB,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;AACxB,CAAC"}

package/dist/index.d.ts

@@ -1,4 +1,5 @@
 type AuthenticatorAttachment = "platform" | "cross-platform";
+export type UserVerificationPreference = "preferred" | "required" | "discouraged";
 export interface GetCredentialResult {
     id: Buffer;
     authenticatorAttachment: AuthenticatorAttachment;
@@ -6,9 +7,9 @@ export interface GetCredentialResult {
     authenticatorData: Buffer;
     signature: Buffer;
     userHandle: Buffer;
-    prf: [Buffer, Buffer];
-    largeBlob: Buffer;
+    prf: [Buffer | null, Buffer | null];
+    largeBlob: Buffer | null;
 }
-declare function getCredential(rpid: string, challenge: Buffer, nativeWindowHandle: Buffer, allowedCredentialIds: Buffer[]): Promise<GetCredentialResult>;
+declare function getCredential(rpid: string, challenge: Buffer, nativeWindowHandle: Buffer, origin: string, allowedCredentialIds: Buffer[], userVerificationPreference?: UserVerificationPreference): Promise<GetCredentialResult>;
 export { getCredential };
 //# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAoBA,KAAK,uBAAuB,GAAG,UAAU,GAAG,gBAAgB,CAAC;AAE7D,MAAM,WAAW,mBAAmB;IAClC,EAAE,EAAE,MAAM,CAAC;IACX,uBAAuB,EAAE,uBAAuB,CAAC;IACjD,cAAc,EAAE,MAAM,CAAC;IACvB,iBAAiB,EAAE,MAAM,CAAC;IAC1B,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;IACnB,GAAG,EAAE,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACtB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,iBAAS,aAAa,CACpB,IAAI,EAAE,MAAM,EACZ,SAAS,EAAE,MAAM,EACjB,kBAAkB,EAAE,MAAM,EAC1B,oBAAoB,EAAE,MAAM,EAAE,GAC7B,OAAO,CAAC,mBAAmB,CAAC,CAiG9B;AAED,OAAO,EAAE,aAAa,EAAE,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AA8BA,KAAK,uBAAuB,GAAG,UAAU,GAAG,gBAAgB,CAAC;AAC7D,MAAM,MAAM,0BAA0B,GAClC,WAAW,GACX,UAAU,GACV,aAAa,CAAC;AAElB,MAAM,WAAW,mBAAmB;IAClC,EAAE,EAAE,MAAM,CAAC;IACX,uBAAuB,EAAE,uBAAuB,CAAC;IACjD,cAAc,EAAE,MAAM,CAAC;IACvB,iBAAiB,EAAE,MAAM,CAAC;IAC1B,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;IACnB,GAAG,EAAE,CAAC,MAAM,GAAG,IAAI,EAAE,MAAM,GAAG,IAAI,CAAC,CAAC;IACpC,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;CAC1B;AAED,iBAAS,aAAa,CACpB,IAAI,EAAE,MAAM,EACZ,SAAS,EAAE,MAAM,EACjB,kBAAkB,EAAE,MAAM,EAC1B,MAAM,EAAE,MAAM,EACd,oBAAoB,EAAE,MAAM,EAAE,EAC9B,0BAA0B,CAAC,EAAE,0BAA0B,GACtD,OAAO,CAAC,mBAAmB,CAAC,CA6I9B;AAED,OAAO,EAAE,aAAa,EAAE,CAAC"}

package/dist/index.js

@@ -1,15 +1,16 @@
 import { fromPointer } from "objc-js";
 import { createAuthorizationControllerDelegate } from "./objc/authentication-services/as-authorization-controller-delegate.js";
-import { createAuthorizationController } from "./objc/authentication-services/as-authorization-controller.js";
+import { ASAuthorizationController } from "./objc/authentication-services/as-authorization-controller.js";
 import { createPresentationContextProvider } from "./objc/authentication-services/as-authorization-controller-presentation-context-providing.js";
 import { createPlatformPublicKeyCredentialProvider } from "./objc/authentication-services/as-authorization-platform-public-key-credential-provider.js";
 import { createPlatformPublicKeyCredentialDescriptor } from "./objc/authentication-services/as-authorization-platform-public-key-credential-descriptor.js";
 import { NSArray, NSArrayFromObjects } from "./objc/foundation/nsarray.js";
 import { bufferFromNSDataDirect, NSDataFromBuffer, } from "./objc/foundation/nsdata.js";
 import { NSStringFromString } from "./objc/foundation/nsstring.js";
-import { PromiseWithResolvers } from "./helpers.js";
+import { bufferToBase64Url, clientDataJsonBufferToHash, PromiseWithResolvers, serializeOrigin, } from "./helpers.js";
 import { ASAuthorizationPublicKeyCredentialAttachment } from "./objc/authentication-services/enums/as-authorization-public-key-credential-attachment.js";
-function getCredential(rpid, challenge, nativeWindowHandle, allowedCredentialIds) {
+import { removeClientDataHash, setClientDataHash, WebauthnGetController, } from "./get-authorization-controller.js";
+function getCredential(rpid, challenge, nativeWindowHandle, origin, allowedCredentialIds, userVerificationPreference) {
     const { promise, resolve, reject } = PromiseWithResolvers();
     // Create NS objects
     const NS_rpID = NSStringFromString(rpid);
@@ -19,9 +20,36 @@ function getCredential(rpid, challenge, nativeWindowHandle, allowedCredentialIds
     const platformProvider = createPlatformPublicKeyCredentialProvider(NS_rpID);
     // let platformKeyRequest = platformProvider.createCredentialAssertionRequest(challenge: challenge)
     const platformKeyRequest = platformProvider.createCredentialAssertionRequestWithChallenge$(NS_challenge);
+    // platformKeyRequest.userVerificationPreference = ???
+    if (userVerificationPreference === "preferred") {
+        platformKeyRequest.setUserVerificationPreference$(NSStringFromString("preferred"));
+    }
+    else if (userVerificationPreference === "required") {
+        platformKeyRequest.setUserVerificationPreference$(NSStringFromString("required"));
+    }
+    else if (userVerificationPreference === "discouraged") {
+        platformKeyRequest.setUserVerificationPreference$(NSStringFromString("discouraged"));
+    }
     // let authController = ASAuthorizationController(authorizationRequests: [platformKeyRequest])
     const requestsArray = NSArray.arrayWithObject$(platformKeyRequest);
-    const authController = createAuthorizationController(requestsArray);
+    const authController = WebauthnGetController.alloc().initWithAuthorizationRequests$(requestsArray);
+    // OLD: const authController = createAuthorizationController(requestsArray);
+    // Generate our own client data instead of letting apple generate it
+    //  This is because apple's client data lack the `crossOrigin` field, which is required by a lot of sites.
+    const serializedOrigin = serializeOrigin(origin);
+    const clientData = {
+        type: "webauthn.get",
+        challenge: bufferToBase64Url(challenge),
+        origin: serializedOrigin,
+        crossOrigin: false,
+    };
+    const clientDataJSON = JSON.stringify(clientData);
+    const clientDataBuffer = Buffer.from(clientDataJSON, "utf-8");
+    const clientDataHash = clientDataJsonBufferToHash(clientDataBuffer);
+    setClientDataHash(authController, clientDataHash);
+    const finished = (_success) => {
+        removeClientDataHash(authController);
+    };
     // Set allowed credentials if provided
     if (allowedCredentialIds.length > 0) {
         const allowedCredentials = NSArrayFromObjects(allowedCredentialIds.map((id) => createPlatformPublicKeyCredentialDescriptor(NSDataFromBuffer(id))));
@@ -32,7 +60,7 @@ function getCredential(rpid, challenge, nativeWindowHandle, allowedCredentialIds
         didCompleteWithAuthorization: (_, authorization) => {
             // Cast to _ASAuthorization to access typed methods
             const credential = authorization.credential();
-            console.log("Authorization succeeded:", credential);
+            // console.log("Authorization succeeded:", credential);
             const id_data = credential.credentialID();
             const id = bufferFromNSDataDirect(id_data);
             let authenticatorAttachment = "platform";
@@ -41,28 +69,32 @@ function getCredential(rpid, challenge, nativeWindowHandle, allowedCredentialIds
                 authenticatorAttachment = "cross-platform";
             }
             const prf = credential.prf();
-            const prfFirst = prf.first();
-            const prfSecond = prf.second();
+            const prfFirst = prf?.first ? prf.first() : null;
+            const prfSecond = prf?.second ? prf.second() : null;
             resolve({
                 id,
                 authenticatorAttachment,
-                clientDataJSON: bufferFromNSDataDirect(credential.rawClientDataJSON()),
+                clientDataJSON: clientDataBuffer, //bufferFromNSDataDirect(credential.rawClientDataJSON()),
                 authenticatorData: bufferFromNSDataDirect(credential.rawAuthenticatorData()),
                 signature: bufferFromNSDataDirect(credential.signature()),
                 userHandle: bufferFromNSDataDirect(credential.userID()),
                 prf: [
-                    bufferFromNSDataDirect(prfFirst),
-                    bufferFromNSDataDirect(prfSecond),
+                    prfFirst ? bufferFromNSDataDirect(prfFirst) : null,
+                    prfSecond ? bufferFromNSDataDirect(prfSecond) : null,
                 ],
-                largeBlob: bufferFromNSDataDirect(credential.largeBlob().readData()),
+                largeBlob: credential.largeBlob()
+                    ? bufferFromNSDataDirect(credential.largeBlob().readData())
+                    : null,
             });
+            finished(true);
         },
         didCompleteWithError: (_, error) => {
             // Parse the NSError into a readable format
             const parsedError = error;
             const errorMessage = parsedError.localizedDescription().UTF8String();
-            console.error("Authorization failed:", errorMessage);
+            // console.error("Authorization failed:", errorMessage);
             reject(new Error(errorMessage));
+            finished(false);
         },
     });
     authController.setDelegate$(delegate);

package/dist/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC;AACtC,OAAO,EAAE,qCAAqC,EAAE,MAAM,wEAAwE,CAAC;AAC/H,OAAO,EAAE,6BAA6B,EAAE,MAAM,+DAA+D,CAAC;AAC9G,OAAO,EAAE,iCAAiC,EAAE,MAAM,8FAA8F,CAAC;AACjJ,OAAO,EAAE,yCAAyC,EAAE,MAAM,4FAA4F,CAAC;AACvJ,OAAO,EAAE,2CAA2C,EAAE,MAAM,8FAA8F,CAAC;AAG3J,OAAO,EAAE,OAAO,EAAE,kBAAkB,EAAE,MAAM,8BAA8B,CAAC;AAC3E,OAAO,EAEL,sBAAsB,EACtB,gBAAgB,GACjB,MAAM,6BAA6B,CAAC;AACrC,OAAO,EAAE,kBAAkB,EAAE,MAAM,+BAA+B,CAAC;AAGnE,OAAO,EAAE,oBAAoB,EAAE,MAAM,cAAc,CAAC;AACpD,OAAO,EAAE,4CAA4C,EAAE,MAAM,2FAA2F,CAAC;AAezJ,SAAS,aAAa,CACpB,IAAY,EACZ,SAAiB,EACjB,kBAA0B,EAC1B,oBAA8B;IAE9B,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,GAChC,oBAAoB,EAAuB,CAAC;IAE9C,oBAAoB;IACpB,MAAM,OAAO,GAAG,kBAAkB,CAAC,IAAI,CAAC,CAAC;IAEzC,sDAAsD;IACtD,MAAM,YAAY,GAAG,gBAAgB,CAAC,SAAS,CAAC,CAAC;IAEjD,mHAAmH;IACnH,MAAM,gBAAgB,GAAG,yCAAyC,CAAC,OAAO,CAAC,CAAC;IAE5E,mGAAmG;IACnG,MAAM,kBAAkB,GACtB,gBAAgB,CAAC,8CAA8C,CAC7D,YAAY,CACb,CAAC;IAEJ,8FAA8F;IAC9F,MAAM,aAAa,GAAG,OAAO,CAAC,gBAAgB,CAAC,kBAAkB,CAAC,CAAC;IACnE,MAAM,cAAc,GAAG,6BAA6B,CAAC,aAAa,CAAC,CAAC;IAEpE,sCAAsC;IACtC,IAAI,oBAAoB,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACpC,MAAM,kBAAkB,GAAG,kBAAkB,CAC3C,oBAAoB,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,CAC9B,2CAA2C,CAAC,gBAAgB,CAAC,EAAE,CAAC,CAAC,CAClE,CACF,CAAC;QACF,kBAAkB,CAAC,sBAAsB,CAAC,kBAAkB,CAAC,CAAC;IAChE,CAAC;IAED,iCAAiC;IACjC,MAAM,QAAQ,GAAG,qCAAqC,CAAC;QACrD,4BAA4B,EAAE,CAAC,CAAC,EAAE,aAAa,EAAE,EAAE;YACjD,mDAAmD;YACnD,MAAM,UAAU,GACd,aAAa,CAAC,UAAU,EAAqE,CAAC;YAChG,OAAO,CAAC,GAAG,CAAC,0BAA0B,EAAE,UAAU,CAAC,CAAC;YAEpD,MAAM,OAAO,GAAG,UAAU,CAAC,YAAY,EAAE,CAAC;YAC1C,MAAM,EAAE,GAAG,sBAAsB,CAAC,OAAO,CAAC,CAAC;YAE3C,IAAI,uBAAuB,GAA4B,UAAU,CAAC;YAClE,IACE,UAAU,CAAC,UAAU,EAAE;gBACvB,4CAA4C,CAAC,yDAAyD,EACtG,CAAC;gBACD,uBAAuB,GAAG,gBAAgB,CAAC;YAC7C,CAAC;YAED,MAAM,GAAG,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC;YAC7B,MAAM,QAAQ,GAAG,GAAG,CAAC,KAAK,EAAE,CAAC;YAC7B,MAAM,SAAS,GAAG,GAAG,CAAC,MAAM,EAAE,CAAC;YAE/B,OAAO,CAAC;gBACN,EAAE;gBACF,uBAAuB;gBACvB,cAAc,EAAE,sBAAsB,CAAC,UAAU,CAAC,iBAAiB,EAAE,CAAC;gBACtE,iBAAiB,EAAE,sBAAsB,CACvC,UAAU,CAAC,oBAAoB,EAAE,CAClC;gBACD,SAAS,EAAE,sBAAsB,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;gBACzD,UAAU,EAAE,sBAAsB,CAAC,UAAU,CAAC,MAAM,EAAE,CAAC;gBACvD,GAAG,EAAE;oBACH,sBAAsB,CAAC,QAAQ,CAAC;oBAChC,sBAAsB,CAAC,SAAS,CAAC;iBAClC;gBACD,SAAS,EAAE,sBAAsB,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC,QAAQ,EAAE,CAAC;aACrE,CAAC,CAAC;QACL,CAAC;QACD,oBAAoB,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,EAAE;YACjC,2CAA2C;YAC3C,MAAM,WAAW,GAAG,KAA6C,CAAC;YAClE,MAAM,YAAY,GAAG,WAAW,CAAC,oBAAoB,EAAE,CAAC,UAAU,EAAE,CAAC;YACrE,OAAO,CAAC,KAAK,CAAC,uBAAuB,EAAE,YAAY,CAAC,CAAC;YACrD,MAAM,CAAC,IAAI,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC;QAClC,CAAC;KACF,CAAC,CAAC;IACH,cAAc,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC;IAEtC,oDAAoD;IACpD,MAAM,2BAA2B,GAAG,iCAAiC,CAAC;QACpE,4CAA4C,EAAE,GAAG,EAAE;YACjD,yDAAyD;YACzD,MAAM,MAAM,GAAG,WAAW,CAAC,kBAAkB,CAAuB,CAAC;YACrE,MAAM,QAAQ,GAAG,MAAM,CAAC,MAAM,EAAE,CAAC;YACjC,OAAO,QAAQ,CAAC;QAClB,CAAC;KACF,CAAC,CAAC;IACH,cAAc,CAAC,+BAA+B,CAAC,2BAA2B,CAAC,CAAC;IAE5E,mCAAmC;IACnC,cAAc,CAAC,eAAe,EAAE,CAAC;IAEjC,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,OAAO,EAAE,aAAa,EAAE,CAAC"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC;AACtC,OAAO,EAAE,qCAAqC,EAAE,MAAM,wEAAwE,CAAC;AAC/H,OAAO,EAAE,yBAAyB,EAAE,MAAM,+DAA+D,CAAC;AAC1G,OAAO,EAAE,iCAAiC,EAAE,MAAM,8FAA8F,CAAC;AACjJ,OAAO,EAAE,yCAAyC,EAAE,MAAM,4FAA4F,CAAC;AACvJ,OAAO,EAAE,2CAA2C,EAAE,MAAM,8FAA8F,CAAC;AAG3J,OAAO,EAAE,OAAO,EAAE,kBAAkB,EAAE,MAAM,8BAA8B,CAAC;AAC3E,OAAO,EAEL,sBAAsB,EACtB,gBAAgB,GACjB,MAAM,6BAA6B,CAAC;AACrC,OAAO,EAAE,kBAAkB,EAAE,MAAM,+BAA+B,CAAC;AAGnE,OAAO,EACL,iBAAiB,EACjB,0BAA0B,EAC1B,oBAAoB,EACpB,eAAe,GAChB,MAAM,cAAc,CAAC;AACtB,OAAO,EAAE,4CAA4C,EAAE,MAAM,2FAA2F,CAAC;AACzJ,OAAO,EACL,oBAAoB,EACpB,iBAAiB,EACjB,qBAAqB,GACtB,MAAM,mCAAmC,CAAC;AAmB3C,SAAS,aAAa,CACpB,IAAY,EACZ,SAAiB,EACjB,kBAA0B,EAC1B,MAAc,EACd,oBAA8B,EAC9B,0BAAuD;IAEvD,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,GAChC,oBAAoB,EAAuB,CAAC;IAE9C,oBAAoB;IACpB,MAAM,OAAO,GAAG,kBAAkB,CAAC,IAAI,CAAC,CAAC;IAEzC,sDAAsD;IACtD,MAAM,YAAY,GAAG,gBAAgB,CAAC,SAAS,CAAC,CAAC;IAEjD,mHAAmH;IACnH,MAAM,gBAAgB,GAAG,yCAAyC,CAAC,OAAO,CAAC,CAAC;IAE5E,mGAAmG;IACnG,MAAM,kBAAkB,GACtB,gBAAgB,CAAC,8CAA8C,CAC7D,YAAY,CACb,CAAC;IAEJ,sDAAsD;IACtD,IAAI,0BAA0B,KAAK,WAAW,EAAE,CAAC;QAC/C,kBAAkB,CAAC,8BAA8B,CAC/C,kBAAkB,CAAC,WAAW,CAAC,CAChC,CAAC;IACJ,CAAC;SAAM,IAAI,0BAA0B,KAAK,UAAU,EAAE,CAAC;QACrD,kBAAkB,CAAC,8BAA8B,CAC/C,kBAAkB,CAAC,UAAU,CAAC,CAC/B,CAAC;IACJ,CAAC;SAAM,IAAI,0BAA0B,KAAK,aAAa,EAAE,CAAC;QACxD,kBAAkB,CAAC,8BAA8B,CAC/C,kBAAkB,CAAC,aAAa,CAAC,CAClC,CAAC;IACJ,CAAC;IAED,8FAA8F;IAC9F,MAAM,aAAa,GAAG,OAAO,CAAC,gBAAgB,CAAC,kBAAkB,CAAC,CAAC;IACnE,MAAM,cAAc,GAClB,qBAAqB,CAAC,KAAK,EAAE,CAAC,8BAA8B,CAAC,aAAa,CAAC,CAAC;IAC9E,4EAA4E;IAE5E,oEAAoE;IACpE,0GAA0G;IAC1G,MAAM,gBAAgB,GAAG,eAAe,CAAC,MAAM,CAAC,CAAC;IACjD,MAAM,UAAU,GAAG;QACjB,IAAI,EAAE,cAAc;QACpB,SAAS,EAAE,iBAAiB,CAAC,SAAS,CAAC;QACvC,MAAM,EAAE,gBAAgB;QACxB,WAAW,EAAE,KAAK;KACnB,CAAC;IAEF,MAAM,cAAc,GAAG,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;IAClD,MAAM,gBAAgB,GAAG,MAAM,CAAC,IAAI,CAAC,cAAc,EAAE,OAAO,CAAC,CAAC;IAC9D,MAAM,cAAc,GAAG,0BAA0B,CAAC,gBAAgB,CAAC,CAAC;IAEpE,iBAAiB,CAAC,cAAc,EAAE,cAAc,CAAC,CAAC;IAElD,MAAM,QAAQ,GAAG,CAAC,QAAiB,EAAE,EAAE;QACrC,oBAAoB,CAAC,cAAc,CAAC,CAAC;IACvC,CAAC,CAAC;IAEF,sCAAsC;IACtC,IAAI,oBAAoB,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACpC,MAAM,kBAAkB,GAAG,kBAAkB,CAC3C,oBAAoB,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,CAC9B,2CAA2C,CAAC,gBAAgB,CAAC,EAAE,CAAC,CAAC,CAClE,CACF,CAAC;QACF,kBAAkB,CAAC,sBAAsB,CAAC,kBAAkB,CAAC,CAAC;IAChE,CAAC;IAED,iCAAiC;IACjC,MAAM,QAAQ,GAAG,qCAAqC,CAAC;QACrD,4BAA4B,EAAE,CAAC,CAAC,EAAE,aAAa,EAAE,EAAE;YACjD,mDAAmD;YACnD,MAAM,UAAU,GACd,aAAa,CAAC,UAAU,EAAqE,CAAC;YAChG,uDAAuD;YAEvD,MAAM,OAAO,GAAG,UAAU,CAAC,YAAY,EAAE,CAAC;YAC1C,MAAM,EAAE,GAAG,sBAAsB,CAAC,OAAO,CAAC,CAAC;YAE3C,IAAI,uBAAuB,GAA4B,UAAU,CAAC;YAClE,IACE,UAAU,CAAC,UAAU,EAAE;gBACvB,4CAA4C,CAAC,yDAAyD,EACtG,CAAC;gBACD,uBAAuB,GAAG,gBAAgB,CAAC;YAC7C,CAAC;YAED,MAAM,GAAG,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC;YAC7B,MAAM,QAAQ,GAAG,GAAG,EAAE,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC;YACjD,MAAM,SAAS,GAAG,GAAG,EAAE,MAAM,CAAC,CAAC,CAAC,GAAG,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC;YAEpD,OAAO,CAAC;gBACN,EAAE;gBACF,uBAAuB;gBACvB,cAAc,EAAE,gBAAgB,EAAE,yDAAyD;gBAC3F,iBAAiB,EAAE,sBAAsB,CACvC,UAAU,CAAC,oBAAoB,EAAE,CAClC;gBACD,SAAS,EAAE,sBAAsB,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;gBACzD,UAAU,EAAE,sBAAsB,CAAC,UAAU,CAAC,MAAM,EAAE,CAAC;gBACvD,GAAG,EAAE;oBACH,QAAQ,CAAC,CAAC,CAAC,sBAAsB,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,IAAI;oBAClD,SAAS,CAAC,CAAC,CAAC,sBAAsB,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,IAAI;iBACrD;gBACD,SAAS,EAAE,UAAU,CAAC,SAAS,EAAE;oBAC/B,CAAC,CAAC,sBAAsB,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC,QAAQ,EAAE,CAAC;oBAC3D,CAAC,CAAC,IAAI;aACT,CAAC,CAAC;YAEH,QAAQ,CAAC,IAAI,CAAC,CAAC;QACjB,CAAC;QACD,oBAAoB,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,EAAE;YACjC,2CAA2C;YAC3C,MAAM,WAAW,GAAG,KAA6C,CAAC;YAClE,MAAM,YAAY,GAAG,WAAW,CAAC,oBAAoB,EAAE,CAAC,UAAU,EAAE,CAAC;YACrE,wDAAwD;YAExD,MAAM,CAAC,IAAI,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC;YAEhC,QAAQ,CAAC,KAAK,CAAC,CAAC;QAClB,CAAC;KACF,CAAC,CAAC;IACH,cAAc,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC;IAEtC,oDAAoD;IACpD,MAAM,2BAA2B,GAAG,iCAAiC,CAAC;QACpE,4CAA4C,EAAE,GAAG,EAAE;YACjD,yDAAyD;YACzD,MAAM,MAAM,GAAG,WAAW,CAAC,kBAAkB,CAAuB,CAAC;YACrE,MAAM,QAAQ,GAAG,MAAM,CAAC,MAAM,EAAE,CAAC;YACjC,OAAO,QAAQ,CAAC;QAClB,CAAC;KACF,CAAC,CAAC;IACH,cAAc,CAAC,+BAA+B,CAAC,2BAA2B,CAAC,CAAC;IAE5E,mCAAmC;IACnC,cAAc,CAAC,eAAe,EAAE,CAAC;IAEjC,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,OAAO,EAAE,aAAa,EAAE,CAAC"}

package/dist/test/index.js

@@ -4,6 +4,6 @@ import { getCredential } from "../index.js";
 const window = createEmptyWindow();
 const nsView = getNativeWindowHandle(window);
 const nsViewPointer = getPointer(nsView);
-const result = getCredential("example.com", Buffer.from("challenge"), nsViewPointer, []);
+const result = getCredential("example.com", Buffer.from("challenge"), nsViewPointer, "https://example.com", []);
 console.log("Result:", result);
 //# sourceMappingURL=index.js.map

package/dist/test/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/test/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AACrC,OAAO,EAAE,iBAAiB,EAAE,qBAAqB,EAAE,MAAM,aAAa,CAAC;AACvE,OAAO,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AAE5C,MAAM,MAAM,GAAG,iBAAiB,EAAE,CAAC;AACnC,MAAM,MAAM,GAAG,qBAAqB,CAAC,MAAM,CAAC,CAAC;AAC7C,MAAM,aAAa,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC;AAEzC,MAAM,MAAM,GAAG,aAAa,CAC1B,aAAa,EACb,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,EACxB,aAAa,EACb,EAAE,CACH,CAAC;AACF,OAAO,CAAC,GAAG,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/test/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AACrC,OAAO,EAAE,iBAAiB,EAAE,qBAAqB,EAAE,MAAM,aAAa,CAAC;AACvE,OAAO,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AAE5C,MAAM,MAAM,GAAG,iBAAiB,EAAE,CAAC;AACnC,MAAM,MAAM,GAAG,qBAAqB,CAAC,MAAM,CAAC,CAAC;AAC7C,MAAM,aAAa,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC;AAEzC,MAAM,MAAM,GAAG,aAAa,CAC1B,aAAa,EACb,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,EACxB,aAAa,EACb,qBAAqB,EACrB,EAAE,CACH,CAAC;AACF,OAAO,CAAC,GAAG,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "electron-webauthn",
-  "version": "0.0.11",
+  "version": "0.0.13",
   "repository": "https://github.com/iamEvanYT/electron-webauthn",
   "description": "Add support for WebAuthn for Electron.",
   "main": "dist/index.js",
@@ -28,7 +28,7 @@
     "typescript": "^5"
   },
   "dependencies": {
-    "objc-js": "^0.0.13"
+    "objc-js": "^0.0.14"
   },
   "trustedDependencies": [
     "objc-js"